General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 199 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 881 Views
  • 0 replies
  • 0 Likes

WF-500 Configuration Help.

Dear Friends,

I am facing some challenge during the WF-500 configuration. please find the below configuration

MGT FW- IP :- 192.168.1.10/26

GT- IP :- 192.168.1.2 

MGT WF -IP :- 192.168.1.11/26

GT :- IP :- 192.168.1.2

But problem is that, when we are try t

...

Satish by L4 Transporter
  • 2636 Views
  • 3 replies
  • 0 Likes

Block Activesync connections for disabled users?

Is there any way to block ActiveSync connections at the FW for disabled users?  I have several users that have left the company and their accounts have been disabled, however they still have ActiveSync configured on their mobile devices trying to con

...

Resolved! CNSE Exam Study Guide Rev B - Pass Mark

I am cracking on with study for the CNSE exam but on reading the latest release of the study guide have got a bit confused regarding the pass mark.

In the Rev B of the study guide the pass mark is shown as 60% but in the original release it was set at

...

Can 'admin' account be deleted?


1) We have several PA-3020's running 6.0.1 in our organization with only a few admin user accounts which integrated with AD, so audit wants to know if we can delete the generic accounts like "admin" or "panorama"?   Any negative implications to doing

...

No traffic in traffic log - VM100

Hi Guys,

Following on from my last post - Site-to-Site VPN - Palo alto to Cisco Router issue

i am experiencing an issue with my PA VM100, there is nothing in the traffic logs....

this is running on VMWare workstation 11

But there is traffic flowing thro

...

how to handle Google SSL traffic?

Hello,

I am new to PanOS devices, we recently got PA-200 router which is quite different from classic routers. Long story short - my problem is SSL traffic, I am trying to prioritize our traffic since for now we have only 10Mbit link, we have people w

...

Nils by L0 Member
  • 3225 Views
  • 3 replies
  • 1 Likes

Captive Portal to Internal Servers

I have a client that currently uses an ISA server to restrict access to back-end web servers.  The users authenticate at the ISA which then redirects to the back end web server.

Palo Alto firewalls were sold as replacing this authentication mechanism

...

QoS maximum number of interfaces???

I have a PA-3050 and I need to add more QoS interfaces...I receive a message that says "constraints failed: Maximum number of interfaces reached". I can't find any documentation that states there is a max. number of QoS interfaces...where is it? If t

...

mike_cc by Not applicable
  • 3469 Views
  • 3 replies
  • 0 Likes

Resolved! How to setup multiple IP Public address on PA-200

Hi,

We're facing an architecture where there are multiple address that needs to be used for a specific pool of IP from the LAN interface.

Let's supose that we have 3 IP PUBLIC address 10.X.X.2; 10.X.X.3 and 10.X.X.4 and the gateway has the IP 10.X.X.1

F

...

Resolved! No information showing up in Monitor->Logs->Traffic

Dealing with my first experience with Palo Alto Firewalls.  I am working with the vmware appliance version. I have two rules/policies current configured.  One allows all traffic outbound and the other allows only ms-rdp traffic inbound.  This is a la

...

RNutter by Not applicable
  • 3097 Views
  • 2 replies
  • 1 Likes

Resolved! Subinterface

Hello


I have a PA500 firmware version 6.0.7.


All interfaces are used, can I create a subinterface? I need to make a new segment. What is recommended to do that I need?


Thank you

Antivirus Security Profile Exception

I want to create an exception action for a specific antivirus ID (which happens to be outbound traffic). The default action is “alert” and I want this one ID to be “drop”. This is possible for the spyware and vulnerability profiles, but my problem is

...

JohnPa by L1 Bithead
  • 2123 Views
  • 2 replies
  • 0 Likes

Resolved! Server Certificate Verification Failed

Within the past couple of days I am starting to get reports from users that while trying to sign in with GlobalProtect they are receiving the following error:

Gateway X.X.X.X: Server certificate verification failed

No changes have been made on the PA.

...

mcocat by Not applicable
  • 9158 Views
  • 1 replies
  • 0 Likes

Resolved! Wildfire Double Ring - Perimetral Network External / Internal

Hello, :smileyinfo:

We have a double ring structure and we are trying to implement the most appropriate settings for the Wildfire, according to the scenario that we have.

-A Cluster 2 firewalls External *OUT*

  Model PA-500

  WildFire Version 52587-59292

...

SOC_CSG by L4 Transporter
  • 2486 Views
  • 2 replies
  • 0 Likes
  • 24014 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Authors
Labels