General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Sophos Install & Updates From DMZ

Anyone create a policy allowing a Sophos AV install and then Updates form a DMZ? I have created such a policy but still seems to be an issue.

The security policy has all the source and destination zones and the destination host are any.

I am then all

...

Does the Session Browser have an upper limit of 10240 sessions returned?

On both the GUI and API I've noticed an upper limit of 10240 sessions returned, is that expected behaviour?

Resolved! Global Protect Stable Version

Kindly help to know the current stable version for Global Protect

Resolved! PanOS 8.02 and UAgent 7 vs UAgent 8

Hello.

I have recently upgraded our PA-5050 to PanOS 8.0.2.

I went to upgrade our UserAgent from v 7.0.7-13 to the new 8.0.2-20 version on our Windows Domain Controllers

I was getting errors during the install process and then realized our DCs were N

...

Source Users don't show up in Traffic & Threat

My problem is the Source User in Monitor > Logs > Traffic & Threat don't show for all users. All other columns including Source and Destination IP are displayed properly. The unshown users can be from trusted lan/wlan/vpn zones and is going to trus

...

Resolved! how to block Tor browser this like browsers and vpn tools?

Hi !

I have question for you. I use PA-3020 Firewall. how to block Tor browser, opera vpn browser and this like browsers.

I also want to block proxy VPN tools.

Example: express vpn, nord vpn etc.

Resolved! TLS/SSL profile for PORTAL + GATEWAY (GlobalProtect); must have valid cert for GATEWAY ?

I posted a question here in a config article.

https://live.paloaltonetworks.com/t5/Configuration-Articles/Certificate-config-for-GlobalProtect-SSL-TLS-Client-cert/tac-p/158713#M2099

PORTAL just lets me hit 'accept' anyway. (of course.. as it's all se

...

Storage location of Feed base URL by MM as output

Would you teach me where on the UbuntuOS the title is stored ?

Regards,

Naoya

Missing config after panorama upgrade

Hi,

we had a problem upgrading our panorama long time ago, after upgrade to 7.0 x we lost some config (URL filtering profiles, Custom url category, application filters), so we had to add all these config by hand

Yesterday we upgrade again the PA from

...

Forcing TLS/SSL decryption to cipher suite PAN can decrypt?

We're on 7.1.x and use SSL decryption on traffic coming in to sites we host.

Is there a way to force the SSL traffic to a (strong) cipher suite(s) that the PAN can decrypt please?

I found this KB but I'm not entirely clear if this lets you mandate on

...

Site 2 Site VPN

We have a S2S VPN set up with a Juniper SRX at a partner site.

The P1 key life time is 8hr and P2 life time is 1hr

We are seeing that the VPN drops quite frequiently. After they have had a look at the logs they are saying that during the re-key phase

...

Resolved! Different source user in Monitor tab

Hello,

Can you please advise why sometimes 1 user can show up with a different credentials in the Monitor tab? Please direct me to a KB/Article to rectify the issue.

For example:

Source user:

abcd\joe
abcd.com.au\joe

This causes some applications are bei

...

Question to disabled applications

Hey guys!

I spotted some error messages in the system log of a PA-3020: Disabled applications in vsys1.

After some research I found out that new apps in content updates will be disabled.

My question is: What am I supposed to do now?

Can I enable all

...

Resolved! Untrust certificate issue

Hello,

Our guest users are seeing untrusted certificate errors on every response pages.

An internal CA certificate (issued from enterprise CA server) is used but we can’t push the certificate to the guest users as trusted CA as they are not internal u

...

Resolved! How to add "/ (slash)" at the end of URL

Is it possible to make a topic for the under URL of xml ?

https://support.content.office.net/en-us/static/O365IPAddresses.xml

Currently, existing custom URL categories have a trailing "/", so I want to make it the same.

Regards,

Naoya

General Topics

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free