General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 327 Views
  • 0 replies
  • 0 Likes

Monitor License expiration through SNMP

Hello

I manage several PaloAlto Firewall, different models and PanOS versions, through SNMP. They actually sent via "pangeneraltrap" an alarm about License Expiration one month before it, but I want to know if is it possible to monitor or check the "D

...

SOC_CSG by L4 Transporter
  • 6324 Views
  • 3 replies
  • 0 Likes

About icmp-shell tool and ping-tunnel app-id

Hello,

I want to watch ping-tunnel app-id on traffic logs. So I tried icmp-shell tool generated traffics and then went through FW.

But These traffics showed icmp app-id.

First, What should I do to seeing ping-tunnel app-id?

Second, Is it impossible to u

...

Resolved! NCAA March Madness 2015

Will Palo Alto update the NCAA2014-Flash, -MML and -Video applications for 2015?  Hoping to get these BEFORE the tournament starts.

Thanks,
Rick

syseng by Not applicable
  • 4182 Views
  • 4 replies
  • 2 Likes

6.1.2 LSVPN/VPN Hang - Reboot Required

I am having some issues as well with 6.1.2 and LSVPN to hub which is on 6.0.5h3.  This is vaguely referenced here by others Anyone use 6.1.2? Is it stable where everyone affected, says yeah there's this IPSEC issue and never actually describes what t

...

PA2050 en PanOS 6.1.x

Hey All,

Anyone has a PA2050 running 6.1.x and see an improvement in commit times relative to PanOS 6.0.x?

Or do the added features just slow down the MGMT plane even more?

We have one running in the lab, but since no real traffic is going over it, it

...

mr.linus by L4 Transporter
  • 2313 Views
  • 1 replies
  • 0 Likes

Cannot view software update on support portal

Hi Guys,

Did you ever experienced the below:

When our customer tried to access software update page on their support portal they saw 'no software updates found'

Does this mean the account doesn't have access to the software info?

Thanks,

Cheers,

Mel

MelLi by L2 Linker
  • 2531 Views
  • 2 replies
  • 0 Likes

IP region assignment

PA 500 running PANOS 6.1.2

We have regional blocks in place that block inbound traffic originating from non-US IP's. However, we have discovered a bit of a dilemma.

We have found that an IP such as 137.135.135.1 originates from Ireland and geomaps as s

...

Resolved! Usage scenario for Change Monitor?

I took a look at the Change Monitor today but really struggled to find a use case for it.  Does anyone use this frequently and for what?

Thanks!

Dz3015 by L4 Transporter
  • 3895 Views
  • 4 replies
  • 0 Likes

Downgrade PAN-OS-6 back to PAN-OS-5??

Per this discussion:PA-2000/4000 trade-in I am also caught in the same boat. From what I recall PAN-OS-5 worked ok on the PA-2020's.  Because of all the issues I am experiencing with OS 6 and the inferior product, I am wondering if anyone had success

...

cmateam by L3 Networker
  • 5771 Views
  • 6 replies
  • 0 Likes

TRACKING static route

Hello All,

I have the below queries.

1) How configure 'TRACK' in Static Route (want to monitor the Gateway, As soon as current Gateway is fail immediately traffic will move to another Gateway)
2) How to configure multiple Peer Gateway in a single IPSEC

...

tac.in by L3 Networker
  • 1820 Views
  • 1 replies
  • 0 Likes

Mail attachment virus scanning

How can I implement proper mail attachment virus scanning ?

For incoming mail, I have an antivirus security profile in place that should block virusses (smtp decoder), nothing fancy really:

I notice that the PA doesn't filter attached virusses too well

...

dieter_b by L4 Transporter
  • 7559 Views
  • 10 replies
  • 0 Likes

Wildfire Action doubt

Hello,

We do not have license wildfire in some of our devices.

Do you know if wildfire action (Antivirus Profile) would function without this license?

Regards,

dicu

SOC_CSG by L4 Transporter
  • 2461 Views
  • 2 replies
  • 0 Likes

Inspection of 'http-proxy' traffic

My instinct when I read my own title is to tell me to block the app-id type http-proxy as I can't see inside it and it shouldn't be on my network.

However, I have a requirement, mostly due to legacy infrastructure, where all the traffic passing throug

...

loki by L1 Bithead
  • 5373 Views
  • 4 replies
  • 1 Likes
  • 23824 Posts
  • 112 Subscriptions
Top Liked Authors
Labels