This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4244 Views
  • 0 replies
  • 0 Likes

Web Filtering and Reporting

I have been tweeking reports on these Palos we purchases (3020) and trying to find a good Web Browsing/Filtering report to provide for senior management that will encompass top xx users with most visited external sites, preferrably with the duration on each site; However, as of yet I have not been able to customize a report that is easy to read ...

What services are used by the Management port?

We have been tasked to follow the CIS benchmark for our Palo Alto firewalls. One item is to limit access to specific IP addresses for the Management port. That is easy enough if the only thing using the management port was users connecting to manage the firewall itself. My question is what other services use the management port (Panorama, User-I...

kjsocher by L0 Member
  • 3432 Views
  • 3 replies
  • 0 Likes

Resolved! Installing Global Protect on Mac not working.

I have downloaded and installed the latest GlobalProtect for Mac. The install does not show any errors, but the agent does not seem to have started. Rebooted and installed again, but still no joy. I am running 10.12.5, Sierra on a 2010 Mac Mini with 8GB of RAM.

mdorsey by L0 Member
  • 5757 Views
  • 2 replies
  • 0 Likes

Resolved! Logging levels

Palo Alto is currently logging URLs which includes a path such as webserver.com/code.exe?id=4 but Palo is capable of logging a message that would display just the code.exe filename as well as a content type such as application/x-octet-stream or ms-executable. I would like to have these FILE events. Does anyone have insight into this for a palo...

jerm1020 by L0 Member
  • 2938 Views
  • 2 replies
  • 0 Likes

Panorama shared objects

Hi I am about to import my config from a PA into panorama. Now with shared objects, how do you manage them, can you delete them, I haven't found a way to do it via the web uiHow do change it from shared to non shared or the reverse ?

native VPN for Iphone on Pan os 8.0.2

Hello everyone, recently, i have access the acces for a palo alto Pa 500 i made the upgrade from 7.1.8 to 8.0.2, but now i need to do the configuration for a native vpn, for conect some iphone´s, but i dont have idea how to do this, there is anyone how can help me or any link more explicit about how to do it, i dont know some terms. i hope you...

Decryption Issue

Hello All, Need help 1. Decryption is not working in IOS device2. Outlook is not working in Android via decryption

tac.in by L3 Networker
  • 2868 Views
  • 3 replies
  • 0 Likes

Resolved! Global Protect question

Hi So I recently went through a POC with a HA pair of PA-3060. Setup a Portal. Now it seems like my vendor/pa forgot to add the any GP licensing. So by my read, I can do single gateway setup. Is there some doco on how to setup a client with no portal ?

PAN 5050 Migration to PAN 5220

We are planning a migration from hardware 5050 to 5220. The PANOS migration will be from 6.1.16 to 8.0.2 (oe whatever 8.x version installed on the new 5220 hardware). I am looking for advise for the upgrade process.

Active Directory Authentication for GlobalProtect issue

Hi ! Currently, I am using GlobalProtect in my network.Also, I am configuring an Active Directory Server, and I would like to use AD users to connect to GlobalProtect (currently I'm using local users / groups in the firewall). Computers are not in the domain yet. I have followed this tutorial : https://live.paloaltonetworks.com/t5/Configuration-...

Server LDAP.PNG
Group Mapping 1.PNG
Group Mapping 2.PNG
Auth Profile.PNG

GlobalProtect Clients fall back to SSL

Hi, Our GP Clients initially try to establish a connection over IPSec, but fall back to SSL every time. I can see the IPSEC traffic coming in and being allowed and do not know how to find why the tunnel is not establishing over IPSec. Any ideas on how to troubleshoot this? Or suggestions? Thanks,Shannon

SARowe_NZ by L3 Networker
  • 3955 Views
  • 2 replies
  • 0 Likes

Resolved! Force Safe Search without SSL decryption

We are a K-12 school district. SSL decryption is not in the cards, at least for the time being. From what I read, enabling safe search enforcement in URL filtering profile will not work properly without having implemented SSL decryption If that's correct, is a DNS proxy the way to go, as described here: https://support.google.com/websearch/ans...

Resolved! GlobalProtect App Dynamic Configuration misses informaion for 'mfa-enabled'.

I was trying some different settings out on my Global Protect portal app config and now when I commit from panorama I get these warnings:Details:. Config 'fw-portal-agent':. GlobalProtect App Dynamic Configuration misses informaion for 'mfa-enabled'.. GlobalProtect App Dynamic Configuration misses informaion for 'mfa-listening-port'.. GlobalProt...

Setting up Panorama as a log collector

Hi I have tried reading and following some of the manuals and well.... argh. So I have 1 HA cluster of PA-3060 and 1 VM panorama. I have upped the spec of the vm - to allow me to change into panorama mode. I have added a 100G SCSI drive sdb added it as a log disk (can't remember what I did for that) What I have done ison Panorama VM panorma / ma...

  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks