General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 331 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3687 Views
  • 2 replies
  • 14 Likes

Resolved! VPN s2s with Juniper ScreenOS with multiple networks on PA side

Hello

 

I have to connect by ipsec vpn PA200 PANOS6.1.6 with NS5GT 6.2.0r15 ScreenOS.

Problem that I have is that clients behind NS must have access to two LANs on PA and to internet throuth tunnel.

 

LAN_A———

LAN_B——— PaloAlto……….tunel_IPSec………………Netscree

...

_slv_ by L4 Transporter
  • 3131 Views
  • 4 replies
  • 0 Likes

SSL Decryption Woes

Hi,

 

I am not able to get to https://platinum.netnames.com/ with SSL decryption on, on PAN 7.0.1 / PA-3020 (IE11 / FF40 == TLS failure). Also, speed seems capped to 3Mbit/s with some CDNs (S3 AWS). Am I missing something?

 

thanks.

Nested groups problem

Hello all,

 

3 domain and single forest.

(root domain)  named as domainA and domainB and domainC

 

we created 3 LDAP profile for each domain.

we can see members from all domains.

we can see groups for each domain also.

 

But problem is, if we create a group n

...

PanIst by L3 Networker
  • 3447 Views
  • 5 replies
  • 0 Likes

TCP Echo Service on an interface

Hi all,

 

Is it possible to get an interface to respond to the TCP Echo Service on Port 7 via a management profile or some other way?

 

I don't mean a ICMP echo request (Ping) but what's described here

 

https://en.wikipedia.org/wiki/Echo_Protocol

ht

...

eugenep by L3 Networker
  • 1726 Views
  • 1 replies
  • 0 Likes

brightcloud active option unavailable

Hi,

     We couldn't activate brightcloud url filtering with our old database.

I have attached the screenshot for you reference, kindly look into it and help.

 

 

 

with regards,

Ram

 

PA_URL_license.png
Gururaj by L4 Transporter
  • 2326 Views
  • 3 replies
  • 0 Likes

Resolved! PA Zones

I have several subnet routed through the PA for Internet Access. All the subnets are conencted via the same NIC.

I wanted to seperate the one of the subnet into a PA zone , but since it is connected to one NIC I cannot have two zones on the same NIC.

...

RC-BHF by L2 Linker
  • 2722 Views
  • 6 replies
  • 0 Likes

vpn s2s with Mikrotik router - proxy id problem

Hello

I'm trying to connect PaloAlto PA200 PANOS 6.1.6 and Mikrotik RB951 6.32.2

Phase 1 is estabilished properly but I cant get phase 2 working.

Logs from Mikrotik says:

Sep/22/2015 20:09:34 ipsec,debug,packet HASH computed:
Sep/22/2015 20:09:34 ipsec,de
...

_slv_ by L4 Transporter
  • 6735 Views
  • 15 replies
  • 0 Likes

PA-2020 in HA commit are just a nightmare

Dear Community,

 

Is there a official way to improve the commit on those models ?

 

It could take more than 15 minutes sometime, it really hard to work with those appliance.

the upgrade for 3030 appliance is insane too, about 40 000 € with 3 years support

...

Logs related to load old configuration from Panorama

Hi all,

 

From Panorama web interface, if I load an old committed configuration into a managed device (I mean from Panorama->Managed devices-> Backups tag), where I can see the logs related to these operations?

In the local configuration system logs I c

...

JLBravo by L1 Bithead
  • 1325 Views
  • 1 replies
  • 0 Likes

Setting up dedicated log collector

I am setting up a new M100 as a dedicated log collector, and wanted to share a day of frustration with a resolution.... After following the Panorama guide for setup, I was unable to see the Disks in the Disk tab under Managed Collectors on the Panora

...

Resolved! GlobalProtect connect via batch

Hello, Our GlobalProtect Agent will be installed on different kind of PCs. Some external (the PCs of some suppliers or computer maintenance), and some internal (laptops with 3G connections). So I've chose the "on-demand" connection. For the internal ...

  • 24193 Posts
  • 100 Subscriptions
Top Liked Authors
Labels