General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone, Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June. This event will cover the following points related to the newly unveiled Zero Trust Network Security: Secure access to the right applicat...

seattle-launch-live-community-r2b-1100x120.jpg
jdelio by Community Team Member
  • 479 Views
  • 1 replies
  • 4 Likes

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 18160 Views
  • 41 replies
  • 32 Likes

Natting Internal Hosts to a differente ISP`s

I'm trying to find documentation and/or any help to see if PAN firewalls are capable of NATing Two external ISP`s to a differents hosts IP.My scenario:My default gateway is 187.x.x.xWhen i try to make a NAT with the seconde ISP 189.x.x.x , i don`t kn...

Thiago by L3 Networker
  • 697 Views
  • 5 replies
  • 0 Likes

WMI polling failures

Is anyone experiencing WMI polling failures? We're using user id agent 3.1 with PAN OS 4.1.3 to support Kerberos and leverage our MS AD group based security rules in the PAN, but WMI polling has been incosistent. All appropriate permissions exist, bu...

jasbeck by Not applicable
  • 2972 Views
  • 4 replies
  • 0 Likes

PA 5050 Upgrade to 4.1.X

Today I upgraded my PA 5050 to 4.1.0 and it was sucessfull. But when I tried to upgade from 4.1.0 to 4.1.3.or 4.1.4 i got an error message that the file will not upload as the file is invalid.Any idea why it is giving such error.Thanks

itsecll by L1 Bithead
  • 871 Views
  • 7 replies
  • 0 Likes

AIM-MAIL dependency

After a recent APP-ID update, AIM-MAIL is sqwauking about not having imap, smtp and pop3 dependencies enabled. Users still get access to their webmail, but I'd like not to continue getting the below warnings. Ideally, I'd like PA to re-address this A...

Resolved! Is there a way to copy partial configs?

If I had a cisco, I could copy/paste partial configs between devices, is there away to do this with the PA?I have some tunnels that need to get built across several firewalls, but I dont want to go to each one.

erantanen by Not applicable
  • 1004 Views
  • 2 replies
  • 0 Likes

SSL Weak CBC Mode Vulnerability

Our box was scanned by Qualys and the SSL VPN portal cames up with the following message:If possible, upgrade to TLS v1.1 or TLS v1.2. If upgrading is not possible, then disabling CBC mode cipher will remove the vulnerability.Any ideas how to disable...

u5273 by Not applicable
  • 865 Views
  • 2 replies
  • 0 Likes

Configuring Virtual Route in 4.1 default gateway

I was trying to enter default gateway in Virtual Route when I commit it , it is asking to enter canont find interface.I use to configure this in 3.1 same no problem.Can anybody help tell me why ?Thanks,

BPA by L0 Member
  • 566 Views
  • 1 replies
  • 0 Likes

Resolved! What DROPS User -> IP Mappings

Hi,For no apparent reason my AD account is not generating reliable User->IP mappings via the UserID agent - after working fine for weeks.As part of my investigations into this I can see that my User->IP map is being generated, appearing on the UserID...

apackard by L4 Transporter
  • 911 Views
  • 2 replies
  • 0 Likes

Need to logout/login to see new signatures?

I think I may have found a bug with PANOS 4.1.1 on PA-5050s where the WebUI will not display new signatures until the user has logged out and logged back in again.I left a browser (Firefox 10) logged in for several days, using it just enough that the...

Mack by L2 Linker
  • 483 Views
  • 2 replies
  • 0 Likes

Problems with PA-2050

hello friends....I have a PA-20-50 configured as content filtering and is synchronized with a pan-agent, the problem I have is that the device is completely disconnected after 10 minutes and only restarting again operate.Know if any physical detail o...

ljuarez by Not applicable
  • 548 Views
  • 4 replies
  • 0 Likes

Mitel Border Gateway / Teleworker

Hi all,I'm having a problem getting Mitel's Border Gateway (formerly known as Teleworker) working properly. For those not in the know... Mitel is a large VOIP phone system company and they have various addons, including a server which would typically...

UKRB by L3 Networker
  • 1529 Views
  • 5 replies
  • 1 Likes

PA-500 throughputs?

I realize that is a difficult question to answer. What kind of maximum throughputs are people seeing with their PA-500s?For example: I monitor our firewall (not a PA) using PRTG via SNMP and see a fairly constant 20 Mbps with some 30-45 minute spikes...

Resolved! Would PANOS support TGC's IF-MAP protocol?

Hi,Testing some Automation environments, we would like to use IF-MAP protocol in order to set an scenario where setting a new Virtual Machine (ESX) will trigger an automatic network devices configuration task to allow traffic and security. This inclu...