This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 778 Views
  • 0 replies
  • 0 Likes

Resolved! Multiple IP address affected to L3 interface

Hello All

Somebody know why

When You add 2 ip address from the same subnet to the same interface Layer 3 ex ;

ip 1 : 12.52.36.2/29

ip 2: 12.52.36.3/29

you obtain an error lijke subnet overlaping

to solve that you need to declare one IP in the subnet /29

...

Gregoux by L4 Transporter
  • 9137 Views
  • 3 replies
  • 0 Likes

MigrationTool


Hi,

i am new in town. I am trying to convert a Cisco PIX to PA sintax usin the MigrationToolVM.1.5 (i only have a 32-bit cpu) and i am not abe to create the XML file.

Checking Hosts integrity. Looking for hosts with an invalid netmaskName: Gestor Mask:...

gbarrios by Not applicable
  • 1881 Views
  • 1 replies
  • 0 Likes

Resolved! FTP Data connection broken, need help

ta, Im having a heck of a problem.

One zone out to an ftp server is working frie but from another zone the conputers can connect but they cant get file listings of xfer data ata ll. Routing is fine, obviously, the rules they are hitting is ok, NAT and

...

choff123 by L3 Networker
  • 13962 Views
  • 14 replies
  • 3 Likes

Dynamic Objects Error

I’m trying to test using dynamic objects on 5.0 however I’m not sure If I’m missing something?

The document suggests the syntax to add a new entry do a dynamic address object is as follows:

https://<IP>/api/?type=user-id&action=set&key=<KEY>=&file-name

...

rds by L2 Linker
  • 3062 Views
  • 2 replies
  • 0 Likes

Resolved! Question about logging and Panorama

Is it possible to have both a Panorama server receiving logs from the gateways AND a syslog server receiving them at the same time? Any examples?

I also believe I heard that there is potential to have the feature in an upcoming rev of Panorama forward

...

Resolved! migration tool

using the latest version of the fw migration tool,  can anyone share how to delete the database files?

Doing an ASA to PAN migration when creating the XML file,  the  migration tool does configuration check, looks for host with invalid masks.

Tool foun

...

msamoska by L1 Bithead
  • 4413 Views
  • 5 replies
  • 0 Likes

Chromebook VPN

I have the need to establish VPN connections from Chromebooks.  My initial research is not real promising,  So far I have determined:

1) There is no GP Client for the Chromebook.

2) The Chromebook only  supports:

  • L2TP over IPsec with PSK
  • L2TP over IPsec
...

tjcarter by L1 Bithead
  • 2954 Views
  • 1 replies
  • 0 Likes

Assign static IP through LDAP for GlobalProtect Client

Hello,

For Cisco ASA, I can configure fixed IP address for SSL VPN user by using LDAP attribute "msRADIUSFrameIPAddress IETF-Radius-Framed-IP-Address ".

(SSL VPN is authenticated by AD window 2008).

Now, I'm using PAN and I don't know how to configure a

...

ThongPD by L1 Bithead
  • 5069 Views
  • 8 replies
  • 0 Likes

Setup Alert for Traffic to Specific IPs

We are trying to figure out if there is a way to have the firewall create an alert in the logs when traffic hits a specific IP range. We don't want to block access to this range of IP addresses but we want to be able to confirm if users are conversin

...

Resolved! PA Web-UI Strange~

Hello~ everyone

Have the used Windows 7 Enterprise?

as far as We know that IE has installed Windows basically

The Windows version is 7 Enterprise x64

IE is 8.0

We know that When PA set something we have to click object, device, policy etc,,,

so,, Object Ta

...

Possible Bug in Global Protect

I am wondering if anyone else is having this issue.  We are using on-demand mode.  When setting up a new laptop we install the 1.2.5 agent.  At this point our helpdesk tech is logged in and the VPN connects correctly as it is our process to test it. 

...

nthen by L3 Networker
  • 4374 Views
  • 8 replies
  • 0 Likes

PAN Agent to FW connectivity

Guys,

we have a PAN agent User-ID version 5 running on the network, all is working fine, but just that
on the PAN agent User ID, I see only one device PA-FW as connected.

The active one, and the standby does not show up.

Is this the right observation, or

...

rz185016 by Not applicable
  • 2100 Views
  • 3 replies
  • 0 Likes

UserID debug Log. high load CPU?

Palo Alto support ask me about send them the debug lof of UserID. I can enable this debug log with my DC in production. There is risk about load CPU in the UserID device (Domain controller). I could do it in production?

thanks

  • 23986 Posts
  • 115 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks