General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2825 Views
  • 2 replies
  • 13 Likes

Commit fail error "Duplicate user name"

Hi. all..

I Have a question about User-id.

I am configured LDAP setting about PA-2050.(OS Version 4.1.9)

Sometimes I saw the messages about  commit fail error when I set up a user-id through security policy.

The error message is "duplicate user name".

I g

...

insuyoon by Not applicable
  • 3128 Views
  • 5 replies
  • 0 Likes

ipsec vpn issue

I configured ipsec vpn with palo alto to checkpoint.

pinging isp:

local/external ip(182.x.x.x) to peer ip(102.x.x.x) ping successful.

pinging local network to peer ip:

local pc(10.10.10.x) to peer ip(102.x.x.x) ping unsuccessful..tracert confirm drops on

...

Javith by L3 Networker
  • 2390 Views
  • 2 replies
  • 0 Likes

Active/active ha config

Hi All,

my req:

isp 1 4mbps(untrust) ->pa 500a->(trust)cisco switch l3a->

isp 2 4mbps(untrust)->pa 500b->(trust)cisco  switch l3b->    same web servers but using  isp 1 &2 public ip's(redundancy purpose) to do static s-nat for web servers

external users

...

Javith by L3 Networker
  • 2625 Views
  • 2 replies
  • 1 Likes

New Flash volnureability! (CVE-2014-4671)

Hello

According to Adobe Security Bulletin its serious volnureability, when we can expects protection on PAN?

At the moment on https://threatvault.paloaltonetworks.com/ I can't find CVE-2014-4671

Regards

Slawek

_slv_ by L4 Transporter
  • 1903 Views
  • 4 replies
  • 0 Likes

Resolved! job ACT PEND 98% - stuck

Hi

I have a schedule to download and install antivirus settings, but now I can't commit any changes.

show jobs all ->

2012/03/24 04:09:36        2614        Antivirus       ACT   PEND        98%

clear job id 2614 ->

Server error : Cannot stop job 2614 at

...

FlexyZ by L3 Networker
  • 5512 Views
  • 4 replies
  • 0 Likes

Requirements to alert an threat

Hello,

is there any possibility to get any information about the requirements for detecting an specific threat.

e.g. there is Signature ID : 13457 EBURY, what is this signature looking for ?

Do I have to decrypt anything on the PA to give a deeper look

...

ralf_hanl by Not applicable
  • 1942 Views
  • 3 replies
  • 0 Likes

PAN GlobalProtect 2.0.3 doesn't work

So, I activated GlobalProtect 2.0.3 yesterday and have found that it fails to connect. The user will click "Connect" and the globe will spin for about 30 seconds then it closes itself and reopen on the taskbar(icon disappears and reappears). I am cur

...

jbo by L0 Member
  • 2463 Views
  • 4 replies
  • 0 Likes

HA-HA group mappings not passing to secondary PANOS 6.03

Hello,

I have group mappings present on the Primary Firewall, not passing to the secondary Firewall.  Specifically for a new gorup created today.  I have tried the various debug refresh commands on both boxes to attempt the get the seocndary box to pu

...

jbabcock by Not applicable
  • 2216 Views
  • 4 replies
  • 0 Likes

web crawling for google only

I know this topic has been discussed before but there is never a clear answer. It seems it is not possible to allow only specific web crawlers such as google. If that's the case, I assume most of you have web-crawling enabled for your site only? Goog

...

bino150 by Not applicable
  • 3116 Views
  • 2 replies
  • 0 Likes

vcom-tunnel

Hi!


  We have a problem on the equipment pa-5020.
when we look at the log traffic, the session ends with incomplete response
Then I looked in and saw the following wireshark log.
SYN      -              VCOM-tunnel Seq = 0 win = 8192 len = 0 mss = 14

...

NTCUser by L1 Bithead
  • 4022 Views
  • 7 replies
  • 0 Likes

Resolved! What is HTTP OPTIONS Method

Hi,

In our ACC I can see that the status bar is 3.7, thanks to the vulnerability HTTP OPTIONS Method. The problem is that I have no idea what this is and how I can fix this.
How can I fix this problem?

ZEBIT by L3 Networker
  • 6585 Views
  • 3 replies
  • 1 Likes

Traffic from one zone to another

Hello.

We have two virtual wires called 'eduroam' and 'live'. There are two zones linked to eduroam, namely 'eduroam_tr' and 'eduroam_untr'. There are also two zones linked to 'live', called 'live_tr' and 'live_untr'. We would like to allow communica

...

shilpaal by L1 Bithead
  • 1800 Views
  • 3 replies
  • 0 Likes

There are drop counters when performance test

Hello,

I am doing performance test with Breaking Point about throughput , CPS.

While testing, I have found drop counters as below.

session_dup_pkt_drop                     701        3 drop      session   resource  Duplicate packet: Applies only for mul

...

Resolved! GlobalProtect Auth Problem after making new VSYS

When ever we make a new vsys our global protect authentication fails with user not in allow list. Has anyone else seen this problem.  We are going from one one system to 2 vsys's.  ( I don't know the correct wording)

  • 24004 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors