This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4117 Views
  • 0 replies
  • 0 Likes

Possible ?

A useful feature would be the ability to create a filter for Traffic logs where one wants to display all traffic initiating or terminating from/to addresses a pre-defined "address-group". At the moment one has to, in essence, re-do the address-group definition in the traffic filter.With a complex pre-defined address-group it would be nice to be ...

panorama : replace logging disk with bigger one

Hi, Our logging disk has to be largened on our Panorama.How can i add a new larger disk, keep the current log, and remove the old smaller disk when the logs have expired ?Or do i just have to remove the old disk, add a new disk and forget the old logs ?greetzSebas

Default Gateway from the Palo Alto Firewall is not reachable

Hello,I have configured inside, outside and DMZ on the Palo Alto firewall. The outside interface is configured for Global Protect.The default gateway of Palo Alto firewall is not reachable. But when we connect to that cable to ASA firewall we are able to ping gateway.Please help us to troubleshooting the issue.Regards,Parvez

Resolved! Alert Config

Folks,I would like to configure the PAN firewall to send an email alert whenever the firewall config is changed or edited . Any ideas on how to accomplish this ?Thanks

usvi by L3 Networker
  • 6652 Views
  • 3 replies
  • 0 Likes

Size of Logs

Hello Guys,I would just like to ask if anyone of you have an idea of what is the usual size of the logs that is being forwarded daily?We are trying to size up a logs correlation software and we would like to know the amount of specs that we need. the only factor is the size of the logs that will going to be transfer.Thanks guys.

Resolved! Newbie setting up URL Filtering... can't find an answer by searching.. :-/

Hi all --So I was asked by mgmt to block social networking, streaming, etc for all users except administration. I created a custom URL Filtering profile that blocks those categories, as well as several specific sites. Under Policies -> Security, I created a new policy called "LimitedInternet", applied to all users, from the trust to untrust...

thatguy by L2 Linker
  • 5168 Views
  • 6 replies
  • 0 Likes

Pando Daily now Pando.com

FileSharing site Pando.com has gone bankrupt as of August 31st, 2013. Since then the news aggragation website Pando Daily has taken over the vanity URL pando.com. Since we have a blanket filter for all "FileSharing" categories, our users can not get to the new Pando Daily url, pando.com.Can Palo Alto review this site and remove it from the cat...

Windows Server 2012 ms-update

We are using WSUS to manage our Windows updates. It's hosted on Windows Server 2012 and runs smoothly.We recently added a Windows Server 2012 in DMZ and pointed it to our WSUS server:server --- DMZ --- PA2020 --- LAN --- WSUS serverThe PA2020 does not recognize specific WSUS traffic to the WSUS server.That is: most detecting/reporting passes fin...

dieter_b by L4 Transporter
  • 4961 Views
  • 5 replies
  • 0 Likes

Resolved! Agentless User-ID

Hi,I am having issues with getting the user-mappings after configuring the PAN as an agentless user-id with an AD. I have followed all the steps in this document-> https://live.paloaltonetworks.com/docs/DOC-4332.All are good except that when I run the CLI command > show user ip-user-mapping all

Suhaimi by L1 Bithead
  • 8507 Views
  • 6 replies
  • 0 Likes

Resolved! How to process OSPF in FW?

Hello,I heard from someone in the past that control plane send ospf hello packet and data plane has routing table.Is it correct??OSPF issue occurred in my custom site. So I wonder it.And what is the different between routing table and FIB?Thanks.

Upgraded to 5.0.9 ? User Identification stops working?

Hi,I had 2 PA's running with user-identification using the user-id-agent.Both have the same config, running 5.0.7I upgraded both to 5.0.9one is working fine, the other one does not "see" the user anymore.Tried the normal stuff: reboot, reinstall, tried 5.0.8 ( same problem ), checked the user-id-agent (connected), ...When I revert to 5.0.7, ever...

paulmeys by L1 Bithead
  • 3644 Views
  • 3 replies
  • 0 Likes

problem with group membership display in PAOS 5.0

I use the command :"show user group name domain \domain users" , the response from the firewall is :"User group 'domain\domain users' does not exist or does not have members" .The domain users is the default group for the new user, I think maybe some error for the group membership display in the PA firewall. The PAOS version I used is the 5.0.8

Resolved! How can i create a "next VR" type route in panOS version 3.1.12?

Hi, guysI have two Virtual Routers in a Virtual System in a 2050 Paloalto NGF version 3.1.12I want to create a Static route in one of this Virtual Routers to send that traffic to the other Virtual Router similar like i do this in version 4.1.In version 4, when you add a static route there is a type of route "next VR" where you can define the oth...

Pepen by L1 Bithead
  • 4067 Views
  • 1 replies
  • 0 Likes

Resolved! Policy log settings

Hi Pals,I would like some second opinion on my observation reg. the option 'log at session start' and 'log at session end'. I have tried both options and at the same time monitor the generated traffic logs for each setting. This is my observation:a) For log at session end, there is only one traffic log created for a sessionb) For log at session ...

Suhaimi by L1 Bithead
  • 4587 Views
  • 4 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks