General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Duplicate Syslog Messages

Hi.  We're running 4.1.9 on our firewalls and have an issue where all Syslog logging is being duplicated.

I've seen an old bug fix report saying that 4.1 fixed an issues with some Config messages being duplicated, but was wondering if there is a known

...

apackard by L4 Transporter
  • 3588 Views
  • 3 replies
  • 0 Likes

Resolved! GlobalProtect SSL VPN User Access Filtering

Hello,

I am fairly new to the Palo Alto firewalls so I figured I would pose a question to everyone while I continue my own research into the issue. Basically, in our test setup we have SSL VPN set up so that everyone in the office can authenticate vi

...

Resolved! Panorama 32-bit/64-bit

I was just wondering if there is a 64-bit version of Panorama to run on a virtual machine? Right now we are running a 32-bit version and would really like to increase the RAM. We are limited to how much memory we can add since the VM recognizes Panor

...

Resolved! Download GlobalProtect for Testing

I cannot see a way to download the GlobalProtect client for Mac and Windows, without activating it for the entire environment.  I would like to download the latest version to a client for testing before release.  How do I do this without activating i

...

Resolved! What Event ID is the PAN-OS User Mapping Looking For?

In the PA 5.0 Admin guide the following is stated:

"In Windows 2008 or later domains, you can add an account to the “Event

Log Readers” group to access event logs to obtain user to IP mapping information

from event logs."

What AD event ID is it looking f

...

Viewing Drop Packets/Log on FW.

Is there another method to view logs/packets that are drop on the firewall without having to do a packet capture. Is there a command that could be used in the CLI to view all drops data.  If anyone know if this is possible please comment.

How to do URL Whitelists?

I am trying to figure out how to do Whitelists for a list of URLs and I am not having much luck.

By default all outgoing is allowed on everything internal.

I have a group of addresses that should only be allowed to view certain websites with wildcard

...

jeffm by L0 Member
  • 7016 Views
  • 4 replies
  • 0 Likes

Allowing "Save" function in a limited Admin Role

I have created an Admin Role for helpdesk users, limited to URL log, URL Objects and Custom URL Category.

However, the users do not get the "Save" Option in their login.

Anyone know which part of the tree I need to allow access to in order to get the S

...

DNS in IPv6 RA

I think it is time to start the first IPv6 only setups. What I missed in my testing setups was the DNS option in the RA (RFC 6106).

Has anybody IPv6 only setups routed via PA?

Unibw by L2 Linker
  • 2064 Views
  • 3 replies
  • 0 Likes

BGP, PBF, and outbound routing?

kprakash you have been incredibly helpful with all of this so far, thank you.    It seemed like it would be better to branch this to a new topic.

Here is a new / updated image with some more information...

I currently have a single default route for ou

...

bradenmcg by L3 Networker
  • 2065 Views
  • 0 replies
  • 0 Likes

Resolved! How do I check Products release?

Hello everyone;;

I want to know release;;

as far as we know, PA Devices are 200, 500, 2050, 3020, 3050, 4020, 4050, 4060, 5020, 5050, 5060

When did them release,,?

I am not sure that OS Version release

It seems that There is PA Site somewhere

good bye;

Have

...

One-to-One NAT - DMZ to inside - how do I make it work?

Folks.

I'm apparently having a particularly stupid day, because I can;t make something as simple as one-to-one NAT work.

Scenario is this.

I have an IP in my DMZ. I have assigned this IP to a particular server which is hosted on my INSIDE (secure) netwo

...

darren_g by L4 Transporter
  • 5337 Views
  • 18 replies
  • 1 Likes
  • 24290 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels