This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

PA-500 - Replacement is not acting the same as old one

Here is our scenario.....please keep in mind I'm not a network personWe have two PA-500s. They used to be in HA but we had taken one out for a different purpose early last year so we were running in stand alone.The PA-500 worked great but we started having random crashes. So we rushed to put the secondary back in and put it into HA mode while ...

Search for hosts/IPs across entire PA environment

What is the most effective method for searching for usage of a hostname or IP address across our entire PA environment?The goal is to be able to identify and delete objects and rules that have been created in our firewalls that correspond to hosts/IPs that have been retired from our environment. We get notified of those retirements, so I'd like ...

gwhyte by Not applicable
  • 7343 Views
  • 6 replies
  • 0 Likes

Resolved! SNMP - partial monitoring (monitoring restricted)

Hi,I would like to know if it is possible to create an SNMP community and restrict access so it can monitor ONLY ONE interface of the firewall Palo Alto. Should not be able to monitor eg CPU utilization and memory firewall.tks, Paulo Aun

Thiago by L3 Networker
  • 3608 Views
  • 1 replies
  • 0 Likes

PA Software Update Notifications

I'm looking for a page somewhere that has the expected release dates for upcoming Palo Alto software updates. Does such a thing exist? I've looked around the site and can't find anything. We are planning on upgrading our firewalls to 5.1 but we can't find the expected release date.

User ID methods?

I am curious how many folks are now using the ID agent that is built into the PA as opposed to the agent that is installed in a windows client?I tried migrating to the built in agent but it seemed to cause excessive CPU usage on my DCs.Thanks,Bob

BobW by L4 Transporter
  • 2617 Views
  • 2 replies
  • 1 Likes

DHCP Relay and virtual routers

Hi,I have a PA500 configured with 2 virtual routersIn both virtual routers I have some zone, interfaces and networks.For example:VR1- Zone1: Network Ethernet1/1.1 - Interface Type Layer3 - Tag 1 - IP 10.168.100.1 / 16- Zone2: Network Ethernet1/1.2 - Interface Type Layer3 - Tag 2 - IP 192.168.50.1 / 24VR2- Zone3: Network Ethernet1/2.1 - Interface...

diennea by L3 Networker
  • 8881 Views
  • 9 replies
  • 0 Likes

Custom App ID - Derived from usernames/http params

I am working with a client in an interesting situation..We are basically needing to limit sections of the network where certain users and login to a web server. For example, only admins can login from zone1 and only users can login from zone2. The application on the web server is not a custom one built by the client but there is no current ID fo...

SDorsey by L4 Transporter
  • 2715 Views
  • 2 replies
  • 0 Likes

Dynamic update internal firewall

Hi all,We have an internal firewall that does not have no Internet access. I wonder what is the best way and best practice in updating the IPS / AV signature (no URL filtering).Any recommendation?Thanks

  • 24381 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks