General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 330 Views
  • 0 replies
  • 2 Likes

Resolved! Different block pages based on policy

Is there no way to have different block pages appear per policy ? We have distint needs for a few different groups of users. We need one URL block page to come up when one policy is triggered and a different block page when another policy is triggere

...

jhickey by L3 Networker
  • 4176 Views
  • 3 replies
  • 0 Likes

User-Id Agent and "login id attribute name"

Hi

In one of my customers (Pan-OS v4.0.7) with eDirectory I use User-Id Agent (v3.1.2) to get user IP addresses. In that directory I used the "Login Id Attribute Name" to specify 'CN' as the attribute to use for user account because many users didn't

...

emaneiro by Not applicable
  • 3704 Views
  • 5 replies
  • 0 Likes

global protect ssl-vpn and accessing the internet - v4.1

I have built access via global protect for remote users and all is working fine except that they cannot access the internet.

1. DNS is assigned (internal)

2. All internal network resources are accessable

3. accessable routes includes 0.0.0.0/32

Any idea

...

Marcum by Not applicable
  • 3622 Views
  • 3 replies
  • 1 Likes

sizing HA links

Hi all,

I would like to know what the requirements are on HA1, HA2 and HA3 links in an active/active deployment. Is there a formula to calculate this ?

Activesync and User-id

I recently determined that activesync clients do not leave any traces in the Event logs when they get their email form Exchange 2007.  Problem is I was banking on this as I was building our network.

Do Activesync clients with Exchange 2010 leave event

...

BobW by L4 Transporter
  • 3335 Views
  • 4 replies
  • 0 Likes

Resolved! Mac Users and User-ID

Is there a way to identify Mac users without turning captive-port on and having them login to get to the web?  We are willing to do a mac address reservation so the user gets the same IP.  We would really like to put this in without any real changes

...

expoffsol by Not applicable
  • 5897 Views
  • 7 replies
  • 0 Likes

Mapping users with user agent

Hi All,

to identify users , i  installed user-id-agent in AD, and then i added the user-id in palo alto

the status of the user agent in paloalto is connected, so when i tested the user agent in policies, i can apply just for group that i selected

but i

...

atelcom by L3 Networker
  • 6848 Views
  • 9 replies
  • 1 Likes

How PAN deal with multicast traffic on Layer 2 mode.

Hello guys.

I could not find any information of multicast processing on layer 2 mode for PAN. I wonder about that how do PAN deal with multicast traffic such as HSRP, VRRP and OSPF (that use multicast addressing) on layer 2 mode.

I believe that PAN wou

...

ttongfly by L3 Networker
  • 2792 Views
  • 1 replies
  • 0 Likes

Resolved! DHCP client on wan interface - ip cleared

The wan interface on a PA-200 (PANOS 4.1.6) is set up as DHCP client, receiving ip-address from the ISP. When the lease period is out, the ip address is cleared with this message in System Log:

DHCP client cleared IP address on interface:ethernet1/1 d

...

einar by L1 Bithead
  • 12878 Views
  • 13 replies
  • 0 Likes

Resolved! PA200 Dynamic DHCP Client Issue

I am running a PA200 at home with Verizon FiOS.  Currently the software is at version 4.1.6.  I currently have everything running correctly, but the DHCP lease for the WAN expires every 2 hours.  I watched the interface this evening to see what is ha

...

ccaruso by Not applicable
  • 3858 Views
  • 2 replies
  • 0 Likes

Resolved! UserID and multiple VSYS

From what I understand from the 5.0 documentation so far, each VSYS needs to be setup with separate userID agent configurations. There is no sharing of user-ID information between virtual systems. Is this assumption correct? I am seeing very inconsis

...

Global Protect 1.2 & HIPS

Hi,

Has anyone seen any problems with GP 1.2 and HIPS, particularly the domain check? Since upgrading to 1.2 the HIPS check we have to determine if the PC is a member of specific domains fails. When we look at the client on a PC (running windows 7) it

...

DaveM by L1 Bithead
  • 4969 Views
  • 6 replies
  • 0 Likes
  • 23670 Posts
  • 108 Subscriptions
Top Liked Authors
Labels