General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 45 replies

Resolved! PBF Interface Choices

I want to set up a policy-based forwarding rule to send all traffic from a particular Source IP out through port ethernet1/8. I can't figure out how to get "1/8" in my list of interface choices. All I have to choose from is vlan, loopback and tunnel....

Resolved! Custom App for CRL downloads

Hi,I am trying to create a custom app that will match CRL downloads, to allow them without any questions ask. Shouldn't be too hard : on a previous web security gateway, I would match a pattern like the following: "http://([^/:])*crl.*\.crl"When tran...

dennisss by L1 Bithead
  • 16 replies

Blocking a site hosted malware

A new "parked domain" company and come to surface, and they seem to own a LOT of domain names, none of which brightcloud has correctly classified as "parked domain". The server in question is hosting a piece of malware called seedabutor.b. Our AV is ...

cenders by L3 Networker
  • 2 replies

Resolved! PAN-OS Upgrade with HA

Has anyone found a really good tech note that goes over performing a PAN-OS upgrade on an HA pair? Both Active-Passive and Active-Active?

cindyb by Not applicable
  • 2 replies

high management CPU

Hi,my PA500 management CPU is 100%PAN OS release 5.0.2 (same problem with 5.0.1)If I reboot the firewall, management CPU usage goes down for some days than raise again to 100%

diennea by L3 Networker
  • 13 replies

Resolved! Can I get all managed devices to show in Panorama Maps?

Do anyone out there know if it is possible to display all managed devices in Panorama in either the Threat or Traffic Maps?We have branch firewalls in locations all over the country and it would be nice to see which were getting hit with more traffic...

Multicast Packets forwarding

Hi Guys,Looking for some help!Quick simplifiy overview of the setup.PA is the DHCP Server for two subnets:Subnet A10.101.0.0/16Subnet B10.102.0.0./16All wireless clients are in subnet A conencted via seperate enterprise Wireless LAn Controller and Ap...

JAG by L1 Bithead
  • 9 replies

Resolved! Help: how to use dynamic block list

Hi all.I want use " Dynamic Block List" to block some IP.I creat a IP list on a local web serversBut I can't import list in to Palo Alto?Something wrong?Pls help me.Thanks

dat.tran by L2 Linker
  • 4 replies

Has anyone taken a look at ?

I stumbled across a site that I think aims to be similar to - sort of the community's independent forum where discussions about Palo Alto can take place. Kind of a neat idea, but I'm not sure how much community momentum it has.Ch...

Resolved! Can't download GP client from the portal

We are setting up GP for SSL VPN. For testing purposes , we have created a local db account on the box and setup GB. The portal comes up and when u log in , u never go beyond the login page . It keeps trying to connect and never does . It eventually ...

usvi by L3 Networker
  • 4 replies

User-ID on-box Best Practice

Hi,Can anyone clarify for me what the best practice recommendations are for the User-ID agent? Prior to V5 it was clear that they should ideally run on the domain controllers or servers close to them. However with the option of running on-box, is thi...

djr by L3 Networker
  • 6 replies

Resolved! TAP Mode and IPv6

Hello Everyone,Is it possible to monitor mirrored IPv6 traffic in TAP mode? I have a PA-500 and it has been enabled for IPv6 firewalling. Apart from checking this option, is there anything else that has to be done to monitor IPv6 traffic? If it is po...

Certificate for Secure Web GUI creation

HelloWhich attributes shall an external CA certificate have to be accepted as a Secure Web GUI Certificate?I have imported one, but SSL Management doesn't work with it. These are its attributes: Version: 3 (0x2) Serial Number: 15:28:3b:46:00:00:00:02...

Resolved! IPSec tunnel as backup link of MPLS connection

Hi,we have MPLS link between two sites. Right now I want to setup backup link with IPSec tunnel. schema of network connection is as on picture.please help me to configure Palo Alto device to monitor MPLS link and switch to IPSec tunnel when MPLS link...

Top Liked Authors