General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Migrating fron PA-500 to PA-2050

Hello all,Actually we have a PA-500 and we like to export the actual config and import it in the new equipment (PA-2050). How to do this? Thanks and regards,

rrunge by Not applicable
  • 6917 Views
  • 4 replies
  • 0 Likes

WebGUI PANOS6

After installing PANOS6 on a PA-200 platform, the webgui at IE looks strange:

Hithead by L4 Transporter
  • 3282 Views
  • 4 replies
  • 0 Likes

How to block the real IPs from CDN?

Is there any function that can makes the PA block the traffic of the real IP instead of CDN IPs?We deployed the PA NGFW on the external side of our web server and enabled the Threat Prevention function. Because we are using the CDN, so from the web server, all the source IPs in the traffic are hosted by the CDN service provider.So when the PA N...

SteveY by L1 Bithead
  • 6999 Views
  • 6 replies
  • 0 Likes

Resolved! how to pass Cisco CDP traffic through a Paloalto in virtual wire mode

hello everyone, I think the title of my subject is explisite, I want to get Cisco Discovery Protocol (CDP) traffic through my palo alto, which is in virtual wire the problem is that frame cdp does not contain IP header so my the question is how to get it through a firewall. I did catch the traffic levels I see the traffic coming into the firewa...

ext22 by Not applicable
  • 9004 Views
  • 6 replies
  • 1 Likes

Resolved! Commit Failed to send phase 1 abort !

Hi,My PA box keeps failing in commit and I get the attached message.Could any one please help me decypher this, and let me know how I can get this boy to commit to my terms !Regards,Tau_

rz185016 by Not applicable
  • 8772 Views
  • 5 replies
  • 0 Likes

VWire

Hello i have the below design Internet Cloud ------------------> Cisco ASA -------VWire1----------->PA----------VWire1---------->Core SwitchPA ----------------------->SWitch----------------------- >WAN RouterPA ------------------------>other WAN Router ...

threat map issues

Hi,I have a problem on a 5050. I am only able to view the last 6 hours of a threat map as soon as I select 12 hours, 6 hours ect it just hangs and nothing happens.Does any one have a answer for this????RegardsDendre

DendreT by L1 Bithead
  • 2523 Views
  • 1 replies
  • 0 Likes

Resolved! Error code in GP: Error( 126): Driver is not installed, reinstall it now!

Does anyone know why a Global Protect user would receive this error message? I have three users showing this error and I cannot seem to find out why. I had them uninstall and reinstall the GP app, making sure they had sufficient admin rights, and they are still getting the same error.Thoughts?Thank youSeth

wellss by Not applicable
  • 13342 Views
  • 9 replies
  • 0 Likes

Resolved! PAN with Polycom RPAD (Real Presence)

Ok. So, I'm running the 5.0.10 PAN. We are in the middle of a Polycom installation. Internal traffic within the polycom system is working fine (since no FW is in place). The problem is of course the outside users. We are using NAT for external stuff. I created a single Inbound rule (Untrust->trust) to the RPAD server. No Applications selected...

Why is there a Maximum PAN-OS Version for signatures?

Hi,Why is there a Maximum PAN-OS Version for some signatures? How can I tell if newer versions of PAN-OS can detect the same thing?E.g. I saw this:Modified Anti-spyware Signatures (1)SeverityIDAttack NameDefault ActionMinimum PAN-OS VersionMaximum PAN-OS Versionhigh20000Conficker DNS Requestalert3.0.04.1.0.0Thanks, Drew Daniels

ddaniels by Not applicable
  • 4390 Views
  • 4 replies
  • 0 Likes

Gmail, Dropbox - Control Specific Actions

Is anyone out there doing any of the following? I didn't see specific applications for these types of things. Perhaps the only way to accomplish would be a custom application.Allow users to read Gmail, hotmail, etc., but not allow users to compose and send email?Allow users to download from filesharing sites such as dropbox, but not allow file u...

Using PAN-OS 5.0.5 with User-Agent 6.0

Hi,is it possible to deploy User-Agent 6.0 and still using PAN-OS 5.0.5. I want to avoid to many changes at one time.I didn't find a clue in the release notes. ThxCheer Klaus

kdd by L4 Transporter
  • 2138 Views
  • 1 replies
  • 0 Likes

How many are brightcloud's updating interval?

HelloThe anti-virus signature is released on every day.The application signature and other threat signature without anti-virus is released once a week.So How is brightcloud url filtering database updating??I don't know how make the schedule of url-filtering in dynamic updates.Please let me know it.Thanks.

Bright cloud DB classifications on url

Hi,I wonder if anyone can help. there is a site - ea.sendcpt.com which is listed in both brightcloud and PAN-DBOn brightcloud it is listed as malware-sitesBut on PAN-DB which is a newer DB it is listed as business and economyThe end customer is having an issue as they are trying to access the site as it is a trusted site but they are getting bl...

  • 24390 Posts
  • 123 Subscriptions
Top Solution Authors
Labels