General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 14501 Views
  • 1 replies
  • 4 Likes

HA-system separated with two datacenters

Man have two datacenters and there are about 15-20km between them. The datacenters are connected by dark fiber with 1Gb bandwidth, is it possible to make HA-system to this setup? I mean so, that one of the PA-unit is in the primary datacenter and ano

...

GP and Multiple Gateways

I get from the documentation that GP client can automatically detect the best GP Gateway to connect to via response times.

Does anyone know the exact process the GP client uses to connect to a deployment with multiple gateways.

In this case we have on

...

msamoska by L1 Bithead
  • 1993 Views
  • 3 replies
  • 0 Likes

Resolved! NAt problem with paloalto

Hi,

i have 3 zone trust untrust and dmz

dmz:91.239.204.0/24

trust:10.0.0.0/8

untrust: anything 

when i try to nat from untrust to trust 91.239.204.22--->10.1.1.34 packet goes to dmz interface...i think problem is nat before routing or routing before nat

...

lildeniz by L3 Networker
  • 1598 Views
  • 2 replies
  • 0 Likes

Resolved! Looking for GPClient for Android

Palo Alto Networks Announces GlobalProtect For Android™ Mobile OS

According to above press release, it is available now, though I can't find it.

It says "GlobalProtect for Android is currently available for download from Google Play™. ".


Could somebody

...

emr_1 by L5 Sessionator
  • 1915 Views
  • 6 replies
  • 0 Likes

packets dropped because of failure in tcp reassembly

Hello all,

Here is network diagram as below

Juniper FW(Branch)

    |

Internet

    |

PalAlto (HA A-P)

    |

BackBone - Juniper FW

My customer use IPSec VPN between both Juniper FWs.

PaloAlto active device changed from #1 device to #2 device at last week(Link Fa

...

Resolved! Locked user list

I've been getting this error for a user on our Captive portal:

User 'neoguest' failed authentication.  Reason: User is in locked users list From: 172.16.10.100.

I've searched how to unlock the user but I haven't found any info on that.

Can anyone send s

...

VPN & Portal on PA2020 running only Virtual Wires

hi

Our network has 3 separate connectivity to the internet and all of them are connected via virtual wire on our PA2020 and the only other network connection is the management port on a fixed internal IP... 

total 7 ports used (3 pairs for the 3 virtu

...

RonaldGo by L1 Bithead
  • 1212 Views
  • 4 replies
  • 0 Likes

PAN OS 5.0.2 missing route

Did anyone see this situation.

We have PA 3020 running 5.0.2 and a route based vpn to another PA box.

unable to ping the other side of the tunnel or even the other side's tunnel interface IP address.

Weird issue never seen this before.

Anyone see this b

...

LDAP Authentication for Global Protect

I am new to LDAP so I'm looking for some help. I have Global Protect setup to authenticate via LDAP using the following:

base: ou=People,dc=company,dc=com

bind DN: uid=fs01,ou=Special Users,dc=company,dc=com

This works. I've confirmed via the system log

...

mario11584 by L4 Transporter
  • 10588 Views
  • 10 replies
  • 0 Likes

Resolved! System log severity change

Hello!

Is there a way to change the severity level of certain system log messages? The PANOS is 4.1.9

The issue we are having is that our customer is "spammed" with e-mail notifications from their HA devices that the signature versions do not match.

Bot

...

Implementing User Identification via AD

Hi everybody,

I'm trying to implement user identification via active directory on PA-200. I've added the AD server under Device -> LDAP and added group mapping under Device -> User Identification.Now I guess I need to install user-ID agent on a local

...

How to restrict a vlan to get only the 360p from youtube?

Hi There,

Our's is a school and students are always watching youtube videos in full HD quality which makes the bandwidth utilization to the peak. We don't want the students to watch youtube in HD but force them to 360p which is comparatively less band

...

ajay by Not applicable
  • 3024 Views
  • 7 replies
  • 0 Likes
Top Liked Authors