General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Android VPN - Autoconnect

Hi,does globalprotect android app support autoconnect without the need to have a globalprotect mobile security manager ? Thanks

ArminH by L0 Member
  • 3568 Views
  • 1 replies
  • 0 Likes

How to work about multiple User-ID Agent in an appliance ?

Hi, I have 3 domains in different locations (US, CN, TW) each one have its own User-ID agent.We deployed PA-3020 in each location and each one had set those 3 User-ID agents in the User-ID Agent configuration. If a user account belong to US and it login at CN, how does the PA appliance to get account information ? Does the PA in CN ask all 3 Use...

neilwu by L2 Linker
  • 7533 Views
  • 6 replies
  • 0 Likes

Resolved! Palo Alto scanning with Nessus

Hello,Does anyone else out there scan their firewalls with Nessus? Just curious if you have some other definitions defined other than what tenable has listed on their support site. I've tried google but its not helping much. Thanks in advance!

Safe Search Enforcement - Office Clip Art

I don't know if anybody else has seen this, but we have safe search enforcement turned on (and I don't plan on turning it off) and Microsoft has moved all the clip art to Bing. When you try to add clip art from within MS Word and search for "cat" the search gets blocked at the PA and none of the thumbnails are returned. It makes sense because Wo...

bbilut by L3 Networker
  • 2026 Views
  • 1 replies
  • 0 Likes

How to host on a dynamic ip?

hello,i have attempted to create a rule that will allow me to host a SSLVPN device on my DMZ but the only way I was able to connect is to place the external IP (static) in the rule. The problem is that i rely on a dynamic ip system and it will change.. is my thinking this is all wrong and is there a better way to accomplish this?

9-1-2015 2-50-37 PM.jpg
dummel by L0 Member
  • 2512 Views
  • 2 replies
  • 0 Likes

Resolved! Pull AppID descriptions via API

Hello,is it possible to pull the AppID descriptions from Panarama, firewall device or https://applipedia.paloaltonetworks.com/ in a way to use it in a "firewall change request" system?

Anon1 by L4 Transporter
  • 5580 Views
  • 2 replies
  • 0 Likes

Tagged subinterfaces configuration on L3 mode

hello; we work on our organisation to do the migration of the configuration from another firewall to the palo lato networks PA-500 . With the recent architecture the segmentation of the networks is in the switch . But now , we like to do this segmentation in the PA-500 by creation of subinterfaces . we like to do like show the screenshot : a rou...

subinterfaces-config.JPG
RCHAIBI by L2 Linker
  • 4330 Views
  • 5 replies
  • 0 Likes

Resolved! PA doc regarding migration tool instructions for Check Point is missing its attachment

The Migration Tool manual v3.1 says:“To understand what options we have to active when we migrate from Checkpoint please read this document first: https://live.paloaltonetworks.com/docs/DOC-9418” But when I go to that doc, it actually has no attachment, so I can’t find the info I want. (I’m hoping it will tell me what specific files to use for a...

ksalustro by L3 Networker
  • 4225 Views
  • 2 replies
  • 0 Likes

GlobalProtect drive mapping or login script

When our users connect locally on the network, as soon as AD authentication is passed, they receive a login script based on their OU to map certain drives. When users go home, power up their laptops, and log in, they don't receive the script and as such, don't get the drive mappings. Does GlobalProtect have a feature or option that will run th...

jmurphy by L2 Linker
  • 8546 Views
  • 6 replies
  • 0 Likes

Stateful NAT64 Table Size

Hi there, Here comes the time to design my first NAT64 solution !I have read few documents from Palo Alto, but can't get one simple information... Could anyone tell me the NAT64 table size for PA5060 ? Best Regards, Emmanuel

Duplem by L2 Linker
  • 5623 Views
  • 4 replies
  • 0 Likes

Resolved! Unable to boot PA-200

Hello,wondering if anyone is able to assit how to fix this issue. I am unable to boot PA-200 into normal operation.Nothng is happenig after reload; it sits on console and not turning on a login prompt. Appreciate your asisstance. Skipping PCIe port 0 BIST, reset not done. (port not configured)Skipping PCIe port 1 BIST, reset not done. (port ...

Resolved! Imported Check Point config shows objects and nats, but no rules - Migration tool v3.1.1

I'm importing a Check Point config into the Migration tool, v3.1.1 I see the imported objects and nat's ok, but the rules page is empty and says "no data to display" in the bottom right. I chose the files objects_5_0.C, rulebasename.pf, rulebases_5_0.fws, and the routes.txt (output of netstat -nr).I've tried it with Option A both checked and unc...

ksalustro by L3 Networker
  • 5903 Views
  • 2 replies
  • 1 Likes

Using expect script to automate building firewall templates in Panorama

Hi Community, I have been struggling with this for weeks, and have tried various means, including setting the Panorama CLI parameters. However, I always get random results, which ends up either the cmdline was entered prematurely or truncated. A support ticket was logged but proved to less than helpful, as the answer given was to lessen the numb...

benson by L0 Member
  • 5055 Views
  • 2 replies
  • 0 Likes

What is the "Any" URL Filter Category

I am seeing a handlful of Blocked URLs, with a Category of "Any". Just wondering what that is and why I might be getting them. Is it the same as "Unknown"? I do not have a URL Filter Category named Any. Thanks

BillTito by L0 Member
  • 4088 Views
  • 3 replies
  • 0 Likes

Integrated User-ID Agent vs. Windows Service?

We're running 5.1 right now and plan on upgrading to 6.1 over the next couple of days.Historically we've used the Windows User Agent on two of our domain controllers, but today I switched to the on-board Integrated User-ID Agent and set it up, and other than a noticeable increase in CPU load on the domain controllers, everything is working great...

  • 24404 Posts
  • 123 Subscriptions
Top Solution Authors
Labels