General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Web Interface access from Internet

I have PA-200 connected to Internet , but mgmt interface disconnected right now. Do I have to piggyback mgmt to one of remaining Ethernet interfaces in order to get access to web interface from Internet ? Plus port forward rule ?Let me know

niuk by L3 Networker
  • 3596 Views
  • 17 replies
  • 0 Likes

Question On NAT Configuration

Hello All,

I have a PA-200 at home, sitting behind a Comcast modem, that hands out  a single DHCP address.

I also have a Meraki Z1 VPN device associated with work, that I have behind the PA-200.

The Meraki requires that the source port not be translate

...

No GUI Access: FW-6.1.0: Session Time Out

I have a PA-200 with 6.1.0.  I can SSH in fine to mgmt.  When I try GUI, I get to the login page.  When I login with correct credentials it says Session Timed Out.  I think it's a disk space issue. When I show system disk-space SDA2 is at 100%.  Ever

...

Access only to Office 365

Hi,

We have many client computers with no internet access (only intranet and email).

Since we are migrating our email to Office 365, client computers need access to Office 365 (via Outlook and Web browser). Not only mail services, but also licensing, o

...

spopovic by Not applicable
  • 4560 Views
  • 8 replies
  • 0 Likes

Resolved! PBF failover happens but users still unable to browse

hi,

i have a pa-3020 with two ISP links, my PBF configuration as follows :

for testing when we disable the link for ISP-1 it did a failover but actually no internet browsing, on the NAT there is already two nat policy for each ISP but it did not trigge

...

No Wireless ?

It looks like none of PA has wireless (nothing on PA-200 or PA-500) , am I correct ? It's very disappoining

niuk by L3 Networker
  • 1046 Views
  • 2 replies
  • 0 Likes

Portal Status Connection initializing

I'm using LSVPN, after rebooting my satellite I can see Portal Status Connection initializing  (Network->IPsec Tunnels->Gateway Info) But nothing happens, in the capture I don't even see actual traffic to portal even if I try to reconnect manually. P

...

niuk by L3 Networker
  • 2724 Views
  • 3 replies
  • 0 Likes

Resolved! scheduled report - problem

Hello

I have group of reports that are gnerated every week.

Every custom report I tested using "run now"before I let them work scheduled.

My report looks like:

and the output:

but output from pdf that I got on email:

as You can see, the "Name" and "ID" col

...

_slv_ by L4 Transporter
  • 1456 Views
  • 3 replies
  • 0 Likes

Windows DNS Server behind PA

Did a PA install last night, the client had a public facing DNS server. the DNS server had a public IP before we moved it behind PA to nat it. while it was outside firewall with public IP the DNS queries from internet worked fine without any issues.

...

Wildfire options

Hey guys,

As I'm sure most of us are, I'm seeing a huge string of issues related to Cryptolocker lately.

I've reviewed the several articles floating around on how Palo Alto units deal with this, the fact is I'm seeing spam emails get through encouragin

...

daraco by L0 Member
  • 1561 Views
  • 3 replies
  • 0 Likes

DNS TXT records, use and implications of blocking?

In the recent past my organization was hit with a relatively new DNS Amplification attack which uses a botnet hosting DNS services with a specifically crafted DNS TXT record.  The spoofed requests specifically requested this record hosted on the botn

...

Dz3015 by L4 Transporter
  • 1541 Views
  • 2 replies
  • 0 Likes

ssh (or any) threshold?

I'm experiencing a ton of hits over ssh to servers that must have ssh access. Is there a way to do threat assessment based on SSH,  port etc – and then automatically shut the attack down?  For example if a certain IP begins sending all that traffic o

...

Top Solution Authors
Top Liked Authors