This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! Global Protect and HIPS

We have setup Global protect and are able to connect to our network.

Once we add a HIPS profile all the traffic gets denied. The only setting in the HIPS profile is the OS is microsoft.

We are currently using Software version 5.0.6 and global protect 1

...

murphyj by L2 Linker
  • 5623 Views
  • 8 replies
  • 0 Likes

Resolved! Palo Alto cant filter users in a group

Hi,

I have a PA2050 v(4.0.11) and PAN-Agent for ldap users and groups. I have created a a group in my Active directotory and i configure a policy for this group but i try to check this policy with one user in this group and firewall dont let me passtr

...

Resolved! user-id agent commit issue

Hi team,

I have got issue when trying to commit our configuration on User-id agent.

User-id agent can not to connect AD without commit.

Who have an experience of this, please help.

BR

Ulugbekyu by Not applicable
  • 3533 Views
  • 4 replies
  • 0 Likes

Maximum latency between HA peers?

Whats the maximum latency allowed for HA peering links (e.g HA1 control and HA2 keep-alive) between devices setup in active/passive HA pair?

i.e based on the latency can determine the approximate distance that HA pairs can be physically separated.. 1K

...

CMG by L2 Linker
  • 4053 Views
  • 1 replies
  • 0 Likes

Site-to-Site vpn and NAT

Hello,

I have one vpn configuration question, I hope somebody can help...

I am configuring vpn site-to-site in my site PaloAlto, other site is not important in this case.

I am making source and destination NAT for the traffic that is used for vpn. The p

...

aaputis by L0 Member
  • 3480 Views
  • 3 replies
  • 0 Likes

Resolved! Policy with "Log at Session Start" option - how to find it?

Hello

I have about 100 polices on my device, some of them has "Log at Session Start" option enabled. Is it posisible to find it from the CLI ?

I have very little skills in CLI so please give me the whole CLI command.

I realised that my weekly reports ar

...

_slv_ by L4 Transporter
  • 6543 Views
  • 7 replies
  • 0 Likes

How Long to Update Firewall from Panorama

I changed a zone in a policy from Panorama but the change doesn't show when  in the context for the particular device.  Did I miss something? How long for that change to show up?

Weese by Not applicable
  • 3287 Views
  • 4 replies
  • 0 Likes

How to skip CaptivePortal for one device?

Hello

As you can see on this forum I have some configurations problems with CP.

In the zone where I have CP enabled I have Minolta BizHub c220 device (with static IP 192.168.3.251). This device has scan to email features. After I enabled CP for this zo

...

_slv_ by L4 Transporter
  • 3106 Views
  • 6 replies
  • 0 Likes

Resolved! Captive Portal

has anyone got configuration for captive portal on and incoming untrusted public ip  nat to private internal address.

i need to authenticate incoming connections before they reach the internal server address.

under captive portal I have the source as t

...

djrodb by L3 Networker
  • 11195 Views
  • 10 replies
  • 0 Likes

Resolved! problem with groups in user-id mapping

hi,

i have a problem with using groups (from windows active directory) in security rules.

on our windows active directory i have created a new group fw_finance. we use the PAN user-id agent to get the mapping from ip to user. i mapped this group on our

...

assona by L0 Member
  • 9755 Views
  • 6 replies
  • 1 Likes

DNS Proxy

Can i use the DNS proxy feature for all external queries for our public sites?

external user queries for www.mydomain.com - instead of our DNS servers replying, could we have the PA do it instead?

So we can list out all our public domains and only thos

...

rskler by Not applicable
  • 1785 Views
  • 2 replies
  • 0 Likes
  • 23710 Posts
  • 103 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks