General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 266 Views
  • 0 replies
  • 1 Likes

ipsec-esp / Protocol 50 invisible in vwire mode ?

We have a Vwire configuration with a paloalto (5.0.6) between a third-party router and the wan port.

Security policy is allow any - any for both directions/security zones, log at session start an end.

Everything works (as expected), all VPN Tunnels on

...

register by L1 Bithead
  • 3796 Views
  • 5 replies
  • 0 Likes

Resolved! QoS Egress Max 0 = unlimited?

The default setting when creating a new QoS interface for Egress Max is 0. Does 0 mean unlimited or 0 (no bandwidth, no traffic)?

Mike

mike_cc by Not applicable
  • 6605 Views
  • 3 replies
  • 0 Likes

Content version 390

Hello All,

       In content version 390, the ssl traffic is mis-categorized as private-ip-address as a result, this content version is pulled back. The devices which have already seen the content version 390 will try and install it even if you have r

...

tshiv by L4 Transporter
  • 1410 Views
  • 1 replies
  • 0 Likes

vpn-ssl Global Protect

hello

My problem is that when a user connects to the overall ssl vpn-protect this lifetime login settings in 1 day and the settings I have for inactivity logout is 3 hours and although the user activity during those three hours it off after that time

...

itstrap by Not applicable
  • 2498 Views
  • 2 replies
  • 0 Likes

Resolved! Session Timeouts

So my question is pretty simple.

How are timeouts handled on these devices.  Does it matter if I have rules based on services vs. applications?

We have our global settings on the box set for TCP 3600.  We have rules that are service based and ones that

...

smccall by Not applicable
  • 3858 Views
  • 4 replies
  • 0 Likes

Use x-forwarded- for to apply policy?

Dear all,

I have a very important question and need your fast reply please.

Can I use x-forwarded-for to show the ip address of the coming users behind a proxy and THEN apply policies based on these users?

This scenario intends to apply policies per use

...

gshaker by L1 Bithead
  • 2727 Views
  • 3 replies
  • 0 Likes

Resolved! Webbrowsing on non-standard http ports....

What is the best way for me to implement a rule that allows http traffic over non standard ports?

Our security standards require that we use a feature similar to what is available in Checkpoint that allows us to lock the port down based on protocol. E

...

smccall by Not applicable
  • 3939 Views
  • 3 replies
  • 0 Likes

Resolved! Duplicate Syslog Messages

Hi.  We're running 4.1.9 on our firewalls and have an issue where all Syslog logging is being duplicated.

I've seen an old bug fix report saying that 4.1 fixed an issues with some Config messages being duplicated, but was wondering if there is a known

...

apackard by L4 Transporter
  • 3952 Views
  • 3 replies
  • 0 Likes

Resolved! GlobalProtect SSL VPN User Access Filtering

Hello,

I am fairly new to the Palo Alto firewalls so I figured I would pose a question to everyone while I continue my own research into the issue. Basically, in our test setup we have SSL VPN set up so that everyone in the office can authenticate vi

...

Resolved! Panorama 32-bit/64-bit

I was just wondering if there is a 64-bit version of Panorama to run on a virtual machine? Right now we are running a 32-bit version and would really like to increase the RAM. We are limited to how much memory we can add since the VM recognizes Panor

...

  • 23632 Posts
  • 107 Subscriptions
Top Liked Authors
Labels