This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 460 Views
  • 0 replies
  • 2 Likes

Resolved! PA-500 IPsec VPN

Hi all,

I have a general VPN tunnel question.. Was do the status lights on the IPsec tunnel indicate (see below)? I understand green is goo and red is bad, what I don't know is why is there two? I can surmise that the second one is the "IKE Gateway/Sa

...

Resolved! BGP in a cluster deployment

hi!

I was wondering how to use BGP in a HA active/standby deployment? a common design with floating IP addresses (HSRP/VRRP like) is to use two additional switches to connect to two upstream ISPs so a link failure doesn't result in an active member ta

...

santonic by L6 Presenter
  • 9055 Views
  • 6 replies
  • 0 Likes

Resolved! Site to site VPN issue

Folks.

I have an issue with some site-to-site configurations that is bugging the cr*p out of me, and I thought I'd post it here.

I run some site-to-site VPN's (Palo Alto to Cisco 887 routers) which come up fine, but which seem to defy *all* configurati

...

darren_g by L4 Transporter
  • 2576 Views
  • 1 replies
  • 0 Likes

Resolved! Moving from Global Protect 1.1.6 -> 1.1.7

I believe moving away from 1.1.6 now requires a trusted certificate?  I have about 600 remote users on 1.1.6.. trying to get to the latest rev (1.2.1) without any user interruption.  I tested with our QA firerwall and I am getting certificate errors.

...

rrau by L3 Networker
  • 2188 Views
  • 2 replies
  • 0 Likes

Resolved! Maximum number of virtual wire on PA 500

Hi all,

   I try to found the suitable PAN model for support my environment.  I design PAN to support 2 virtual wire and 1 NAT network. I'm not sure that PA 500 will support 2 virtual wire. I prefer throughput and session number that support by PA500

...

Resolved! Security/App-ID Bypass?

Can someone within Palo Alto Networks comment on this video?  This seems like it could be an easy attack vector...

Palo Alto Networks Security Bypass - YouTube

kellenc by Not applicable
  • 3789 Views
  • 3 replies
  • 0 Likes

Resolved! Maint partition is empty

Hello,  I have two PA-2020 in an HA Active Passive scenario.  Just looking around in my CLI, I noticed that the maint partition is empty on one of my nodes, but has an older 4.0.3 on the other node.

Partition     State         Version

-----------------

...

cenders by L3 Networker
  • 3082 Views
  • 1 replies
  • 0 Likes

Upgrading 4.07 to 4.1.2 in HA environment

The following change log may be useful to all of you wondering how an upgrade goes in an HA active-passive pair. It would be nice if PAN support were to put this into a tech note. Each step is essentially a check or an observation from top to bottom.

...

Resolved! HA recovery advice after upgrading Active first

Being a newb and never having updated my Active/Passive HA pair, I took the 4.1.10 release notes at face value. There is no mention of special provisions for HA upgrades so I clicked "install" and now have a 4.1.10 Active member and a mismatched 4.1.

...

MCmgt by L2 Linker
  • 2980 Views
  • 2 replies
  • 0 Likes

Reports - i cant see source ip complete.

Hi,

I have a PAN-2050 (Software version 4.1.5) and i have configured a predefined report with diferents tops (top 5 connections, top 5 destinations, top 5 applications). The problem is that when i dowload and see the PDF with the report i cant see the

...

Agentless User-ID not processing ingore-user list

I've been working on trying to configure all the firewalls with the Agentless User-ID setup but despite several attempts to enable it I cannot get it to ignore users.

I establish a session and enter config mode and type in the command set user-id-coll

...

jfarm by L1 Bithead
  • 4503 Views
  • 6 replies
  • 1 Likes

Resolved! issue downloading release notes

I've been having issues downloading release notes regularly. The download doesn't even start, no matter if initiated from the support page or from the PA UI (Device-Software).

Not a policy issue...

Anyone else noticed that ?

dieter_b by L4 Transporter
  • 1909 Views
  • 2 replies
  • 0 Likes
  • 23704 Posts
  • 110 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks