General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 193 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 875 Views
  • 0 replies
  • 0 Likes

Resolved! GP-VPN traffic is slow

GP VPN configured properly with IPSec enabled.

But all the GP-clients are fall-back to SSL tunnel mode soon after connected.

For testing purpose, give full access any-any allow in policy. one time connected as IPSec and when disconnect & connect again

...

PA System Alert Reports

I am wondering if it is possible to create a report based on the number and type of "System" (Medium, High, Critical) alerts generated by the PA firewall?

Resolved! FQDN record keeps wrong ip address

Hi All,

 

One of our FQDN records keeps wrong ip address (e.g 10.1.12.71) where really it should be  1x6.1x8.1x0.1xx:

 

> request system fqdn show gives me below output:

 

 

When l ping the same FQDN from the FW l get a correct ip address mapping:

 

 

> reques

...

Or1.PNG
2.PNG

False-Positive on Comodo

Hi There,
Not sure what's the right place to report this false-positive.

I would like to draw urgent attention of Paloalto Networks staff to resolve following false-positive on one of Comodo Internet Security files:
Virus Total (1/64)
https://www.virusto

...

Blocking Hexa Protocol (Hexatech VPN)

I just became aware of this yesterday, but we were seeing a rise recently in "unknown-udp" traffic on our Palo Alto Firewalls and have discovered what it was.  The amount of traffic was significant - always used the more bandwidth than anything else

...

SAML ADFS for GlobalProtect

Hi,

Is someone able to shed some ligh on the below.

 

1. Can SAML be used to map to an LDAP group, if so is there guidance?
2. Does PAN support using SAML AND prelogon/alwayson with GP?

 

 

Thanks

 

 

Resolved! custom report - "unknown" category

Hello

 

I observed that in my reports in pdf I have a lot of "unknown" in CATEGORY column.

My report looks like:

 

How is possible that google-base or linkedin-base have category=unknown ?

 

Regards

Slawek

2017-08-15_201653.png
2017-08-15_203202.png
_slv_ by L4 Transporter
  • 5023 Views
  • 9 replies
  • 0 Likes

Resolved! Traffic seen as application "authentic8-silo"

Hi,

 

On our PA device, we suddenly have this issue that lots of traffic is seen as application "authentic8-silo" which is not allowed.
Lots of services (Lync/Skype for Business, websites and other services) which use SSL do not work anymore.
There was n
...

Farzana by L4 Transporter
  • 2497 Views
  • 2 replies
  • 0 Likes

URL Filtering response pages never appear

Hi, 

 

My URL filtering response pages never appear, even the default ones.

Is there anything to do to activate them ? I always have the "This site can’t be reached" message with a connection reset.

 

Thanks

PorZik by L0 Member
  • 7377 Views
  • 4 replies
  • 0 Likes

Syslog miner not recieving the syslog messages

HI All,

 

I have used the below link to configure Syslog miner, but metrics are not showing up in stats.

https://live.paloaltonetworks.com/t5/MineMeld-Articles/Using-the-syslog-Miner/ta-p/77262

 

I have tried to troubleshoot  using following discussi

...

syslog miner node.png
stats.png
rsyslog_config.png
rsyslog-logs.png

Clear Config on new Palo

Good Morning. Is there an easy way to clear out all configuration settings on a new Palo without having to go through the CLI to clear each item individually, or doing the same in the GUI? It is time-consuming to have to go in and delete the default

...

NAT very slow

PA-3020 Software Version 8.0.4
I have several policies U-Turn Nat and Destination Address Translation in the DMZ
Three times a day the acces to these Policies becomes very slow
If I send a ping to one of these servers the time is very large the 1000 to

...

  • 24009 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Posts
Top Liked Authors
Labels