General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 428 Views
  • 0 replies
  • 2 Likes

Resolved! GlobalProtect and logon scripts

Hello. Is it possible to launch a logon script to map drives after connecting with GlobalProtect in on-demand mode? I know we could create a script to launch manually after a connection to map the drives but would like an automated method.

Thanks!

ldavie by L2 Linker
  • 6577 Views
  • 5 replies
  • 0 Likes

PA Platform Upgrade/Migration

We are about to upgrade from two PA-500s (in HA) to two PA-3020s (will be in HA as well). Is the process as simple as exporting the configs from the PA-200 and importing them into the PA-3020s? Will there be a lot of tweaking needed because the 3020s

...

Resolved! No way to view sites that are set to "Allow"?

Is there a way to view sites that are set to "Allow" or are in the "Allow list"? I can see the "Allow list" sites via the Application Command Center, but is there any way to view them in the "Monitor" tab or through reporting?

jambulo by L4 Transporter
  • 3590 Views
  • 6 replies
  • 0 Likes

AET & PAN

Hi everybody,

last week I had a Stonesoft engineer in my lab demonstrating their techniques of exploit attack via AET. I tested my PAN NFR units (PA-200 & PA-2050) with IPS license last update, together with other vendors IPS units, protecting 2 prett

...

NGS_SOC by L3 Networker
  • 4047 Views
  • 5 replies
  • 0 Likes

Resolved! Aggregate Interface Failover

Hello,

Is it possible to have two interfaces configured as aggregate interfaces in one AE group in way that if one interface goes down it does not force a failover to the backup firewall? Here's some background...

I have two PAs set up with high avail

...

MarkTan by L2 Linker
  • 3406 Views
  • 1 replies
  • 0 Likes

PA3050 Install

Install of a PA3050 from Cisco ASA. Getting data transfer errors and mail in a degraded state. Some mail is getting deferred from the mx servers. Some tcp syns are not being acknowledged correctly. Anyone see these same type of issues after a PAN 305

...

Layer-3 Active/Active mode with ARP load-sharing

Hi All

I'm just wondering, if I'm using layer-3 sub-interfaces in active/active mode, is it possible to create ARP load-sharing for each sub-interface on both PA.

by EX: sub-interface 1.102 with IP address 192.168.102.2 on PA-1 and 192.168.102.3 on PA-

...

Resolved! Antivirus Profile Issue

Hi Gents,

I installed Palo Alto between clients and my server farm in VWire Active/Active mode.

I created a policy for user access to the file server, and when I apply the antivirus profile to the policy the share accidentally hangs from time to time.

t

...

Resolved! Active/Active HA in VWire Mode

Hi Gents,

I'm just wandering if the Floating IP or ARP load-sharing configuration are required in vwire mode. or they are only required in layer-3 mode.

all of the documentation I've read about that aren't clear enough.

Regards,

Maher

How to know object name of OID on PAN

I have an alert system to monitor performance all of device in my system, include my PAN.

I can add all of each oid on the PAN, but I can not know the correspond name of each oid.

Example : OID 11.3.6.1.2.1.2.2.1.10.1 is "ifInOctets"

I have so many oid

...

Resolved! IPSec tunnel, delayed status update

I had one of our remote sites go offline two days ago due to an ISP outage. However, the site to site link showed as up for several hours before it finally dropped and showed as offline. IS there a setting to have this respond faster so it shows offl

...

QoS Bandwidth Per User

I would like to be able to limit our users to a certain amount of bandwidth at a time.  I know I can do this for individual IPs, however is there a way with QoS to basically say, don't allow each individual IP on the network any more than 25Mbps or s

...

  • 23698 Posts
  • 110 Subscriptions
Top Solution Authors
Labels