General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Block App-id Youtube

Can anyonetell me step-by-step how to block youtube using an app-id? I have never used app-ids before and need a quick lesson.  

dfrench by Not applicable
  • 1549 Views
  • 1 replies
  • 0 Likes

SSH Remote Command Execution for Config Files

Hey Guys,

I was curious if there was a way to run a command remotely via SSH to the PAN Device to dump configs.

I was thinking of a way to dump the output of "pa2050-1> show config running" to a flat file that I can hopefully do version checking on.

How

...

ikinnexi by Not applicable
  • 2776 Views
  • 1 replies
  • 0 Likes

Sizing PA Devices

I need to know if there is any report/graf in PA that shows the throughput peak, simultaneus session peak, in a custom time period. This would be great for sizing equipment after analizing the traffic of a costumer during some days. It will be very u

...

DHCP Routing on PALO ALTO 2020

Hello,

I'm about to try to route dhcp traffic dhcp over my palo alto, but it does not work. Is there an equivalent of "helper-address" known on some routers. My client and my dhcp server are not on the same network, my palo is on the midle betwen my d

...

Resolved! Upgrading Panorama and firewalls from 3.1.8 to 4.1.3

Looking to upgrade our Panorama and mix of 500, 2000 and 4000 HA units from 3.1.8 to 4.1.3.

We understand that we need to jump to 4.0 first, and then to 4.1.3 as there is no direct upgrade path.

Here are some of the questions however:

  1. Can we upgrade Pan
...

KGC by L3 Networker
  • 2283 Views
  • 3 replies
  • 0 Likes

User-ID: Radius

Our students that use our wireless must authenticate to Cisco ACS using their domain credentials before gaining access to the network.  How can I setup my User-ID agents to properly log the student wireless name and ip?  Will this need to be a change

...

u10723 by Not applicable
  • 1649 Views
  • 1 replies
  • 0 Likes

User-ID PanOS 4.1

In regard to user identification of traffic, older implementations of PAN we would install the PAN-Agent, but after reading a bit more on the 4.1 it seems I would no longer need to use the agent in an Active Directory installation.

Is there any docum

...

u10723 by Not applicable
  • 2702 Views
  • 6 replies
  • 0 Likes

Increase Data plane CPU on PA-500

Hi, every body!

I used Palo Alto - 500  with version 4.0.1

On this device, Data plane CPU alway about 6-20%. I want to increase Data plane CPU on Pa-500 (4.0.1)

Please help me How to increase CPU up to 70-90% ???

Thanks all !!!

thenlee by Not applicable
  • 1439 Views
  • 3 replies
  • 0 Likes

Resolved! How does dns-proxy in Vsys Configuration works?

I'm trying to use different dns server for FQDN objects in each vsys.

My platform is PA5020 v4.0.9., and I can see dns-proxy field in vsys creation window.

According to the explanation in '?' help page, it says something about interface.

Which interface

...

emr_1 by L5 Sessionator
  • 1875 Views
  • 2 replies
  • 0 Likes

Resolved! Rogue/Fake Antivirus Malware detection?

I was wondering if there is any way to detect the Rogue/Fake Antivirus Malware that is making its way around the internet?

A couple in paticular are Internet Security 2010, Antivirus Live and Advanced Virus Remover.

Thanks,

D

PA 500, Hairpin routing and front ending certs

I am trying to implement a Exchange 2010 setup and the consultant is asking if the PA can handle HairPin routng and if it can front end the certs for the Exchange systems. I haven't a clue and google results were less than clear,  so am turning to th

...

u7483 by Not applicable
  • 1409 Views
  • 1 replies
  • 0 Likes

create an application to replace a service

I'm converting a Check Point firewall to PAN. they have multiple rules where ping and other user-defined services are participating. Can I create an app with the port of those services so I can have all in one rule? Do you see any problem wit that?

Top Solution Authors
Top Liked Authors