General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Palo Alto Migration Tool

I watched the webinar for Migrating Cisco ASA to PAN at this link https://paloaltonetworks.com/resources/webcasts/migrating-from-cisco-asa-to-palo-alto-networks.htmlAround the end of the presentation, there's a few slides on migration tool used to migrate other firewalls to PAN.Does anyone know where to get the tool?Thanks

Resolved! IMAP SECURE /POP3 SECURE applications

Hello ,We are looking for IMAP Secure and POP3 Secure application to securely access the mail exchange services from Internet through PA firewall , we do not find this in this applications list .can you please advice .Regards,BIJILESH.

Resolved! Different NAT IP for several user

HiI need your help with following problem.Traffic from VPN zone is NATed to one public IP for every VPN traffic.Today I got task to assign for 3 of those user different NAT IP (or even better: user1 - NAT_1, user2 - NAT_2, user3 - NAT_3 and for the rest of users NAT_4)How to achieve that?RegardsSLawek

_slv_ by L4 Transporter
  • 5714 Views
  • 9 replies
  • 0 Likes

Resolved! Specify policy by machine name/workgroup?

Hey there --So this is an odd thing that's probably it simple fix.. hoping anyway. We have 99% of our PCs on the same subnet and domain, however several of these machines are owned by an outside company and are "borrowing" our internet link. They are in their own workgroup (not on our domain), but share our address space (192.168.1.x/24). I ...

thatguy by L2 Linker
  • 5129 Views
  • 6 replies
  • 0 Likes

Globalprotect Agent for OSX - anyone else running into MAJOR UI issues?

Is anyone else experiencing poor UI issues of the Globalprotect agent for mac osx or even windows? The UI for Mac OSX is EXTREMELY difficult to navigate, let alone find the window itself sometimes as you can't alt-tab to it. Frequently the panel window is hidden behind others and the ONLY way I've found to find it is to click on the icon in menu...

Resolved! PA device and Panorama

heyhow can i see what configuration is still local on the PA device.i have a site in which i move the PA device into panorama, i have chosen to move all the device config into panorama except the HA configuration and individual configuration of each PA, now i have reset one PA configuration and push the config from the panorama, and i get that t...

minow by L4 Transporter
  • 4201 Views
  • 5 replies
  • 0 Likes

Palo Alto Networks Customer Portal

Palo Alto Networks Customer Portal Migration Tool Shared with Jive Anywhere https://c.na5.visual.force.com/apex/SearchSerialOnCase?retURL=%2F500%3Ffcf%3D00B7000000724oA&sfdc.override=1

Resolved! Migration Tool

Hi everyone,Someone know about the Migration Tool, I need to download but I can´t locate.Regards

ssl decryption vwire

HeyThe user ssl session is going in this path:User -> PA VWeirw internal > Backbone > PA VWeirw External > Checkpoint > internetIf we enable decryption on the external VWeirw the user is getting timeout in the browserIf we enable decryption on the internal VWire the decryption is working welldoes somone bump into this situation?th...

minow by L4 Transporter
  • 3685 Views
  • 5 replies
  • 0 Likes

Route web traffic through firewall

Hi,I'm just in the process of configuring a PA-500 on PAN OS 5.0.10 at our DR site so that it sit's on the internet connection at that office. It currently has three interfaces, outside, inside and DMZ. I've managed to configure things such as NAT so that I can browse the internet from that branch to test internet connectivity and NAT etc. To...

LDAP Server profile with PAN-OS 5.0.10

Hi!I have upgraded our passive/active PA-500 cluster from 5.0.8 to 5.0.10and stack with a problem, LDAP server profile Invalid credentials. Resetting password and even making brand new user for LDAP profile doesn't helped.I've logged to console and run Seems problem is in OU name what LDAP user belongs, it contains an Ä letter (Estonian).Movin...

Configuracion FW

Estoy tratando de configurar el firewall PA500, al momento de ingresar por la interfaz web, me aparece el dispositivo desconectado, que podría hacer?

Resolved! Always get "likely" pre-shared key mismatch

I tried to configure Site-to-site VPN from PAN 5.0.5 to Juniper Netscreen OS.Even I type very according easy pre-shared key. On PAN it always shown"IKE phase-1 negotiation is failed likely due to pre-shared key mismatch"Anyone have any suggestion?Thank you.

Amnuay by Not applicable
  • 12876 Views
  • 6 replies
  • 0 Likes

Resolved! Scheduler should cut off sessions immediately

Hi,We have set a schedule on some security policies, but at the moment the schedule should switch off the traffic it seems that live sessions are not immediately denied, The scheduler only prohibits the creation of new sessions. Is this true? We are on 5.0.4 witgh our PA500 box and I wonder if I can configure the scheduler to immediately cut ...

  • 24402 Posts
  • 123 Subscriptions
Top Solution Authors
Labels