General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Have to reboot globalprotect client to connect.

WE have a problem with globalprotect-  The users sometimes need to disable the globalprotect client in order to connect to another VPN.  Later when the globalprotect client is re-enabled, any attempt to authenticate immediately returns a username/pas

...

fmurray by L1 Bithead
  • 6712 Views
  • 5 replies
  • 0 Likes

Management Profile and Security rules

Hi There,

I got a question, on non-mgmt interface firewall, I configured a management profile to access SSH and HTTPS do I need to allow the security policy explictly to access firewall ? 

Rokkam by L0 Member
  • 3097 Views
  • 2 replies
  • 0 Likes

Resolved! Check software update failed

Hi all!

 

I have this problem: when i check new software updates, clicking "check now" button, this error appears: "Failed to check upgrade info due to generic communication error. Please check network connectivity and try again."

 

Doing a traceroute we

...

DKanta by L3 Networker
  • 20478 Views
  • 16 replies
  • 0 Likes

Resolved! How To Best Control Access to SFTP Server in DMZ

I have an interesting problem. There is a requirement for moblie devices (Throughout the Us and Canda) to access an SFTP Server from the Internet and upload files to it. No other devices are allowed access, from the Internet, to the SFTP server. The

...

vsys CPU utilization

Just wondering if the more vsys you add, how much more CPU utilization or resource utilization will be used?  Does the more you add degrade the system at all?  I'm looking at a 5060 or a 5560 with at least 7.0 OS.

 

Is there any documentation that stat

...

Unknown source user showing in activity report

 

Hello,

 

We create a automated weekly report for Internet Usage and every report shows an average of 10/11GB unaccounted for.

User-ID is configured properly as we can see the list in the source user column after the first blank entry.

Please advise how

...

Report.png
Farzana by L4 Transporter
  • 1194 Views
  • 0 replies
  • 0 Likes

Anyway to block Webex plugin?

After hearing the news that the Webex extension in Chrome has a serious vulnerability is it possible to block this at the Palo Alto?

 

http://arstechnica.com/security/2017/01/ciscos-webex-chrome-plugin-opens-20-million-users-to-drive-by-attacks/?commen

...

pmc by L2 Linker
  • 4130 Views
  • 4 replies
  • 1 Likes

Use wildcard in user/group based policy

Hi,
We have a Splunk Server that sends to your id-agent (on a windows server) the information of guest users.

Now on PA We can se user@acme.com in the logs, is possbile for us create a rule for all users from acme, without define each user?

 

So a group

...

Resolved! ssh problem on mac os x

Hey guys,

 

I have such a weird problem.

 

A user has to connect to a samba server. He does it on his mac with cyberduck, Port 999 and ssh.

 

in the monitor, the application is "incomplete", the action is "allow", and session end reason is "aged-out".

 

Curr

...

MPI-AE by L4 Transporter
  • 5261 Views
  • 12 replies
  • 0 Likes

Netflow bandwidth usage and link-aggregation

We've added a netflow server profile to 4 sub-interfaces on ae1 that connects ISP. The netflow is then reported to Solarwinds where we have poll and collect netflow from these sub-interfaces. But we are also seeing notifications i Solarwinds that all

...

one globalprotect client two portals

I have two global protect portals one for staff and one for contractors. I regularly have to test both and the only way I have found to do it so far it to change the portal name on the client. Is there anyway to add both portals and toggle between th

...

jdprovine by L4 Transporter
  • 2441 Views
  • 5 replies
  • 0 Likes
  • 24197 Posts
  • 100 Subscriptions
Top Liked Authors
Labels