General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 74 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3324 Views
  • 2 replies
  • 14 Likes

Resolved! Rate limiting egress on perimeter install

I have a client where I would like to rate limit egress traffic from an internal source IP. This source IP tends to be a major bandwidth hog. I currently have no QOS profiles setup but I do see the option to limit egress I believe.

Are QOS profiles th

...

SDorsey by L4 Transporter
  • 1642 Views
  • 1 replies
  • 0 Likes

Resolved! forwarding with pbf No Nat

Hi,

We wanted to forward the traffic coming on public interface (1.1.1.1) with port 80 to an another ip address on another interface (DMZ - 2.2.2.2)

just to forward, not want to NAT,

we've written a Pbf untrust to 1.1.1.1 with destination port 80 forwar

...

panos by L6 Presenter
  • 3476 Views
  • 6 replies
  • 0 Likes

Detecting / mitigating Cryptolocker

Hello,

my customer is worried about Cryptolocker infections in the network - CryptoLocker Ransomware Infections | US-CERT. Do you happen to have any best practices or general tips on how to use PAN tools to detect and prevent Cryptolocker from infecti

...

Tuomo by L1 Bithead
  • 3063 Views
  • 5 replies
  • 0 Likes

Resolved! Monitoring VPN tunnel by email

Hi all,

Is there an effective way to send an email alert if a VPN tunnel is down? I checked several places in the web admin UI but could not find a good way to configure it.

Thanks!


PM

Securing IPSec VPN tunnel

Recently we are planning to roll out potentially hundreds of IPSEC VPN tunnels at our customer locations to access our own remote devices securely over the Internet. However, we don't have good control of physical access to these remote VPN devices m

...

DNS service route doesn't work ?

Hi,

I am having troubles configuring dns service route for DNS.

DNS servers are behind tagged internal interface of PA-2050 device.

I was able to configure that for syslog and it sends all the traffic PA outbound to the server.

I was trying to do the sam

...

IPv6 slowness

We have a PA5020 and recently enabled IPv6 throughout our network. We have been experiencing extremely slow internet connections and timeouts until we removed IPv6 from the inside and outside PA box Ethernet interfaces. Our ISP is Comcast and we have

...

rlawsha by L1 Bithead
  • 1475 Views
  • 0 replies
  • 0 Likes

Resolved! 10G link aggregation PA-5050 to Juniper EX4500 switches

Hi everyone,

I'm having a bit of trouble configuring link aggregation between my PA-5050 and Juniper EX4500 switches over 10G interfaces.  The problem seems to stem from the fact that the PA-5050 link-aggregation dialog gives two options for link spee

...

Mack by L2 Linker
  • 3047 Views
  • 3 replies
  • 0 Likes

Limitations in virtual wire mode?

Hello all,

I've checked all docs and guides and did not find any documented limitations (such as features not available) when PA is deployed in virtual wire mode. Does this mean that ALL possible features are available both in routed and VWire mode?

Fo

...

efellows by L1 Bithead
  • 7028 Views
  • 5 replies
  • 0 Likes
Labels