General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

SSL VPN DMZ access issue

Hi Friends,I have configured SSL vpn with AD integration but i am not able to ping DMZ. i have all ready configure access route. please suggests what i need to do in configuration. or where i am missing.RegardsSatish

Satish by L4 Transporter
  • 5410 Views
  • 9 replies
  • 0 Likes

Wildfire Signature creation

Can someone share some facts about the process of the WF signature creation. It was promised by PAN to have a signature ready after 15Mins. a sample has been identified as malicious (Verdict Malware). My observation is that it usually takes much longer than that. We do have a WF subscription.Example in the screenshot below.

gafrol by L4 Transporter
  • 7960 Views
  • 9 replies
  • 0 Likes

Control custom domain name with gmail

Dear Friends,corporate is using a custom domain name in gmail..After opening the gmail page, user should not login to their own account in gmail..user should use their custom domain name in gmail only..How can we do this requirement in palo alto firewall..I have created regex data pattern.. but it's not working. please suggest if you have idea.R...

Satish by L4 Transporter
  • 2740 Views
  • 2 replies
  • 0 Likes

Resolved! URL block

How to send URL blocked categories log files to syslog server

KMallela by L2 Linker
  • 3036 Views
  • 2 replies
  • 0 Likes

how can I check disk enabled in log-collector?

I have configuring log-collector with Panorama.I want to check disk pair enabled on log-collector.I already know how to check Log Storage wih Panorama.But I can access to Panorama, I have not permission.So, I commanded "show log-collector detail" on Log-collector, but appeared following this message.is it trouble?I think it may have some proble...

LeeJuWon by L1 Bithead
  • 3012 Views
  • 1 replies
  • 0 Likes

Disabling ALGs other than SIP?

Hello,We're having a few issues with predict sessions begin created erroneously and unnecessarily. The SIP ALG can be disabled, but when I tried the same process for other applications (ftp, skype, rtmpe, etc), there was no ALG option. How can these ALGs be disabled?Thanks,Ross

Resolved! Zone Creation

Hello Everyone,I'm new on Palo Alto Configuration,I would like to know if it's possible to configure 2 zones for the same physical network.Use case:Ethernet 1: Zone Servers: ip: 192.168.80.254/24Ethernet 2: Zone internet 1 : 193.1.1.254/24Ethernet 3: Zone internet 1 : 193.2.1.254/24I would like to have another network 192.168.90.0/24 so that I c...

PPTP NAT and site-to-site IPSEC VPN on same IP address

Hello.I'm doing a firewall migration where i encountered a following situation:- customer has site-to-site VPNs terminated on public IP address, let's say 1.1.1.1- customer is using PPTP VPN solution which is also terminated on same IP address 1.1.1.1 and DNAT-ed to PPTP server, let's say on address 10.10.10.10- on current fw they have a DNAT ru...

santonic by L6 Presenter
  • 5331 Views
  • 4 replies
  • 0 Likes

Rest API and import

I need to add a lot of addresses (around 10,000) to my firewalls. I have them in a list and have created a script to add them one at a time. The problem is that this takes a long time. I then tried to add them all, but my URI was too long. So now I can add about 50 at a time. It still takes a while.I also know that with the import command I...

hkp by Not applicable
  • 13251 Views
  • 9 replies
  • 0 Likes

Logging into Management UI causes network latency

Can someone else please test this? Run a continuous ping to a PA200, log into the PA200's management UI, did the pings response times increase? Or drop?We are noticing this on about 5 different remote PA200's. They are all on 6.0.6. Some are on DSL and some on cable. Response times jump from 20-40ms to 900-1000ms, and some time out.

jambulo by L4 Transporter
  • 4104 Views
  • 4 replies
  • 0 Likes

Resolved! Traffic Visualization to find high bandwidth usage

We currently use PA-500 routers at all of our locations. Is there a quick way to either visualize or get a report on traffic usage? Ideally, we'd like to be able to at a glance see what IP is maxing out our bandwidth when we start running low on internet or VPN bandwidth.We did try experimenting with Pan(w)achrome, but we didn't have any luck g...

fkao by L0 Member
  • 11782 Views
  • 6 replies
  • 0 Likes

Resolved! Active session traffic seems invisible to ACC. Any way to see bytes transferred of active sessions in a period of time? (Not using network monitor)

Here's the scenario:1) 1 week ago, a session from 10.1.1.1 and 10.2.2.2 is established. Normally, data transfer is very low.2) Within that session, 100GB of data is suddenly transferred one day between 6pm and 7pm, pegging the site's Internet bandwidth.3) The data transfer becomes very low again after the burst. The session doesn't terminate...

RyanF by L2 Linker
  • 9403 Views
  • 5 replies
  • 0 Likes
  • 24403 Posts
  • 123 Subscriptions
Top Solution Authors
Labels