General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Destination NAT or Static NAT

Hello

 

If I configured static NAT and destination NAT for one public service to be accessible from Internet. What type of NAT rule will be utilized by  PA, I mean static NAT or destination NAT or it soley depends upon the order of rules?

Resolved! Proxy ID in SA?

Hello Experts

 

I have site to site VPN between HQ PA and branch PA. I used the proxy id on HQ as Local: 172.16.110.0/24 remote: 10.10.10.0/24 and everything is working.

 

Now brach office need to access another subnet in HQ that is 172.16.111.0/24. In t

...

Resolved! Can't do a commit ! Auto-commit failing

Hi

Have got a Pa-3020 Demo box to use for a POC, but I cant commit anything as "commit operation aborted as auto-commit not done yet"

In the Task view several auto-commit antries are failed.

Any one has any suggestions ??

 

Best Regards Jens W

TestASite issues - not a valid URL

I have been having issues lately with many URLs I manually submit to the test a site page. I am receiving a message that the URL is not valid when it is 100% valid.

 

Anyone else having this issue?

 

How to approve that PaloAlto is sending Netflow

Hi, Please I need Help !! 

 

I have installed Netflow integrator to collect netflow data from PaloAlto firewall.I have configured PaloAlto to send netflow data to the server Netflow Integrator.But there is no data is receiving .

How can I know that palo

...

Nessrina by L0 Member
  • 1161 Views
  • 1 replies
  • 0 Likes

Wildcard Certificate in Captive Portal

Is this possible to do? I never seem to be able to select the certificate.

 

I've tried combing the certificates so they are chained together with the CA, to no avail.

 

The wildcard doesn't have any ASN for the PA, is this what is causing the issue?

 

 

HOELarge by L0 Member
  • 937 Views
  • 0 replies
  • 0 Likes

Error Checking Credentials - Bad Request

We are no longer able to log into the Web GUI after upgrading from v0.9.16 to v0.9.24, it shows the error "Error Checking Credentials - Bad Request"

 

- the username and password are a copy and paste from before so the credentials are correct

- defau

...

Resolved! How to properly disable 3DES encryption algorithm?

We are currently being required to disable 3DES in order to pass PCI compliance (due to the Sweet32 exploit).

 

We have a decryption profile for all incoming traffic hitting our firewall and services behind it, where I have tried disabling 3DES.

However

...

3DES.png
as-mg by L3 Networker
  • 9967 Views
  • 6 replies
  • 0 Likes

App-ID with encrypted sharepoint app

Hello Experts 

 

Just want to ask something, If I am running sharepoint application on https like https://myintranet then firewall will classify this application into what? Just SSL or sharepoint as well

Resolved! Service port to application help

Hello Experts

 

We migrated Juniper netscreen firewall to PA. I am just struggling to make application based policies. User just send the ports to make security policies. Like:

 

1- Allow port tcp 1549 on mysql db

2- Allow https://ebs:8000

 

How I can handl

...

Active Directory Application

Hello 

 

I create the security policy to allow users to logon to domain by simply selecting the activedirectory application but it is not working? Should I need to allow additional applications ?

Panorama VM - looking up older logs takes a long time

We have a Panorama VM with a 2TB local disk 

 

Looking up recent traffic logs takes a short time

But looking up older logs takes quite a bit longer 

As an example it took 10 minutes to look up logs older than 2016/9/20 05:25:25

I used this as a filter ( t

...

Advertisment filtering

Hi, Anyone else suffering from increased amount of advertisments lately through the PAN while web-advertisments filtering is turned on?

When using an AdBlocker in Google Chrome, the amount of ads is much less. (gone)

Is my assumtion correct that,  that

...

2016-10-26 14_36_35-Microsoft Edge.png