General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 352 Views
  • 0 replies
  • 2 Likes

How do you duplicate a device group

Mite seem like a simple question, but it seems you can only clone/duplicate the security rules within the same policy you cloned/copied it from.  Im trying to create a new device group and use existing security rules from an existing device group wit

...

jessiea by Not applicable
  • 6327 Views
  • 5 replies
  • 0 Likes

How to logout users from CLI and Web UI

Hi was wondering if we can logout users who are authenticated from Radius and local database if we have super user permissions

Also will i be able to clear commit which is already in progress because if i stop a commit and try commit at a later time i

...

srikanth by Not applicable
  • 20036 Views
  • 4 replies
  • 0 Likes

Apps & Threat update link not visible

Hello Guys,

when I was about to update the latest Antivirus, Applications and Threats (Device>Dynamic Updates) of  the box, I noticed that the update link for Applications and Threats are not visible. I tried to restart the box but still the link did

...

Zone Assignment

In PanOS, how are the zones established for inbound rules?  I have a bi-directional NAT created for a device located in a DMZ.  I also have a security policy allowing traffic to the NAT address from the untrusted zone (Internet).  When traffic comes

...

jpvh1234 by L0 Member
  • 2482 Views
  • 1 replies
  • 0 Likes

Duplicate Address Detection (DAD)/Gratuitous ARP

hi!

I was wondering if a PAN firewall performs Duplicate Address Detection (DAD) by sending ARP Request packets for IP addresses on an interface once it is connected to a switch? does it do it only for the primary address on an interface or does it do

...

santonic by L6 Presenter
  • 4660 Views
  • 1 replies
  • 1 Likes

Resolved! Reset ports to default settings

Hi,

How do I set the port to default settings. Once you configure a port, if you don't use it still shows as Red color. I would like to set it to default set where the color is gray.

Thanks in advance.

New User-ID agent 5.0.1-2

In User-ID Agent Release Notes is mentioned:

Addressed Issues 5.0.1

The following issues have been addressed in this release:

• 46473 – Not able to install the terminal services agent version 5.0.0 on a Windows Server 2003 R2 system. Support has been ad

...

Resolved! Global Protect SSL VPN and 802.1x

I currently have 802.1x setup on our switches and it works very well for us in our environment. It allows our users to roam around the office and basically plug in wherever they want and they always live on the same VLAN and always have access to the

...

Resolved! Subnetted traffic issue

I am running my PA-2050 on layer 2. The system runs great except for one issue. My wireless zones are subnetted. The PA can see the subnetted traffic, allows it to go out, but the packets get lost on the return back. I know there is nothing wrong wit

...

Global Protect fail-over in a single PA with ISP failover

Hi everyone - I have a customer who is looking to have GlobalProtect fail-over along with ISP fail-over in a single PA cluster.

Currently I am using PBF and a single VR for theI SP failover  and it works fine EXCEPT  when it fails over there is no GP

...

dbrenipc by L3 Networker
  • 2329 Views
  • 1 replies
  • 0 Likes

Resolved! Moving from 4.0 to 4.1 (affect on NetConnect users)

I'm considering moving to the latest 4.1 release from 4.0.11, but I have a large number of SSL VPN users using the NetConnect client 1.3.2.  I believe they would have to use a Global Protect client once the OS is upgraded to 4.1.  What would be the b

...

iguarino by L0 Member
  • 2895 Views
  • 3 replies
  • 0 Likes

Resolved! Internet facing interface dhcp-client inbound NAT

So,

PAN 5.0.1

eth1/1 - Layer 3 / Internal network 10.0.0.1/24

eth1/2 - Layer 3 / External network - DHCP assigned IP adress from ISP.

Outbound NAT works. Inbound NAT i simply doesnt get to work..

Used the cli command test nat-policy-match from Untrust s

...

criiser by Not applicable
  • 3705 Views
  • 4 replies
  • 0 Likes

Building ISP's Network?

My ISP gave me 2 networks.

My 64 IP one (main-net) and then a 2 IP one (link-net)that connects back to the ISP Box.

I know I could make this with a simple router/ Layer3 switch.

I have just started testing with our PS-2050.

Is there a simple way to do th

...

  • 23675 Posts
  • 108 Subscriptions
Top Liked Authors
Labels