General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 847 Views
  • 1 replies
  • 8 Likes

No Logs for DMZ zone

We have created a NAT policy to access the Server in the DMZ zone, we can able to successfully connect to the server from public network. But, we cannot see the traffic logs for the same. 

Resolved! How to configure gre over ipsec?

Hello 

 

For example, some implementations require multicast traffic to be encapsulated before IPSec encrypts it. If this is a requirement for your environment and the GRE tunnel and IPSec tunnel share the same IP address, Add GRE Encapsulation when yo

...

ZhouYu_0-1628158713548.png
ZhouYu_1-1628158764675.png
ZhouYu_2-1628158809447.png
ZhouYu by L1 Bithead
  • 6690 Views
  • 7 replies
  • 0 Likes

Export configuration change message failed via SCP

Hi Panorama export configuration change message is configured to be sent to SCP server. The SCP is installed at PC/Win10. When trying to test the connection between Panorama and the SCP, I launch the connection from SCP. but I got the below situation

...

kevinospf_0-1693762225740.png
kevinospf_1-1693762254753.png

Config (XML) import to device, using Panorama

, XML

Dear all,

The Panorama feature "Scheduled Config Export" is a great way to backup all device configs to a central backup repository.

I known one can import this XML config from the device itself,

But would there also be a way to import  the complet

...

wimjuste by L1 Bithead
  • 2635 Views
  • 6 replies
  • 0 Likes

Resolved! Questions about EDL

Hello,

I have a firewall rule on the Internet Firewall list this

 

Source: Palo Alto Networks - High risk IP addresses - Palo Alto Networks - Known malicious IP addresses

Destination Any

Service Any

Action: drop

 

So if an ip inside the two EDL try t

...

Resolved! Firewall cannot be added to panorama

Hi Serial number is got from palo alto firewall, we try to add the firewall into panorama. but I got the error message as below picture. This firewall is the first one to be added to panorama. why it has Maximum issue? Thanks 

 

 

 

kevinospf_0-1693278009012.png

Resolved! HA active/active dual ISP load balancing

Hi all,

I am considering network design that have:

- Dual ISP (public IP /29 for each)

- 2 x PA with active/active HA

- PA connects directly to L2 networks (LAN)

 

Requires:

Load sharing between 2 ISP Internet links

 

Problems:

Is it possible to conf

...

nw-rogox by L0 Member
  • 396 Views
  • 3 replies
  • 0 Likes

DNS not populating when using DHCP server on PAN

We are using the PAN's DHCP server for some of our sites and for some reason its only pushing static entries to our Windows DNS. We need host names to resolve for all IPs at these sites. Was wondering if there is something we need to do on either sid

...

BC_Sys by L0 Member
  • 188 Views
  • 1 replies
  • 0 Likes

Panorama in AWS to be Upgraded

Hi All,

We are planning to upgrade the Panorama installed in AWS. Can we do in place upgrade as we normally do? Or do we need to install the new version may be 11.0.0 in the new VM in AWS and migrate?

Regards,

Sanjay S

Top Solution Authors
Top Liked Authors