General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

restore PA5050 device with dead single SSD

We have a PA5050 device with PremiumSupport expired on 2012-12-19T00:00:00. We could not open support case because of this. Our configuration include single PA5050 device with one SSD drive. on Jun 10 00:14:08 our device became unavailable and died (the day of PAN OS 7.0 announcement?!). We have detected that something happened to the SSD drive ...

IHEP by L1 Bithead
  • 3736 Views
  • 1 replies
  • 0 Likes

When blocking rule with service any, How are traffics matched?

Hello,My question is based the following document.How Application-Default in the Rulebase Changes the Way Traffic is MatchedThe case on above document is allowing rule.I wonder another case when there is a blocking rule with service any how traffics are matched.There are rules as below image.I have found some odd traffic logs out as below screen...

6.1.X Stable

I am currently looking to upgrade Panorama to 6.1.4 from 6.0.9, Does anyone have experience with a 6.1 version that is stable? Thank you!

GP VPN client vs native OS VPN client

I am trying to decide whether to put global protect clients on all the users or just use the native VPN client included in the OS. Is there an advantage to using the GP client over a native client

jdprovine by L4 Transporter
  • 11253 Views
  • 8 replies
  • 0 Likes

Web Page Elements are not displayed correctly

Hello Everyone,I have a weird behavior on our multi-vsys firewall.Some web pages (I will attach a screenshot) are not displayed correctly/completely. We have our pair of A/P 5050 configured with 3 vsys.1st - is internet facing and I have SSL VPN configured on it.2nd - is LAN facing and I have our users sitting there.3rd is irrelevant for this ca...

Resolved! Agentless UserID no longer maps users

Hello all,I've had Agentless UserID working fine for over a year now. Last week our PA-3020 running 6.0.3 stopped being able to identify users which it then started blocking all Internet browsing because it thought everyone was unauthenticated. Nothing has changed on the firewall and to my knowledge nothing has changed on our AD servers. The ...

ClintL by L2 Linker
  • 4798 Views
  • 3 replies
  • 0 Likes

PA-2000/4000 trade-in

Did anyone do a trade-in for their PA-2000/4000 series device (under the so called Customer Care Upgrade Program) ?What about current subscriptions ? Is the remaining value completely reimbursed ?As in 1 year of the 3 year contract to go, so 1/3rd of the initial contract value reimbursed ?At least I would expect so, because:when trading in a PA-...

dieter_b by L4 Transporter
  • 9102 Views
  • 9 replies
  • 0 Likes

Resolved! Remove syslog server profile via CLI

Hi all,I have a simple question and it is as follows:How do I remove a syslog server profile using the CLI?I would have thought it would be something like> delete shared server-profile 'syslog (server profile name)'but all I get in that command is the options for the other server-profiles like RADIUS, LDAP.I've tried using the find command an...

bmorris1 by L4 Transporter
  • 5883 Views
  • 1 replies
  • 0 Likes

7.0 deployed on two fw's so far and all is well

In the event anyone is curious- I've upgraded two PA-200's from 6.0.3 up to 7.0 (in a remote site and my science project at home). I am leaving the larger production FW's out of the mix for now until a couple of minor updates come along just to make sure I upgraded to 6.1.0, then 6.1.4 and finally to 7.0.0 on both 200's without issues. One is co...

eDub by L1 Bithead
  • 6269 Views
  • 6 replies
  • 2 Likes

MS Azure mass changes

Every week we get a huge list of new IP addresses and subnets for the MS Azure product to be allowed through our firewalls. The file that contains the new updates is an XML file. I have a couple questions that I hope to get help with. 1. Surely we can't be the only company facing this dilemma?2. Is there a way we can do mass changes to policies ...

wessepj by Not applicable
  • 2197 Views
  • 1 replies
  • 0 Likes
  • 24403 Posts
  • 123 Subscriptions
Top Solution Authors
Labels