General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! user Id issue with active- active HA

Hello Friends,

we have 2 firewall active-active HA mode. same LDAP configuration on both firewall. HA Active primary it working fine but secondary is not working. if primary goes down secondary work as a active, its also working fine. but it will not

...

Satish by L4 Transporter
  • 5990 Views
  • 4 replies
  • 0 Likes

Layer 3 switch behind Layer 3 PA-3020 interface

So I'm new to my PA-3020 and trying to get beyond my basic config has introduced a new problem for me.

I have a Layer 3 Cisco connected to my PA eth 1/2 via a routed interface on the switch.  My traffic is all working fine now, but I want to make some

...

GCA by L1 Bithead
  • 3457 Views
  • 4 replies
  • 0 Likes

Poodle Bits Vulnerability

Looking for some guidance on this. I am seeing a lot of Poodle Bits vulnerability showing up on our threat monitor. Digging into the threat, the first item is always showing our current router (192.168.0.1) followed by two different attacker host fro

...

jharlow by L3 Networker
  • 2114 Views
  • 3 replies
  • 0 Likes

Resolved! DNS top applications?

I recently installed a PA-500 on our network. Currently it is in virtual mode as I start to understand how to configure the device.  One of the things I have noticed is that consistently, DNS is the number 1 application. Second is web-browsing.  Just

...

jharlow by L3 Networker
  • 4650 Views
  • 2 replies
  • 1 Likes

GUI Bug: Dynamic Source NAT

Hi All,

Looks like there is a minor GUI bug in the NAT policy section of Panorama.  Do you all see the same thing?

Objects:

NameAddressEXT_FW_192.168.0.1192.168.0.1/24EXT_FW_5.5.5.15.5.5.1/24EXT_FW_10.0.0.110.0.0.1/24

NAT Rule:

Translated Packet

Type = Dyn

...

Slow management UI

Hi people,

I have a PA-2050 that is extremely slow while navigating the management interface. Why is it so?

Thank you for your help

//Ron

ron_maiga by Not applicable
  • 3806 Views
  • 4 replies
  • 0 Likes

Resolved! HTTPS response page

Hi Friends,

It is possible to enable the response page for HTTPS traffic. if yes then how ??

Regards

Satish

Satish by L4 Transporter
  • 4418 Views
  • 3 replies
  • 0 Likes

QoS on aggregate interfaces

Hi All,

Are there any tricks to getting QoS enabled on Aggregate ports?

I have 8+VLANs running into two physical aggregate ports, that I want to enable QoS on.

Possible, or not?

KatanaNZ by L3 Networker
  • 3634 Views
  • 5 replies
  • 0 Likes

BGP Across Two Data Centers

hey all, we have a customer who currently has two PA-2050 nodes setup with HA at one location.

they would like to split the pair and have one PA-2050 at Site1 and the other at Site2 ... setup as Active/Standby.

There would be two private L2 networks be

...

RHO by L0 Member
  • 1949 Views
  • 1 replies
  • 0 Likes

tcp-fin and aged out

I know there are timeouts set for different application is there a reason other that session table information. Is there any risk? Is it the firewall that is closing a connection? If so what would it close a active connection? Is there a security rea

...

jdprovine by L4 Transporter
  • 5954 Views
  • 3 replies
  • 0 Likes

Object Names and IP Addresses

I've run across an interesting "feature" in working with the Palo Alto system.  I'm converting from the Checkpoint platform and have found a feature that I use in the Checkpoint all the time, but don't have available in the Palo Alto Panorama.  If yo

...

User-ID for Exchange Permission Issue

Hi All,

I'm running an agent-based User-ID setup against three AD DCs and two Exchange CAS servers.  Unfortunately, despite having the Event Log Reader permission, I cannot seem to get data from the Exchange servers.  I am successfully getting data fr

...

HA question

Hi,


In an HA pair does the passive HA unit also generate the canned predefined reports? Or only the active HA unit?


Thanks,

Emma

Problems with ms lync / url filtering

Hi all,

I am trying to get lync2013 working, and more specifically Skype for Business, successor of Lync. I have Lync 2013 completely working, but I would like to permit all the wildcards permitted through url filtering, linked to a number of applicat

...

  • 23718 Posts
  • 104 Subscriptions
Top Liked Authors
Labels