General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 433 Views
  • 0 replies
  • 2 Likes

(DUP!) when pinging from the firewall

Hi guys,

 

Strange issue here which I'm hopeing to get resolved.  I was SSH'ed into the our PA VM-100 today and happened to run the command >ping host 8.8.8.8.  This resulted in 100% (DUP!) replies on the ICMP replies.  However, when I specify the sour

...

Resolved! Panorama configuration logs

When making changes to firewalls through panorama, there is a history of those changes made.  When you go to the dashboard there is a widget that shows the last handful of config changes, so I know they are there.  Where in panorama can I go to view

...

Resolved! Proxy-ID Error message for GlobalProtect Client

We have configured a GlobalProtect Gateway to service clients using both the GP Agent and X-Auth parameters with 3rd Party Clients.

 

We have been receiving the following error messages:

'IKE phase-2 negotiation failed when processing proxy ID. cannot f

...

Suspicious login attempt found on PA.

Hi All,

I have a situation where someone tried to access Palo Alto and failed to login as the authentication was not granted. Any idea where i can go and see what was the source IP and location etc. A bit of forensics.

 

Any suggestions most welcome.

 

Im

...

installing SFP modules on PA-5050

Hi I need to know the correct procedure for installing a 10 G SFP into a PA-5050. 

 

Can I install while they are on and running? Do I need a reboot?

Do I have to power off and install and power on?

 

I’ve tried to if an answer in the documentation

fribbl3 by L0 Member
  • 2900 Views
  • 1 replies
  • 0 Likes

Resolved! GlobalProtect behind NAT/PAT Cetificate Issue.

Hi,

 

I'm configuring my GlobalProtect VPN and Agent keep saying "CN name mismatch".

 

Here's my infrastructure : 

The PA220 is behind the NAT of the ISP and all connexions on WAN_IP (that is the public IP) are translated to the address 192.168.7.1. As po

...

Drawing1.png
Naelwan by L1 Bithead
  • 3991 Views
  • 3 replies
  • 0 Likes

Resolved! Question on GlobalProtect access route

Hi All,

 

I've successfully set up globalprotect for my remote users according to this link https://live.paloaltonetworks.com/t5/Configuration-Articles/Basic-GlobalProtect-Configuration-with-User-logon/ta-p/136099

 

I have a new problem. I want some user

...

Resolved! How many classified website on PAN-DB?

Hi There,

 

I have a customer RFP requiring that URL filtering product must have more that 50 million clissified webiste on its database. 

 

Does Palo Alto Networks URL Filtering solution (PAN-DB) have more than 50 Million classified webistes?

 

Thanks ver

...

cvieria by L2 Linker
  • 2516 Views
  • 1 replies
  • 0 Likes

Panorama Merge or migration

Hello,

 

I do have 2 Panorama running with 7.1.9. 1 running with M100 physical and another one is VM. Both are having different device group , templete and devices.

 

I am looking for way to migrate all devices from M100 to VM. Is there any easiest/ safe

...

Resolved! syslog alerting in PAN-OS

There is an option for syslog alerting by email in PAN-OS , but even if used only for threats , not traffic, results in way too many emails. I am collecting threat events through Logstash into time series database InfluxDB . My very small program is

...

niuk by L3 Networker
  • 3524 Views
  • 3 replies
  • 0 Likes

Multiple LDAP servers in a single profile - behavior

Dear comm,

 

when I have several LDAP servers in a profile for user authentication. How is this list utilized? Is only the first entry used? Are authentication requests distributed over all configured servers? How does it work?

 

Kind regards,

 

Rene

 

 

Rboehme by L2 Linker
  • 4144 Views
  • 3 replies
  • 0 Likes

syslog miner - please check rule syntax

Hi,

 

I just cloned a syslog miner, following the guide here:

 

https://live.paloaltonetworks.com/t5/MineMeld-Articles/Using-the-syslog-Miner/ta-p/77262

 

I can see the syslog processed counter moving, so looks like syslog forwarding is working.  I'm

...

  • 23698 Posts
  • 110 Subscriptions
Top Solution Authors
Labels