General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1197 Views
  • 0 replies
  • 0 Likes

DNS Proxy Errors

We have a remote office using a PA-200 in the middle east. I configured it to use DNS proxy with caching to lower the time for resolution over the VPN tunnel back to our corporate DNS servers in the US. We also have intermittent disconnects due to th

...

CRL not downloading

Hi,

I have just noticed that my PA-2050 has in it's system logs regular entries as follows:

Failed to get CRL http://crl.godaddy.com/gds1-16.crl

I also get similar entries for every different certificate server I can think of.

Reason I ended up looking a

...

Strachf by L1 Bithead
  • 4539 Views
  • 4 replies
  • 0 Likes

Multisite vpn question

I am in the process of planning out a spoke/hub type PA vpn setup.  I'm working with the networking team to carve me out enough addresses for each remote site.  What I'm wondering is if each remote site can connect back to the main HQ PA (5000) so I

...

gmchenry by L1 Bithead
  • 2403 Views
  • 1 replies
  • 0 Likes

UserID problems

HI,

we just migrated from 5.0.3 to 5.0.6. And we are having some problems  with the mapping in UserID. For some users the UserID is working correctly but for others users is not working...

I attached how this uses jloa log in, but i cant in the show us

...

About vpn error log

Hi,

What does "received unencrypted Notify payload(INVALID COOKIE) from IP ...to  ...  ignored "  mean ?

Thanks.

panos by L6 Presenter
  • 4585 Views
  • 4 replies
  • 0 Likes

Application Incomplete - Leading causes?

So im doing work on our DR site. Two diff setup scenarios are failing; NAT over a VPN and routing from one PA to another and out a VPN. I can see the rule letting the packets out so a session should start for the return trip but .. nothing.

Both scena

...

choff123 by L3 Networker
  • 11567 Views
  • 13 replies
  • 0 Likes

About custom Report Logging

Hi,

Is there a way to log the situation (or to be informed ) when someone runs and exports a report in custom report section ?

Thanks.

panos by L6 Presenter
  • 2430 Views
  • 3 replies
  • 0 Likes

Resolved! Strange output from Nmap

Hi

I have PA200 with 5.0.7 with latest updates and I try to nmap scan (from untrust zone) one of my servers from DMZ. Output is strange

Nmap scan report for X.X.X.X

Host is up (0.020s latency).

Not shown: 965 filtered ports

PORT      STATE SERVICE

21/tcp 

...

_slv_ by L4 Transporter
  • 10466 Views
  • 7 replies
  • 0 Likes

PA Cluster and Panorama Template

Hey

i am trying to understand how to use Pannorama with PA cluster

my view of panorama is: if you have pannorama you should never have to login to the PA itself for configuration.

right now i have one PA cluster and one pannorama server (the PA have a c

...

minow by L4 Transporter
  • 2027 Views
  • 1 replies
  • 0 Likes

PA200 sizing

Hi all,

would a PA200 fit in such scenario?

lan users: 70-100

wan connectivity: 10Mbps

(so basically 2-zone traffic)

Threat prevention: yes (inbound and outbound traffic)

URL filtering: yes for all users

VPN tunneling: yes (remote access only for few users)

...

Active / Active Config sync

I am setting up a pair of 5020's in an Active / Active configuration.

I am getting confused over the config sync feature and have been overwriting configs on each box.

i.e I configured some aggregate interfaces on Box 1 and then I synced the config on

...

rperkin by Not applicable
  • 3072 Views
  • 2 replies
  • 0 Likes
  • 24172 Posts
  • 117 Subscriptions
Top Solution Authors
Top Liked Authors
Labels