This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4235 Views
  • 0 replies
  • 0 Likes

Resolved! CVE-2013-3893

What is the Vulnerability Signature status?Microsoft Security Advisory (2887505)Vulnerability in Internet Explorer Could Allow Remote Code ExecutionPublished: Tuesday, September 17, 2013https://technet.microsoft.com/en-us/security/advisory/2887505

dill by Not applicable
  • 4888 Views
  • 6 replies
  • 0 Likes

Active passive to active active mode

I have a pair of PA3020 in active-passive mode within the same datacenter pointing to the same ISP. We are planning to move the standby firewall to the new redundancy site and enable active-active mode pointing to a new redundant ISP. The 2 firewalls will be connected by dark fiber within a few kilometers. What are the best practices and steps t...

forward http request to proxy squid

Hi ,i try to forward my wifi mobile users http request to the proxy squid.i have configured the proxy squid to transparant mode (port 80)To the firewall i have 3 zone : LAN (port 1) , DMZ (port 3) and INTERNET (port2)the wifi mobile users are in zone "LAN" and my proxy squid is in zone "DMZ".When the wifi mobile users want access to internet, t...

nmaton by Not applicable
  • 7960 Views
  • 6 replies
  • 0 Likes

L2 trunk and subinterfaces to Cisco

I am trying to configure a L2 trunk from a Cisco 3750 to a Palo 5020I cannot find any info on how to configure the Palo, as the terminology is different to me.As a side note we are also running two 5020's in an Active/Active configurationI have tried configuring it but getting errors saying L2 interfaces not supported in HA active/activeI need t...

rperkin by Not applicable
  • 14470 Views
  • 7 replies
  • 0 Likes

Resolved! pass on user-id information

Hi All,Setup- We got 2 PA clusters with a leased line between them, joining two offices of the same company.- Both offices have their own AD, servers, ...- We have GlobalProtect configured on both devices.- We have PanOS User-Id configured (so no agent) on both devices- We have a user based security rule providing a "support" user access to cert...

mr.linus by L4 Transporter
  • 4235 Views
  • 3 replies
  • 0 Likes

Re-Generating HA-Keys

I was lazy and just imported a configuration from a a other firewall to create a new firewall.Now i discovered that the HA-Keys are identical (because) I imported the config.Is there any trick to re-generate them or do i have to factory reset and start over the whole config?Thanks for Help

gsteiner by L3 Networker
  • 2428 Views
  • 1 replies
  • 0 Likes

Removing an Object and All Dependencies

Morning,I am doing some firewall cleanup on our panorama. We have quite a few devices and I am forced to go through each device group to verify if something exsists locally or shared. Is there any way through the CLI or Panorama to remove an item and all dependencies? Here is the current process:Enter search term to find the itemClick through...

one trust two untrust

If I have two DSL connections, and 10 network segments, is possible configure on a PAN firewall one "trust" zone, tow "untrust" zone and send five segments for each one?

Resolved! Has anyone successfully made 'scribd' ReadOnly Access?

Hello, We would like to allow "ReadOnly" access to Scribd hosted content. I note that there is an application definition called 'scribd-uploading'. Has anyone successfully done this by blockign the 'scribd-uploading' application?ThanksArt

Art by L3 Networker
  • 3318 Views
  • 1 replies
  • 0 Likes

Resolved! Managing Local Admin Through Panorama Template

So, we are (slowly) transitioning our devices to 5.x code to fully utilize the templates via Panorama. One of the items I was looking into transitioning is the local admin account. However, from my testing, I don't know that this is possible. We have a 90-day password rotation on all our passwords so we need to change that admin password as w...

mrsold by Not applicable
  • 6703 Views
  • 3 replies
  • 0 Likes

Resolved! Traffic logged in an interface in down state

This is our scenario:- A PA-200 with a subinterface tagged with VLAN ID 200.- Connected to a Cisco Catalyst switch (trunk with VLAN ID 200 allowed).- It has been working without problems.Now, we want to divert traffic to a Cisco router with same IP address as PA-200.We put Catalyst interface in shutdown state (where PA-200 is connected) at 10.52...

Panorama Generating Blank Reports

Hey everyone. Has anyone see an issue where Panorama (VM) is generating blank scheduled reports? I came into the office this morning, and found that Panorama generated its normal scheduled reports, but they are all blank with no data. Its not just one day, its 3 days worth of reports that have blank data.I checked the device logs and cannot f...

jholmes by L1 Bithead
  • 6950 Views
  • 3 replies
  • 0 Likes

Local user authentication

Hi all,What does it mean if I create a rule that allows http/https services only for authenticated users from local user database between 2 zones? Will the users have to authenticate to the firewall first? How? Thanks!Peter

  • 24358 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks