This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 447 Views
  • 0 replies
  • 2 Likes

HA Cluster different transceiver type on each firewall

It is possible to have one firewall to use mutilmode sfp and another using single mode sfp for the same interface?

 

FW1-ethernet1/13 (1G Single Mode) > Switch A (1G Single Mode)

FW2-ethernet1/13 (1G Mutil Mode) > Switch B (1G Mutil Mode)

 

Thanks

shaunyt by L0 Member
  • 2224 Views
  • 1 replies
  • 0 Likes

Resolved! Google disclaimer and SSL Decryption

Hello,

 

I have enabled SSL decryption on a PA-500 running PanOS 7.0.9 for testing purposes (before enabling in prod environment).

 

All seems to be working fine, except with the Google Disclaimer that randomly occurs and that you have to agree with in o

...

Resolved! URL filtering response pages

Hello Guys,

 

Could you advise, please?  Few questions regarding response pages when URL filtering is implemented.

Defined action continue for any web category like social-networking. Users receive a response page & click on continue and able to access

...

GlobalProtect 2.3.3 problem SSO with Windows10

 

Hi

 

We are trying to test the GlobalProtect client , we have version 2.3.3 but does not make the SSO in a Windows 10 machine with x64 version 1511 i 1607. Do you know if this is a known issue that is solved in a later version ? Or should function?

 

Th

...

SOC_CSG by L4 Transporter
  • 1986 Views
  • 2 replies
  • 0 Likes

basedb vs clouddb URL filter database?

Can anyone anwser why my LocalDB doesn't have a URL match but the CloudDB does?

 

admin@IPS01(active)> test url bluebarracuda.com

bluebarracuda.com not-resolved (Base db) expires in 0 seconds
bluebarracuda.com business-and-economy (Cloud db)

 

thanks!

Resolved! GlobalProtect portal client configuration failed

Hello,

 

I am facing an issue with Global Protect. I have users coming in from 2 different domains and after an upgrade from PAN OS 7.0.5-h2 to 7.0.9, users from the second domain are no longer able to connect.

The error message is that: You are not aut

...

MHamad by L2 Linker
  • 22570 Views
  • 3 replies
  • 0 Likes

How to Change the Default Service TCP Port

Greetings,

 

Is there anyway to change the default TCP port that an interface uses for HTTPS or SSH management service?  

 

For example, I am currently using the external interface to redirect port 443, via Destination NAT, service, and DST port translat

...

j.silva by L1 Bithead
  • 6924 Views
  • 3 replies
  • 0 Likes

Resolved! How to filter Office 365 in source NAT?

Hello,

We have a specific requriement to map Office 365 traffic to a specific source NAT to ensure we don't exceed the port limitation. The only way we can think of doing this is to include all the Office 365 IP address ranges in the destination of th

...

Qos

Hi,

If I have 100 Mbps internet download speed ,

If I want to shape like below

Class 1 , 10
Class 2, 5
Class 3, 5
Class 5 , 10
Class 6, 5
Class 7 , 5
Class 8, 5

Do i need to assign Reamining 45 to (default class(4))

The interface is 1Gbps

So what would be the va

...

sib2017 by L4 Transporter
  • 2499 Views
  • 5 replies
  • 0 Likes

Palo alto site to any vpn ( SSL vpn configuration )

Hi Everybody ,

 

I would like to configure a senario . Please suggest me how to proceed on this .

 

Devices :  1 Nexus switch , 1 Palo alto 3020 , 2 MBPS internet connection ( ISP )

 

GOAL : I would like to configure a Site to any VPN ( SSL VPN ) over PA 3

...

issues after deployed VM-PA under VMware

Hello Community,

 

I'm creating a lab with vmware vsphere 5.5.

 

I deployed two firewall with the following network configuration in vmware.

 

The issue is from the firewall I can to ping to my untrust and trust interfaces. But when I doing ping to the lin

...

vmwareconfig.JPG
PA interfaces.JPG
PApolicies.JPG
Apadilla by L3 Networker
  • 5192 Views
  • 8 replies
  • 0 Likes

Resolved! Problem using URL-filterlists for PA

Hello,

 

I am very happy, that I can create dynamical lists for using it in the PA. So I use ransomwaretracker.RW_URLBL with stdlib-aggregatorURL as prozessor and stdlib.feedHCGreen as output to create a URL-list. So I got a list like:

 

... http://2...

  • 23703 Posts
  • 110 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks