General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 421 Views
  • 0 replies
  • 2 Likes

Resolved! "decrypt-unsupport-param" error on Inbound SSL Decryption

I am trying to get inbound SSL decryption for our web server. I imported our web server's SSL certificate with private key to the Palo. It shows "Valid" and the "private key" checkbox is checked.

 

But the log shows it is not getting decrypted, and I'm

...

Maxstr by L3 Networker
  • 29063 Views
  • 18 replies
  • 0 Likes

Minemeld not pulling low and medium confidence feeds?

Hello,

 

My firewall is able to pull several feeds from our minemeld server. However, it is not pulling our Low and Medium Confidence inbound feeds. Worked with PA support and they said there must be something wrong with our Minemeld server and sugge

...

refresh FQDN problem

Hi,

 

We have several computers in our network using this proxy: proxy1.eu.webscanningservice.com

This domain changes IP each 15-20minutes. So when this domain changes the Ip we can reach the proxy from our computers.

So i have several doubts:

1)PA detect

...

Palo Alto Integration... weirdness.

 

Morning,

 

I was wondering if someone could help me. We have the palo intergation enabled and the results are rather interesting.

 

If I check a device that is a iOS Device in Aruba I can see IP, user assiocated to the device and so on. If I put that sa

...

Screen Shot 2017-01-10 at 10.39.45 am.png
Screen Shot 2017-01-10 at 10.40.29 am.png
Screen Shot 2017-01-10 at 10.40.46 am.png

Ping to allow on Security Policy

Hi

 

I have made security policy on Paloalto as per port base requirment.

 

eg.

I have allowed http,  https, dns as a service. But i also want ping to be allowed in the same policy.

 

Please advice how can achive this.

 

Samir.  

samirs by L0 Member
  • 2495 Views
  • 2 replies
  • 0 Likes

Recommemded version for PA-2020

hi,

 

We have a cluster PA-2020 with PanOS 5.0.16. I just looed into EoS version, and this version doest have support since last november. Please, can we upgrade this PA to any higher version??? which is the recommend for this PA-2020?? we dont want to

...

Resolved! Panorama and Oracle OVS

Hello,

 

We have Panorama implemented on VMWare ESX. We would like to move the VM from VMWare to Oracle Virtual Host. Is Panorama supported on Oracle OVS?

 

Thanks in advance.

Farzana by L4 Transporter
  • 2082 Views
  • 1 replies
  • 0 Likes

Resolved! REST API: set: service

Hi,
 
I tried to set a new service using action=set and it gives me an error 
"set failed, may need to override template object first”
And if I use action=override
"Object cannot be overridden”
r
Can anyone help me to get this done?
 
https://[IP-ADDRESS]/api
...

hottija by L1 Bithead
  • 7997 Views
  • 5 replies
  • 0 Likes

Minemeld on RHEL due any time soon?

Hi all, as a long time Palo customer I'm keen to utilise Minemeld and ideally like to run it on RHEL.  

 

Is there anything in the pipeline for installing / supporting Minemeld on RHEL or anyone admitting to getting it working without "support"?

 

Ot

...

Stevobot by L1 Bithead
  • 6039 Views
  • 3 replies
  • 1 Likes

ldap cfg LDAP failed to get info from server

Has anyone run into the issue where the ldap server is generating the following logs: ldap cfg LDAP failed to get info from server "10.x.x.x"?

We are not getting authentication issues and the tcpdump on the mgmt interface shows bi-directional traffic.

...

Basic Networking question

My basic question is if I have an existing MPLS connection to a remote office which is basically made up of static routes on both ends, can I also create a site-to-site VPN as a backup or will this cause a loop?

 

What I mean is can both be active at t

...

Resolved! intra-interface (packets enter and exit same interface) ?

This is a problem for other vendors (and something must be enabled/configured to allow this to occur).

Have not tried this in PANOS, but wondering if this just works or is it a similar scenario where you must enable something in PANOS ?

http://www.netw

...

mpgioia by L3 Networker
  • 8218 Views
  • 7 replies
  • 0 Likes

Resolved! Is Graceful shutdown a good idea to invoke Failover ?

Hello,

 

Next to a project that I have to acheive in some days, i've been searching for a answer to my questions that I haven't found.
That why I try here now and I hope you will be able to assist me 

 

Due to a UPS maintenance, I will have to unplug our

...

  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels