General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

unable to redirect web traffic towards Websense

hi I am planning to deploy Paloalto firewall in my network, but my biggest challenge is how to redirect web traffic towards Websense which I am using as a web content filtering engine.can any one one help me regarding this to how I can do so.Regards,Om@Spicejet

om by Not applicable
  • 3125 Views
  • 1 replies
  • 0 Likes

Resolved! How to configure PaloAlto to Fail-over to another ISP on a remote location

I'm new in using PaloAlto Firewall. We have to sites that have it's own dedicated ISP connections and I've been task to configure the PAN firewall to route the Internet connections to another ISP if the main internet connections encounter a connectivity problem.HQ1 RT1-------PAN FW--------Internet RTR------------------ISP1||| -> Connections ...

Resolved! App-ID,dependencies and ports

Hello,I noticed that when adding the Application MS-Lync and its dependencies, ports TCP 5065 & 49152-65535 are needed. In the Applipedia, it states TCP/Dynamic, but in order for this to work, I have to add these ports manually to the rule before this traffic is allowed. Shouldn't this be automatic or is this due to the fact that the ports a...

mbattle by Not applicable
  • 3405 Views
  • 2 replies
  • 0 Likes

Admin authentication using RADIUS without local accounts

Hi All,I ran across a strange issue when provisioning a new Administrator on our team. The background is that we use Cisco ACS 5.1 as our RADIUS authentication for our PA firewalls. All of the correct VSAs are input and appropriate Authorization Policies created for Firewalls and Panorama. We do not use local accounts, and instead rely on ACS to...

Slow Performanced Based on Order of ACL Rules

We have several PAN 3020s at a client site with similar issues but for this, I’ll focus on a specific case. One pair in Active\Passive HA has 124 rules. We started noticing really slow RDP connect performance. (it would take 45 seconds to establish an RDP session to a target where the traffic was passed through the firewall). Out of the 124 rule...

SDorsey by L4 Transporter
  • 12256 Views
  • 17 replies
  • 0 Likes

Inbox | Palo Alto Networks Live

Inbox | Palo Alto Networks Live Hello All, I have faced the similar kind of issue for panorama , one Job got stuck in 40% and we are not able to commit to the panorama. Also the management CPU was 100. Well after restart the management server the issue is resolved for clearing the job .but i took the PA support guy to clear the PID to redu...

tiwara by L3 Networker
  • 3067 Views
  • 2 replies
  • 0 Likes

Don't see Threat and URL log in panorama

Hi All,I have a problem with Panorama and devices log.Panorama informationmodel: Panoramaserial: xzy......sw-version: 5.1.0app-version: 445-2292app-release-date: unknownav-version: 1317-1787av-release-date: unknownthreat-version: 445-2292threat-release-date: unknownlogdb-version: 5.0.2My Device informationmodel: PA-3020sw-version: 5.0.8global-pr...

Migration Tool

Hi Friends,Need Small help Please share the Migration Tool. I have but when try to run got some error.Thanks Satish

Satish by L4 Transporter
  • 6991 Views
  • 10 replies
  • 0 Likes

Custom signature for Wordpress

I am fairly new to custom signature in Palo Alto, just so you are warned. I am trying to create a vulnerability signature for detecting wordpress. The Get request will contain /? followed by 5 digits or more. User agent will be wordpress/ followed by version number. My plan was to create one signature with one condition for User-agent ( http-r...

LarsOlav by Not applicable
  • 3576 Views
  • 4 replies
  • 0 Likes

Resolved! Activate Brightcloud URL DB

Has anything changed with the way to activate Brightcloud URL filtering db in version 6? I updated several other boxes which use the pandb db and do not have issue.The one box in the wild we have with Brightcloud Url filtering is the only issue. It does not show as activated under Licenses (with no button to activate it). Its license is valid th...

SDorsey by L4 Transporter
  • 3339 Views
  • 3 replies
  • 0 Likes

Resolved! Active directory 2012 R2 integration with PAN os 5.0.9

Hi All,I've Palo Alto 5050 Active/Active Vwire deployment. the deployment was integrated with Active directory 2008 R2, but now I installed Active directory 2012 R2.but Palo Alto can't see the users in Acitve Directory 2012 R2.Any help about that please..Regards,

LAGG Interface Documentation

Is there any documentation about how to configure a LAGG interface in PAN-OS 6.0?I’ve read through the administrators guide, and did a search on the PA documentation web site, and I couldn’t find anything.Thank you!-- Rick

Resolved! Logging stopped in Pan OS GUI

Hi all,We had an issue today where we noticed the logging data stopped displaying in the Pan OS GUI (PA-500).. One thing we noticed is after committing a config change, it looks like the firewall was in the process of doing a sync with the backup device. I assume to resolve this problem we need to restart the dataplane? I'm surprised it allowed ...

bino150 by Not applicable
  • 20297 Views
  • 19 replies
  • 0 Likes
  • 24396 Posts
  • 123 Subscriptions
Top Solution Authors
Labels