General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 95 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3336 Views
  • 2 replies
  • 14 Likes

Resolved! How to filter Office 365 in source NAT?

Hello,

We have a specific requriement to map Office 365 traffic to a specific source NAT to ensure we don't exceed the port limitation. The only way we can think of doing this is to include all the Office 365 IP address ranges in the destination of th

...

Qos

Hi,

If I have 100 Mbps internet download speed ,

If I want to shape like below

Class 1 , 10
Class 2, 5
Class 3, 5
Class 5 , 10
Class 6, 5
Class 7 , 5
Class 8, 5

Do i need to assign Reamining 45 to (default class(4))

The interface is 1Gbps

So what would be the va

...

sib2017 by L4 Transporter
  • 2047 Views
  • 5 replies
  • 0 Likes

Palo alto site to any vpn ( SSL vpn configuration )

Hi Everybody ,

 

I would like to configure a senario . Please suggest me how to proceed on this .

 

Devices :  1 Nexus switch , 1 Palo alto 3020 , 2 MBPS internet connection ( ISP )

 

GOAL : I would like to configure a Site to any VPN ( SSL VPN ) over PA 3

...

issues after deployed VM-PA under VMware

Hello Community,

 

I'm creating a lab with vmware vsphere 5.5.

 

I deployed two firewall with the following network configuration in vmware.

 

The issue is from the firewall I can to ping to my untrust and trust interfaces. But when I doing ping to the lin

...

vmwareconfig.JPG
PA interfaces.JPG
PApolicies.JPG
Apadilla by L3 Networker
  • 4486 Views
  • 8 replies
  • 0 Likes

Resolved! Problem using URL-filterlists for PA

Hello,

 

I am very happy, that I can create dynamical lists for using it in the PA. So I use ransomwaretracker.RW_URLBL with stdlib-aggregatorURL as prozessor and stdlib.feedHCGreen as output to create a URL-list. So I got a list like:

 

... http://2...

No Traffic/Threat/URL logs under Monitor tab

So I just stood up a PA-VM-100 fw on ESXi server and everything seem to work just fine except I am not seeing Traffic, Threat, and URL logs under Monitor tab on the WebGUI. I have spent past 48 hours trying to figure this out but to no avail. I tried

...

Windows event log forwarding

Hello,

 

Trying to deploy User ID and the method used for part of the network is Windows Log Forwarding, as per guide linked below

 

https://www.paloaltonetworks.com/documentation/70/pan-os/pan-os/user-id/deploy-user-id-in-a-large-scale-network#72077

 

 Go

...

Error.png
Farzana by L4 Transporter
  • 1729 Views
  • 0 replies
  • 0 Likes

Panorama - address object use in templates

In panorama I'm having to mark address objects as "shared" in order to access them in a template.  I'm curious if this is by design or if I've done something wrong.  This panorama install is brand new so I'm still learning and the firewalls I'm setti

...

Facebook app post/refresh issues

Hello,

 

Since a couple of days users encounter problems with the facebook app, all those users are using an Android device.

It isn't possible to post new messages, refresh new facebook messages and also notifications can not be refreshed. It seems that

...

facebook issues.JPG
ppater by L1 Bithead
  • 2125 Views
  • 3 replies
  • 0 Likes

SYN packets dropped in HA mode

  Sorry for reporting this here rather than through the proper channels  but I am not a direct customer and our service provider who could submit this through the proper channels has not (at least to my knowledge).

 

 

 

  Our network is behind a pair of

...

SYN start.jpg
SYN 20 minute.jpg

Resolved! PA 3000 Error

I just had the follwing error on my PA

 

gdb: 2 tracked gdbs

gdb: 3 tracked gdbs

gdb: 3 tracked gdbs

pktproc_n_log: got max gdb failure event

 

Then the DP re-started.

 

Does any one know what this means.

 

RC-BHF by L2 Linker
  • 2746 Views
  • 3 replies
  • 0 Likes

MineMeld + Palo Alto Networks on Dynamic Block List

 

Is there anyone able to share on how to configure minemeld nodes to automate resolving/capturing the “*.google.com.*” dynamic IP address, so I could integrate with palo alto networks dynamic Block list feature to identify most of the google.com IP

...

Screen Shot 2016-07-19 at 9.00.47 am.png
dkoh by L2 Linker
  • 10605 Views
  • 8 replies
  • 0 Likes
  • 24127 Posts
  • 100 Subscriptions
Top Solution Authors
Labels