General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 239 Views
  • 0 replies
  • 0 Likes

Strange behavior

Hi,

 

facing issue where directed interfaces traffic is not working (from DMZ zone to Servers zone) , while from Inside ZONE to SERVERS is working fine despite inside users SVI is core switch then static route from core switch to paloalto while for u

...

mhmameen by L0 Member
  • 567 Views
  • 1 replies
  • 0 Likes

Resolved! Virtual Router Best Practice - Guest Network

Hi, 

 

We don't have dual ISP but we do have STS VPN that connects our offices to our Cloud Infrastructure.  At the moment all the interfaces share the same virtual router. So assuming the traffic from source to destination was allowed in a security

...

jbusby by L1 Bithead
  • 1075 Views
  • 1 replies
  • 0 Likes

WinRM-HTTP fails with the error 401

Hello, I'd like to request some advice on trying to shift away from WMI to WinRM-HTTP/S based User-ID. 

 

I followed the set-up guide by Palo and User-ID server monitoring is able to connect to the domain controller over WinRM-HTTP, but only every hour

...

Megrretz by L1 Bithead
  • 21290 Views
  • 9 replies
  • 0 Likes

user-id WinRM-HTTP connection refused

hi
after configuration of agentless user-id using Kerberos with WinRM-HTTP (was hard to get it working needed pa support for it)
i encounter this issue
i got 2 DC in my environment DCA and DCB
When DCA is restarted i get Connection refused on both DCA an

...

VM Setup on new laptop

Hell everyone, I'm facing issue regarding setup of VM on my new laptopn (Lenovo). Can anyone guide me how can setup it?

Tim9990 by L1 Bithead
  • 568 Views
  • 1 replies
  • 0 Likes

TCP Retransmission & RST

We have a digital application on Android and IOS  but when user is trying to access from IOS platform and access the application. During application browsing  user is unable to access certain paths of application. And at that time we check on our Pal

...

muhammaduzair_0-1704136560202.png

Firewall unstable

Hi Everyone!

 

I have this weird scenario always happening. One time my firewall suddenly cannot access go outbound the net using data interfaces and then I checked my config 5x but all are good. So I rebooted the firewall just to see if it was a bug

...

10.1.3 - PAN-OS Certificate Expiration on Dec 31 2023

Hello All,

 

I checked my client's firewall, they are using 10.1.3 version.

Scenario 1 : Data distribution, based on the Device -> Monitor -> Date Redistribution -> Agents page it is blank and not configured.

Scenario 2 : The firewall is placed at th

...

KJTeoh by L0 Member
  • 1147 Views
  • 1 replies
  • 0 Likes

Traffic not in logs but in Packet Capture

I'm having issues with my garage door opener thru my PA 220 FW, v9.1.6, with the latest dynamic updates.

It uses DNS and TCP 8883 to communicate to the MyQ servers. In Monitor>Logs>Traffic, I can see DNS traffic from the opener to 8.8.8.8 with return

...

Resolved! logging on intra and interzone

Hello,

I just turned on logging on my intra and inter zone security rules and noticed that in the security logs a few external ip addresses from zone untrust to zone untrust, with the source of a public ip being allowed, session end reason time out.

Ho

...

roma by L2 Linker
  • 3365 Views
  • 4 replies
  • 0 Likes
  • 23624 Posts
  • 107 Subscriptions
Labels