General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Migration Tool

Hi Friends,Need Small help Please share the Migration Tool. I have but when try to run got some error.Thanks Satish

Satish by L4 Transporter
  • 6997 Views
  • 10 replies
  • 0 Likes

Custom signature for Wordpress

I am fairly new to custom signature in Palo Alto, just so you are warned. I am trying to create a vulnerability signature for detecting wordpress. The Get request will contain /? followed by 5 digits or more. User agent will be wordpress/ followed by version number. My plan was to create one signature with one condition for User-agent ( http-r...

LarsOlav by Not applicable
  • 3577 Views
  • 4 replies
  • 0 Likes

Resolved! Activate Brightcloud URL DB

Has anything changed with the way to activate Brightcloud URL filtering db in version 6? I updated several other boxes which use the pandb db and do not have issue.The one box in the wild we have with Brightcloud Url filtering is the only issue. It does not show as activated under Licenses (with no button to activate it). Its license is valid th...

SDorsey by L4 Transporter
  • 3348 Views
  • 3 replies
  • 0 Likes

Resolved! Active directory 2012 R2 integration with PAN os 5.0.9

Hi All,I've Palo Alto 5050 Active/Active Vwire deployment. the deployment was integrated with Active directory 2008 R2, but now I installed Active directory 2012 R2.but Palo Alto can't see the users in Acitve Directory 2012 R2.Any help about that please..Regards,

LAGG Interface Documentation

Is there any documentation about how to configure a LAGG interface in PAN-OS 6.0?I’ve read through the administrators guide, and did a search on the PA documentation web site, and I couldn’t find anything.Thank you!-- Rick

Resolved! Logging stopped in Pan OS GUI

Hi all,We had an issue today where we noticed the logging data stopped displaying in the Pan OS GUI (PA-500).. One thing we noticed is after committing a config change, it looks like the firewall was in the process of doing a sync with the backup device. I assume to resolve this problem we need to restart the dataplane? I'm surprised it allowed ...

bino150 by Not applicable
  • 20343 Views
  • 19 replies
  • 0 Likes

Replace a panorama managed device with a new device (different model)

Hi All,We need to replace old PA2020 (PAN-OS 5.0.10) that is managed via Panorama (PAN-OS 6.0) with new PA3020.Referring to Panorama adminstrator guide 6.0, "How do I replace Panorama or a managed device in the event of a hadrware failure/RMA?"Questions:1) Can device state export from a PA2020 be import into PA3020 (new device)2) Should we use P...

cohesion by L0 Member
  • 6368 Views
  • 4 replies
  • 1 Likes

Havex Malware

Hi all,Do you have any information about PAN detection capability for the Havex malware family: http://www.f-secure.com/weblog/archives/00002718.htmlThreat vault seems to produce no hits at the moment. Tuomo

Tuomo by L1 Bithead
  • 17099 Views
  • 26 replies
  • 1 Likes

Resolved! LAGG Interface Documentation

Hello,Is there any documentation about how to configure a LAGG interface in PAN-OS 6.0?I’ve read through the administrators guide, and did a search on the PA documentation web site, and I couldn’t find anything.Thank you,-- Rick

Resolved! Transitioning from Trial URL Filtering to Paid

I am currently using a trial of the URL filtering license and have made the purchase for the full license. Does anyone happen to know if it's a seamless transition from the expired trial to the full license with out any interruption? To initially enable the service I had to reboot my firewalls one at a time, It doesn't make sense that I'd have...

cmateam by L3 Networker
  • 8446 Views
  • 9 replies
  • 0 Likes

Split tunneling on iOS

Playing around with IPSec VPN on a PA-500 for my mobile users. On iOS, it's working fine with the built in IPSec VPN client, but split tunneling is not supported. I'm wondering if this feature is available if I use the GP client app instead of the built in client. Since it require a licence, I can't test it.

PatrickD by L1 Bithead
  • 8409 Views
  • 5 replies
  • 0 Likes

Commit fail error "Duplicate user name"

Hi. all..I Have a question about User-id.I am configured LDAP setting about PA-2050.(OS Version 4.1.9)Sometimes I saw the messages about commit fail error when I set up a user-id through security policy.The error message is "duplicate user name".I guess the problem is occurred when user's laptop used the wired and wireless connection to AD serv...

insuyoon by Not applicable
  • 4949 Views
  • 5 replies
  • 0 Likes

ipsec vpn issue

I configured ipsec vpn with palo alto to checkpoint.pinging isp:local/external ip(182.x.x.x) to peer ip(102.x.x.x) ping successful.pinging local network to peer ip:local pc(10.10.10.x) to peer ip(102.x.x.x) ping unsuccessful..tracert confirm drops on internet..ike not established(verified by show vpn ike-sa gateway)..following vpn troubleshootin...

Javith by L3 Networker
  • 3550 Views
  • 2 replies
  • 0 Likes
  • 24404 Posts
  • 123 Subscriptions
Top Solution Authors
Labels