This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! can netflow forwarding be filtered?

I am forwarding netflow to NAC device which then detects endpoints based on netflow data. But it is detecting obsolete hosts in the dest IP fields as live hosts nd casuing lot of false positives. Is there a way I can instruct firewall to send just so

...

Arcfour weak ciphers vulnerability

Dear Team ,
 
One of our customer had vapt points of ssh weak ciphers vulnerabilty we had run the below commands
 
 
set deviceconfig system ssh ciphers mgmt aes256-ctr  
set deviceconfig system ssh mac mgmt hmac-sha2-256 
set deviceconfig system ssh defaul
...

ZTP - Zero Touch Provisioning on Palo Alto Devices

Hi,

I just saw this video from Palo Alto on the ZTP feature for branch agencies deployments. 

 

https://www.paloaltonetworks.com/resources/videos/zero-trust-provisioning

 

Is there already any documentation better describing how this feature is working ?

...

Clientless VPN Loading Issue

Hi Friend,

 

I have configured clientless VPN and application render to outside through clientless VPN portal. All authentication fine and I can see application icon also. But when i press it application redirect and it may takes more than 2 min to loa

...

Resolved! MineMeld - Office 365 - How can I disable miners?

I am working on Office 365 control and I have discovered that MineMeld seems to be the best way to do this.  To that end, I have set up a MineMeld server and imported the PAN-provided script for Office 365.

 

There are some Office 365 features that we

...

Resolved! Security Policies not working as expected

 three are IP address need to reach the head office through a special WAN network from DR end.

 

The NAT Policies for all three IP addresses are the same and they are all called in the same security policy. But only one IP address is going through the

...

Resolved! Problems connecting to Azure Devops

Hi,

 

We use a PA3260 with PanOS 9.0.7.

Since 2 months our programmers have problems connection to Azure Devops. The always lose the connection several times a day.

When they work from home there is no problem, so I think the problem is the firewall. I a

...

Azure_Devops_Problem.png
ZEBIT by L3 Networker
  • 6014 Views
  • 6 replies
  • 0 Likes

GP agent upgrade

 

Hi Team,

 

Users already upgrade version GP from 1.2.1-15 to 3.1.3.-21.

 

But on dashboard firewall, it show GP version 1.2.1-15 .?

 

How to upgrade GP version on dashboard Firewall PA.

 

and when users connect to vpn. GP keep ask to downgrade version. but

...

Resolved! Rename CN name certificate GlobalProtect .

Hi Team,

 

I have question, currently, on firewall PA-500, we do 2 gateway VPN. Its mean have 2 WAN(ISP).  So few users will use VPN via WAN1, and few users will use VPN via WAN2.  Existing VPN using WAN1. So certificate CN name(IP address) point to Ga

...

Why Firewall is not detecting Active Directory?

Hello, 

 

I have configured the User-ID to authenticate Global Protect's users and for User Mapping.

 

But, the Firewall shows the LDAP as "host unreachable".

 

I don't have an MGT IP address, but I have changed the LDAP's service route to look for LDAP's

...

iscott by L2 Linker
  • 3398 Views
  • 2 replies
  • 0 Likes

No Review Policies option after new content updating

For new app-id content version, I downloaded and installed new content version 8275.

As usual, I found review policy option in action column after installing new content.

But I haven't found this review policy option after installing new content.

Curren

...

review_policy issue.png
Su_Myat by L0 Member
  • 2008 Views
  • 1 replies
  • 0 Likes
  • 24219 Posts
  • 99 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks