General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Dynamic Objects Error

I’m trying to test using dynamic objects on 5.0 however I’m not sure If I’m missing something?

The document suggests the syntax to add a new entry do a dynamic address object is as follows:

https://<IP>/api/?type=user-id&action=set&key=<KEY>=&file-name

...

rds by L2 Linker
  • 1696 Views
  • 2 replies
  • 0 Likes

Resolved! Question about logging and Panorama

Is it possible to have both a Panorama server receiving logs from the gateways AND a syslog server receiving them at the same time? Any examples?

I also believe I heard that there is potential to have the feature in an upcoming rev of Panorama forward

...

Resolved! migration tool

using the latest version of the fw migration tool,  can anyone share how to delete the database files?

Doing an ASA to PAN migration when creating the XML file,  the  migration tool does configuration check, looks for host with invalid masks.

Tool foun

...

msamoska by L1 Bithead
  • 2495 Views
  • 5 replies
  • 0 Likes

Chromebook VPN

I have the need to establish VPN connections from Chromebooks.  My initial research is not real promising,  So far I have determined:

1) There is no GP Client for the Chromebook.

2) The Chromebook only  supports:

  • L2TP over IPsec with PSK
  • L2TP over IPsec
...

tjcarter by L1 Bithead
  • 1818 Views
  • 1 replies
  • 0 Likes

Assign static IP through LDAP for GlobalProtect Client

Hello,

For Cisco ASA, I can configure fixed IP address for SSL VPN user by using LDAP attribute "msRADIUSFrameIPAddress IETF-Radius-Framed-IP-Address ".

(SSL VPN is authenticated by AD window 2008).

Now, I'm using PAN and I don't know how to configure a

...

ThongPD by L1 Bithead
  • 2903 Views
  • 8 replies
  • 0 Likes

Setup Alert for Traffic to Specific IPs

We are trying to figure out if there is a way to have the firewall create an alert in the logs when traffic hits a specific IP range. We don't want to block access to this range of IP addresses but we want to be able to confirm if users are conversin

...

Resolved! PA Web-UI Strange~

Hello~ everyone

Have the used Windows 7 Enterprise?

as far as We know that IE has installed Windows basically

The Windows version is 7 Enterprise x64

IE is 8.0

We know that When PA set something we have to click object, device, policy etc,,,

so,, Object Ta

...

Possible Bug in Global Protect

I am wondering if anyone else is having this issue.  We are using on-demand mode.  When setting up a new laptop we install the 1.2.5 agent.  At this point our helpdesk tech is logged in and the VPN connects correctly as it is our process to test it. 

...

nthen by L3 Networker
  • 2237 Views
  • 8 replies
  • 0 Likes

CradlePoint to Palo Alto VPN with failover LTE

I have a CradlePoint MBR1400 router at a remote location.  The primary WAN connection is delivered via Ethernet and the secondary over Verizon 4G.  The primary is a static IP and Verizon's is behind NAT.  When I enable NAT-T on the Palo Alto the prim

...

nthen by L3 Networker
  • 1236 Views
  • 0 replies
  • 0 Likes

PAN Agent to FW connectivity

Guys,

we have a PAN agent User-ID version 5 running on the network, all is working fine, but just that
on the PAN agent User ID, I see only one device PA-FW as connected.

The active one, and the standby does not show up.

Is this the right observation, or

...

rz185016 by Not applicable
  • 912 Views
  • 3 replies
  • 0 Likes

Virtual Systems and Active / ActiveConfiguration

I am trying to configure 2 x 5020's in an Active/Active Configuration and the run 2 Virtual Systems

I am facing issues when enabling the Virtual Systems and the configs stop replicating and then I get backplane failures and have to remove the VSYS con

...

rperkin by Not applicable
  • 962 Views
  • 0 replies
  • 0 Likes

UserID debug Log. high load CPU?

Palo Alto support ask me about send them the debug lof of UserID. I can enable this debug log with my DC in production. There is risk about load CPU in the UserID device (Domain controller). I could do it in production?

thanks

PDF Summary Report (Missing Custom Reports/Widgets)

It has been a few versions since I played with PDF summary reports however, I am currently running version 5.0.5 and in the GUI if I go and create a PDF summary report there is no 6th drop down for custom reports as I remember and as shown in the hel

...

CHammock by L2 Linker
  • 1437 Views
  • 5 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors