This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 468 Views
  • 0 replies
  • 2 Likes

Ipsec VPN issue with checkpoint

Hi Friends,

We have an IPsec VPN tunnel configured with  CheckPoint firewall.

   

   

Basically, when our Phase 1 expires after 24 hours, if a Phase 2 key is still within its 1 hour lifetime, we receive no response back.

   

   

Only after the Phase 2 k

...

Satish by L4 Transporter
  • 9135 Views
  • 4 replies
  • 0 Likes

Resolved! Static user-id to IP-address mapping

Hi All,

Is there a way in PanOS 6.1.x to manually map  a user-id to an ip-address.

Or is there a way to set an IP-address to be exempt from the user-id mapping policy.

I have PA-500s being staged behind a generic firewall inside a production network wit

...

Resolved! High Availability VWire

I am setting up a HA pair of 5060s in vwire mode between two Cisco ASA's and the internal switch. the ASAs are set up has HA.

What is the best way to set up the 5060s in HA to ensure they notice when the ASA fails. I do not want a scenario where the A

...

DHCP not passing thru the 500 in wire mode

I am using a pa-500 as just a web proxy, I have clients sitting in different vlans connected to a ASA5512 that is acting as the router/FW and has DHCP Relay setup and was working fine.  I added the PA500 between the ASA and the other network as a web

...

jtribble by Not applicable
  • 2919 Views
  • 2 replies
  • 0 Likes

BGP setup - "max prefixes" question

We have a pair of 7050s that are Internet-connected via three ISPs. The ISPs are sending a limited set of routes (essentially the IP space they "own) down to our border routers. We want to replace the static default route we're using with BGP between

...

Resolved! Cannot ping PAN from srx

Hi guys,

I just got my hands on a new PAN. I have setup an srx100 behind the PA-500. The interface Ethernet 2/8 is in the trust zone, is setup as a L3 interface and has an IP of 10.1.1.1. The SRX's IP is 10.1.1.2. The SRX's next-hop address is the PAN

...

Resolved! Filename capturing not working...

Hi everyone,

Is it possible to capture filenames as they are uploaded to dropbox, box.com, justcloud.com, etc...?

We "should" be decrypting the traffic according to our decryption policy. Well it at least shows the flag decrypted in the packet capture

...

Crash28 by L1 Bithead
  • 3314 Views
  • 3 replies
  • 0 Likes

How to configure a pa-500 with 2 inputs

I have a PA-500 running as a web proxy, The connection from the inside is a ASA-5512 (required), except that I have 2 5512's running in active-standby failover mode. How do I connect both 5512's into the PA500 so that if a failover happens the traffi

...

jtribble by Not applicable
  • 6039 Views
  • 10 replies
  • 0 Likes

Zone Configuration

Firstly, apologies if there is already a thread on this.

I have a pair of PA5020's running in HA mode with PAN-OS 6.0.5-h3

When trying to create new interfaces I get the following errors

 

Interface X has no zone configuration.

Interface Y has no zone co

...

JulianH by L1 Bithead
  • 2373 Views
  • 1 replies
  • 0 Likes
  • 23704 Posts
  • 110 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks