General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 391 Views
  • 0 replies
  • 0 Likes

Resolved! PAN-OS 5.0.5 :Commit failed

Hello,

I have upgrade my firewall from 5.0.1 to 5.0.5 successfully.

But when I am trying to commit. It is giving below error.

Operation

Commit

Result

Failed


Details vsys -> vsys1 -> global-protect -> global-protect-portal -> portal-tunnel -> client-confi

...

u22443 by Not applicable
  • 2520 Views
  • 3 replies
  • 0 Likes

Resolved! Question Regarding Reporting

Hi All!

I'm responsible for Security Analysis at a Telecommunications company up in New England. We've recently deployed Palo Alto firewalls to all sites, and I am currently going through PDF Reports manually while we get Splunk installed.

One thing th

...

Resolved! FQDN vs NetBIOS Domain Name

Hi,

I have a PA-3020 running agentless user-id. When I examine the traffic log, some user id's are displayed as netbios_domainname\userid and others displayed as FQDN\userid.

ie:

domain\billw

vs.

domain.somewhere.com\billw

Any ideas as to why this happens?

...

charger by L2 Linker
  • 9242 Views
  • 5 replies
  • 1 Likes

DHCP Server ip adress give so slow

hello,

we are try palto 5060 fw. Palto os 4.0 not yet update 4.1. Before we was using juniper and we write all rules same as juniper after all our network  ip address relase or renew so slow.

We have 3 zone. Trust, untrust and dmz. Our dhcp server is l

...

aupalto by L0 Member
  • 4270 Views
  • 3 replies
  • 0 Likes

Resolved! what is wrong with blocking firefox

Hello all together,

there something misterious for me because

to block firefox i used this document https://live.paloaltonetworks.com/docs/DOC-5028  but with this config it hasn't been working so far.

Is there a hand? My Config is:

i tried it with enable

...

kdd by L4 Transporter
  • 4699 Views
  • 4 replies
  • 0 Likes

Linux VPN clients

Does anyone have suggestions for Linux based VPN client software to users into a Palo Alto Managed environment.  The dynamics (frequent upgrades of various distributions) is causing issues with our current 3rd party commercial VPN solution.  Any sugg

...

HITSSEC by L4 Transporter
  • 3494 Views
  • 5 replies
  • 0 Likes

Resolved! GP - second gateway creation problem

Hi

I have PA200 with 5.0.5 with ateway and portal licence.

On untrust interface I have /26 network

To set up another gateway I added second IP to my untrust interface. X.X.X.141 with /32 mas - is it correct?

after commit I add new gateway profile and try

...

_slv_ by L4 Transporter
  • 3134 Views
  • 5 replies
  • 0 Likes

Resolved! Forward DNS requests

Hi,

We are looking for a way to forward All dns requests to internal DNS ip.

Either client changes its ip address to public dns addresses it should be forwarded to internal.

Can we do that ?

We don't want to write a deny rule for public Dns requests.

We d

...

panos by L6 Presenter
  • 9096 Views
  • 16 replies
  • 0 Likes

Palo Alto blocking Wii game

Hi All -

Just got my Palo Alto installed last week!  So far so good.  Hope this is the right place to be posting...

I just got a message from a student that since the firewall install, a game on his Wii U, Monster Hunter, has stopped working.  He claim

...

Resolved! GP with Host detetion and auto-connect

Hi,

PA 500 in 5.0.4 and GP client 1.2.3

Would like to be sure, I need GP auto connexion from outside of my network and no GP in my network.

Then configure my external gateway, my internal host detection. It works well.

But short question do I need the GP

...

VinceM by L5 Sessionator
  • 4713 Views
  • 5 replies
  • 0 Likes

Loopback addresses and ARP

I'd like to terminate VPN's on lookback addresses from my public range.

If my public interface is 1.1.1.1/24 and I want to terminate VPN's on .2 and .3 I create two loopback interfaces (place them in the Internet Zone) with the IP addresses of 1.1.1.2

...

Resolved! Can firewall act as VPN client?

Wondering if we can configure a lab PA-200 to connect to a VPN concentrator on the internet using IPsec, as though it were a VPN client not a site-to-site tunnel.  Not connecting to the firewall using GP, but using the firewall itself as the VPN clie

...

Nick1 by Not applicable
  • 3926 Views
  • 6 replies
  • 0 Likes

How to QOS Cisco Phones?

Architecture:

Hub and Spoke, Site to Site Ipsec VPN tunnel

HQ Site:

ASA5520

Call Manager

Cisco IP Phones

Remote:

PA5020

No Call Manager

Cisco IP Phones

Remote users connect to HQ via VPN tunnel between ASA and PA

QOS Policy

src.zone Inside dst.zone Inside to mat

...

PANoJAM by Not applicable
  • 3468 Views
  • 3 replies
  • 0 Likes

Resolved! Limiting the "admin" logging sessions

Hello everyone; some of you know if there is a way to limit the admin logging sessions. This is, if I logging in the firewall with the "admin" account from the PC A; and I try to logging to the firewall with the "admin" account from the PC B too; I s

...

Smartekh by L1 Bithead
  • 2533 Views
  • 3 replies
  • 0 Likes

User ID agents showing as red

I have 3 separate domains on my network and they are not trusted together.  On my main domain where the firewall is installed the agent shows green, however when I install the agent under the remote domains (on different subnets across the country) t

...

nthen by L3 Networker
  • 9552 Views
  • 22 replies
  • 0 Likes
  • 23842 Posts
  • 112 Subscriptions
Top Liked Authors
Labels