General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 358 Views
  • 0 replies
  • 0 Likes

Resolved! Palo Alto cant filter users in a group

Hi,

I have a PA2050 v(4.0.11) and PAN-Agent for ldap users and groups. I have created a a group in my Active directotory and i configure a policy for this group but i try to check this policy with one user in this group and firewall dont let me passtr

...

Resolved! user-id agent commit issue

Hi team,

I have got issue when trying to commit our configuration on User-id agent.

User-id agent can not to connect AD without commit.

Who have an experience of this, please help.

BR

Ulugbekyu by Not applicable
  • 3807 Views
  • 4 replies
  • 0 Likes

Maximum latency between HA peers?

Whats the maximum latency allowed for HA peering links (e.g HA1 control and HA2 keep-alive) between devices setup in active/passive HA pair?

i.e based on the latency can determine the approximate distance that HA pairs can be physically separated.. 1K

...

CMG by L2 Linker
  • 4349 Views
  • 1 replies
  • 0 Likes

Site-to-Site vpn and NAT

Hello,

I have one vpn configuration question, I hope somebody can help...

I am configuring vpn site-to-site in my site PaloAlto, other site is not important in this case.

I am making source and destination NAT for the traffic that is used for vpn. The p

...

aaputis by L0 Member
  • 3723 Views
  • 3 replies
  • 0 Likes

Resolved! Policy with "Log at Session Start" option - how to find it?

Hello

I have about 100 polices on my device, some of them has "Log at Session Start" option enabled. Is it posisible to find it from the CLI ?

I have very little skills in CLI so please give me the whole CLI command.

I realised that my weekly reports ar

...

_slv_ by L4 Transporter
  • 7383 Views
  • 7 replies
  • 0 Likes

How Long to Update Firewall from Panorama

I changed a zone in a policy from Panorama but the change doesn't show when  in the context for the particular device.  Did I miss something? How long for that change to show up?

Weese by Not applicable
  • 3573 Views
  • 4 replies
  • 0 Likes

How to skip CaptivePortal for one device?

Hello

As you can see on this forum I have some configurations problems with CP.

In the zone where I have CP enabled I have Minolta BizHub c220 device (with static IP 192.168.3.251). This device has scan to email features. After I enabled CP for this zo

...

_slv_ by L4 Transporter
  • 3556 Views
  • 6 replies
  • 0 Likes

Resolved! Captive Portal

has anyone got configuration for captive portal on and incoming untrusted public ip  nat to private internal address.

i need to authenticate incoming connections before they reach the internal server address.

under captive portal I have the source as t

...

djrodb by L3 Networker
  • 11920 Views
  • 10 replies
  • 0 Likes

Resolved! problem with groups in user-id mapping

hi,

i have a problem with using groups (from windows active directory) in security rules.

on our windows active directory i have created a new group fw_finance. we use the PAN user-id agent to get the mapping from ip to user. i mapped this group on our

...

assona by L0 Member
  • 10330 Views
  • 6 replies
  • 1 Likes

DNS Proxy

Can i use the DNS proxy feature for all external queries for our public sites?

external user queries for www.mydomain.com - instead of our DNS servers replying, could we have the PA do it instead?

So we can list out all our public domains and only thos

...

rskler by Not applicable
  • 1990 Views
  • 2 replies
  • 0 Likes
  • 23834 Posts
  • 112 Subscriptions
Top Liked Authors
Labels