General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Disabling warning messages during commit

Hi,I get a lot of warning messages during commit, regarding rules shadowing, application dependency, etc.I've been looking for a way to disable some or all of the warning messages, but with no luck.Anyone know if it is even possible?

JFunk by L0 Member
  • 4444 Views
  • 2 replies
  • 0 Likes

Resolved! logs on PA-2050

Hello everyone ,I have recently implement pa-2050 at a customer premises. Nine days after the implementation each time when login on the web interface a system alarm just popup saying '' Database traffic exceeds percentage limited '' . Have a question , with the default quota for the traffic log how many days pa device can keep the logs?Please ...

Resolved! Security Policy Rule matches on ALL URL categories

Hi,I'm sure this was working at some stage but now it's not working the way I need it: I have a rule from inside to outside, any user, web-browsing and a URL category of gambling, allow the traffic and use log forwarding with no profiles selected.The problem is that the URL is matched on ANY traffic. Doing a 'test url' from the command line list...

hoerzers by L1 Bithead
  • 10793 Views
  • 10 replies
  • 0 Likes

QoS (bandwidth) VPN site-to-site tunnel?

Hi all,I am trying to understand the QoS feature of the PAN-2020 and was wondering if I could get some assistance. We have a VPN site-to-site tunnel and the data center we are tunneling to is a 10 Mbps connection we can burst up to (10 Mbps being the max speed). We are using PAN-2020s on either side to manage the tunnel and I am looking into h...

cmateam by L3 Networker
  • 6540 Views
  • 3 replies
  • 0 Likes

M86 Migration Experiences

I may be starting a migration soon that includes migrating URL filtering from an M86 to PAN. I'm trying to get up to speed on the M86 (haven't used it before) and wondered if anyone had any hints, recommendations or "gotchas" to watch out for.Currently perusing the M86 web filter user guide but that never paints the whole picture. So, appreciat...

Resolved! Mismatch of static-ip source translation address range between original address and translated address

What exactly does this error mean?Error: nat rule 'ipCentrix Outbound': Mismatch of static-ip source translation address range between original address and translated addressI get this error during commit.I'm trying to:Change the Source Address to 66.111.112.5 forAny Packet to the Internet zoneThat has the destination address of 192.168.128.0/18...

JoshG by Not applicable
  • 23967 Views
  • 1 replies
  • 0 Likes

M100 - incorrect Message Authentication Code

I have the following setup: A VM100 that has multiple VLANs, for example LAN, Guest and DMZ. In the DMZ are some https websites, hosted on VM's on the same VM server as the M-100.Everything is working as expected, so internet, DHCP, DNS etc. is all working fine.However, when connected to the LAN, surfing to a https website in the DMZ results in:...

Palo Alto in Virtual Wire mode - problem with perimeter gateway (Firewall)

Hello everyone,I decided to post here a question that I hope someone would be able to answer or at least provide some guide to which direction to move.I have an opportunity to sell Palo Alto appliances to one of our clients and for that I need to show to the client that it is better that their current firewall.So configuration:Clients Perimeter ...

Panorama VM is misaligned.

Hi everyone,I have installed the Panorama from the OVF file that Palo Alto provide. But when the VM is deployed, it is misaligned. Did anyone solve this issue already?I have tried to align it with MBRAlign in ESX, but after that the alignment the VM will not startup anymore.Does anyone have any idea how to solve this?

plim01 by Not applicable
  • 12993 Views
  • 23 replies
  • 0 Likes

Resolved! LDAP for User Mapping

Hi,Can anyone explain: LDAP profile is needed just for User group mapping or in general for user mapping? Now i'm confuse.

Interface by L3 Networker
  • 3888 Views
  • 4 replies
  • 0 Likes

Resolved! Failed to email PDF reports

Hi,Sometimes scheduled PDF reports fails to send. I get the message: "failed to get ip for host." It is email server problem or something wrong with configuration? Is any possibility to send scheduled PDF reports on another time or repeat sending?

Interface by L3 Networker
  • 4054 Views
  • 3 replies
  • 0 Likes

IPSEC VPN through PAN comes up but does not pass traffic

What needs to be enabled to allow a VPN that once worked to be allowed through a 3020. I had a Juniper to Juniper IPSEC VPN that worked before the 3020 was placed between the 2 junipers. What needs to be allowed to make sure that the traffic passes.The VPN comes up,but no data is able to pass

tuckert by L0 Member
  • 2734 Views
  • 2 replies
  • 0 Likes
  • 24395 Posts
  • 123 Subscriptions
Top Solution Authors
Labels