General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

USER ID MAPPING

What will give you better results, User-ID Agents installed on domain controllers, or Server Monitoring from the firewall (agentless)?

almay by L2 Linker
  • 5325 Views
  • 7 replies
  • 0 Likes

Resolved! NAT sessions

Hello All,Is anyone know how to see or debug nat translations on PAN device, similar like "sh ip nat translation" on cisco devices?Txs...

Tician by L3 Networker
  • 33974 Views
  • 4 replies
  • 1 Likes

Certificate trust error after updating Global protect client

Folks.I've finally managed to get approval to push out an update to the latest Global Protect client, but now when we connect, we get a certificate trust error. We are using a self-signed certificate for the portal.I've applied the fix suggested in this Trusted root CA on Global Protect Portal post - but it hasn't helped.Can anyone suggest other...

darren_g by L4 Transporter
  • 4045 Views
  • 4 replies
  • 0 Likes

GlobalProtect traffic not returning through the same interface.

@@Greetings,On our firewall our main internet connection is coming in through a via a virtual wire connection that sits between our physical router and our core switch. In addition to this we have a cable modem attached directly to the firewall via L3, which we use for routing outbound guest wifi traffic and to use for our globalprotect portal /...

Netwerx by L2 Linker
  • 7363 Views
  • 6 replies
  • 0 Likes

Resolved! My first OS maintenance update

Hi, I have an HA active/passive pair of 3050's that are currently on OS 5.0.2. I have successfully downloaded and installed 5.0.9 on the passive unit. Do I need to suspend the active/primary unit before I install the update or will the installation automatically take care of that?I am a bit nervous because I am connected over VPN to the firewal...

mikejeezy by Not applicable
  • 3084 Views
  • 3 replies
  • 0 Likes

GP client connected to internal GW - no user attached to IP address

Hello all,I was thinking that when a client is connected via GP to an internal Gateway, the user is mapped to the IP address of the client. In my case, that is not working. The zone in which the client resides has user-ID enabled, but still the traffic is not stamped with the user-ID.Can someone help me troubleshooting?Regards,Stephan van der Plas

bsanders by L2 Linker
  • 4644 Views
  • 3 replies
  • 1 Likes

SNMP monitor parameters for Palo Alto

Hello,I have two PA500 with software version 5.0 and i would like to know if i can monitorize using SNMP (Nagios) the following parameters of my Palo Alto.- CPU Usage dataplane and management- memory- Current sessions- Hard disk space- State and use of interfacesAlso wanted to know if i could monitorize in Panorama these parameters:- CPU Usage-...

Resolved! schema verification failed (application-filter -> nim 'nim' is already in use)

Hi There,I am kind of stuck on a problem for which I am unable to find a resolution ...When I commit on my device after upgrading "Application and threats database" , I get an alert with the " application-filter -> nim 'nim' is already in use "But when I do a change back (revert to previous state of database 404-2015) it is OK! Any thought...

Oleksandr by L3 Networker
  • 4965 Views
  • 4 replies
  • 0 Likes

Resolved! Active-Active Clustering

Hi,I have configured Active-Active Clustering with LAN Side ARP Load-balancing with shared IP and WAN side Floating IP. Everything is working fine but when i am going to Monitor to see traffic it says only one box is getting traffic. there is not traffic log for second box.What is Active-Active if Load is not sharing between two boxes.Hope anyon...

Run multiple local script commands in CLI

Hi,In my struggle to switch my captive portal rules on and off I want to run a script to achieve this. I use a .bat file containing the following line:c:\test\plink.exe -ssh 192.168.100.2 -l admin -pw mypassword -m c:\test\enable.txtThe file enable.txt contains the following lines:configureset rulebase captive-portal rules "My Captive Portal Ru...

Resolved! 10G link aggregation PA-5050 to Juniper EX4500 switches

Hi everyone,I'm having a bit of trouble configuring link aggregation between my PA-5050 and Juniper EX4500 switches over 10G interfaces. The problem seems to stem from the fact that the PA-5050 link-aggregation dialog gives two options for link speed: 1000 or Auto, whereas the EX4500 configuration requires a hardcoded 10G speed setting.How can ...

Mack by L2 Linker
  • 4697 Views
  • 3 replies
  • 0 Likes

Resolved! Does anyone have Applipedia in an Excel Spreadsheet?

I am in the process of building an Internet Gateway policy and need to review the 1,791 applications and make a decision to allow or block each application.It would be really great if the application information was in an .xls (Category) (Subcategory) (Technology) (Risk) (Characteristic). Then I could add columns like (Aproved) (Global Policy) (...

  • 24397 Posts
  • 123 Subscriptions
Top Solution Authors
Labels