General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

PBF on 2 internet links on same ISP

Hi,

I would like use PBF to secure and share 2 internet links (same ISP)

When I configure public IP on the PA interfaces I have an error due to LAN overlap.

the primary link

eth4  x.y.z.99/24

the second

eth3 x.y.z.185/24

the ISP gateway is x.y.z.254 same f

...

kyr-jha by L0 Member
  • 1305 Views
  • 3 replies
  • 0 Likes

Sample Configs

Are there any links or references to a complete sample config for the PA firewall?  I would like to see complete NAT examples and security policies for both inbound and outbound traffic.  The Understanding NAT guide covers the inbound policy but not

...

pko by L1 Bithead
  • 1435 Views
  • 3 replies
  • 0 Likes

Resolved! What happens if I change mgt IP?

Hi folks -

Just starting to deploy over here and I'm going through some mental exercises regarding pre-staging of firewalls.  I have about a dozen PAN's in my possession that I need to configure and then will ship out to branch offices...   I'd like t

...

djfwsup by Not applicable
  • 1883 Views
  • 2 replies
  • 0 Likes

Globalprotect client download froze

I have encounted an issue with GlobalProtect. When I click any of the 3 download links of GlobalProtect Agent from the portal page. The download started, but after a few minutes it froze. I tried on 2 machines with different OS (windows 7 and windows

...

yq by L0 Member
  • 1234 Views
  • 2 replies
  • 0 Likes

Network address Translation (NAT) support for IPSec ESP

I have an IPSEC tunnel with a third party and they require that all traffic coming from me to be NATted as they will only accept data traffic coming from the IP of the NAT within the IPSEC tunnel.

I have been unsuccesfull in trying to figure out how e

...

jrhine by Not applicable
  • 3340 Views
  • 1 replies
  • 0 Likes

Export

Hello, is there any posibility how to export list of computers from Objects - Address Groups. I have there one group of computers FQDN specification and I would like to export it.

Thanks for advice

Brano

oitspa by L2 Linker
  • 1774 Views
  • 3 replies
  • 0 Likes

Layer 3 VLan on PAN OS

Hi all,

I'm hoping someone can help shed some light on an issue I'm having.

quick diagram:

       Vlan 9                  (Layer 3 Interface for Vlan 9)                    VLAN 9

(CISCO SWITCH)-------------[PALO ALTO]---------------(CISCO SWITCH)

        

...

riverj30 by L0 Member
  • 1250 Views
  • 2 replies
  • 0 Likes

Resolved! Microsoft Windows 8 Store and PANOS 4.1.7.

We recently upgraded our HA Active-Passive pair of PA-4060's from v3.1.9 to v4.1.7. In addition to resolving some minor issues with changes in the codebase, we have noticed now that our minority of users with Windows 8 workstations (Beta, Release Pre

...

UAMSITSEC by Not applicable
  • 1562 Views
  • 2 replies
  • 0 Likes

Resolved! Unlocking website

How about? I hope to have your support.

I have a PA-500 and I want to unblock a website. The website is in the category as personal-sites-and-blogs. First I made a Custom URL Category group, that's where I wrote the URL. URL Filtering put in that cate

...

Zeus (aka Zbot, Wsnpoem) ignored by PA ?


We subscribe to an outside service that monitors our traffic. We regularly get reports about the Trojan Zeus being identified from various different internal clients. Why isn't PA blocking this ? Here is some info about the Trojan:

Regarding Zeus:

Zeus

...

jhickey by L3 Networker
  • 2157 Views
  • 3 replies
  • 0 Likes

Using User ID Agent with Exchange servers and event ID's

I have the user Identification agent up and running against my domain controllers and exchange servers, but I am not seeing any mappings coming from the exchange server from users connecting using Active Sync from phones.

When I run "show user ip-user

...

jenkinsp by Not applicable
  • 1603 Views
  • 2 replies
  • 0 Likes

Feature Change - URL allow list action ALERT

I would like to suggest modifying the URL Filtering rules so that we can specify an action on the URL Allow list.  Specifically, I would like to select "ALERT."

I have around 20 URL filter policies.   I have MANY exceptions to rules.  For example, Soc

...

EdwinD by L3 Networker
  • 868 Views
  • 0 replies
  • 4 Likes

Resolved! Backup Configuration

Is there a way to get a backup of the configuration when all you can access is the CLI?

I'm running a Pan-500 with 3.0.6

Thanks,

Donald

donaldmc by Not applicable
  • 3256 Views
  • 3 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors