General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2863 Views
  • 2 replies
  • 14 Likes

IPv6 slowness

We have a PA5020 and recently enabled IPv6 throughout our network. We have been experiencing extremely slow internet connections and timeouts until we removed IPv6 from the inside and outside PA box Ethernet interfaces. Our ISP is Comcast and we have

...

rlawsha by L1 Bithead
  • 1459 Views
  • 0 replies
  • 0 Likes

Run multiple local script commands in CLI

Hi,

In my struggle to switch my captive portal rules on and off I want to run a script to achieve this.  I use a .bat file containing the following line:

c:\test\plink.exe -ssh 192.168.100.2 -l admin -pw mypassword -m c:\test\enable.txt

The file enable.

...

Resolved! 10G link aggregation PA-5050 to Juniper EX4500 switches

Hi everyone,

I'm having a bit of trouble configuring link aggregation between my PA-5050 and Juniper EX4500 switches over 10G interfaces.  The problem seems to stem from the fact that the PA-5050 link-aggregation dialog gives two options for link spee

...

Mack by L2 Linker
  • 3013 Views
  • 3 replies
  • 0 Likes

Resolved! Does anyone have Applipedia in an Excel Spreadsheet?

I am in the process of building an Internet Gateway policy and need to review the 1,791 applications and make a decision to allow or block each application.

It would be really great if the application information was in an .xls (Category) (Subcategory

...

Limitations in virtual wire mode?

Hello all,

I've checked all docs and guides and did not find any documented limitations (such as features not available) when PA is deployed in virtual wire mode. Does this mean that ALL possible features are available both in routed and VWire mode?

Fo

...

efellows by L1 Bithead
  • 6879 Views
  • 5 replies
  • 0 Likes

Resolved! Adding a Custom Application/Ports to Security Policy

Maybe my thought process is wrong so I am hoping somebody can set me straight. I have a few non-standard ports that need to be opened on the firewall. They don't belong to any application so I need to allow the ports. What I have done is created cust

...

Resolved! Block IP address

Hello,

Is there a way to block a specific IP address if you detect multiple threats coming from this IP? For example block an IP address after the detection of 5 threats coming from this IP within 1 minute.

I know you can block an IP  but only as an ac

...

BackupExec and security policy - need advice

Hi

I'm using Symantec BackupExec 2010 sp3 software. I trye'd to make strict security rules, so security rule that allowing traffic between BE server and servers in DMZ allowing only traffic for backupexec aplications with aplication defaults services.

...

_slv_ by L4 Transporter
  • 1342 Views
  • 0 replies
  • 0 Likes

GlobalProtect Internal/External Network Detection Status

I have a firewall setup as a gateway/portal allowing users GlobalProtect client to prelogin and/or automatically log in when not on the corporate network.  This is in the early testing stages and what I am noticing is the following.  If I am on the i

...

ccaruso by Not applicable
  • 1914 Views
  • 1 replies
  • 0 Likes

PBF: unused rules

Hey all,

I am using multiple PBF rules and am 100% sure that nearly half of them have been hit after the last reboot. However, when I select "Highlight unused rules", it highlights all my rules..

Anyone else seeing this?

Kind regards,

Bob

bdeschut by L4 Transporter
  • 2693 Views
  • 5 replies
  • 0 Likes

Resolved! Trying to unblock one website from a blocked country

I have several countries blocked in our firewall but due to business reasons I need to allow one website from one of those countries. I added a custom URL category and added the site. I then created a URL filtering profile and added that category to

...

JeffTQT by L2 Linker
  • 3189 Views
  • 2 replies
  • 0 Likes

QoS and VLAN

Hi,

is it possible to assign a QoS Profile to a L3 Subinterface? In my configuration on 5.0.2 there is the possibility only to physical interfaces.

Best regards,

Robert

multiple amazon vpc

Hello,

My client want to create multiple vpc connection's through the PA.

As I understand the problem with the VPC that every connection must be with individual ip address at the PA side.

Also my client can use only one interface.

We tried sub-interface

...

  • 24008 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors