General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 1874 Views
  • 1 replies
  • 10 Likes

Resolved! Outbound NAT pool question

For reasons I will not go into here, I want to take outbound traffic from secure to unsecure and convert it from a many to 1 NAT rule to a many to many NAT rule.   I have 1024 public IP addresses.  I want to take a section of my network and provide a

...

EdwinD by L3 Networker
  • 1963 Views
  • 2 replies
  • 0 Likes

Resolved! "Stupid" Custom URL Filtering Question

If I want to block all derivations of "acme.com" in URL filtering how should I format the domain in my blocklist/custom blocking category?

If I add "acme.com" then that doesn't appear to match "www.acme.com", but if I add "*.acme.com" then it doesn't

...

apackard by L4 Transporter
  • 2679 Views
  • 5 replies
  • 0 Likes

Resolved! GlobalProtect 1.1.7 Subject Alternative Name (SAN)


I'm reading the changes to default behavior with certicifcates in the new GlobalProtect 1.1.7 and I don't know what the Subject Alternative Name (SAN) point is referring to. I generate all the certicates from the PAN firewall for the GlobaProtect aut

...

frypan by L0 Member
  • 2195 Views
  • 1 replies
  • 0 Likes

url field in cutom log format ?

Hi all,

I'm trying to customize the log forward to my Syslog.

In syslog server profile / custom log format / threat, I definitely not succeed in finding the right field where visited website urls are stored !

If somebody have an idea ?

Regards,

Karl

Karl by L1 Bithead
  • 3123 Views
  • 6 replies
  • 0 Likes

Resolved! GlobalProtect, enabling ipsec from outside

Hi all,

I am trying to enable Global Protect. So far I've been able to connect the client to the firewall successfully. However the remote VPN client cannot talk to inside hosts. But the inside hosts can ping the remote client.

After troubleshooting, I

...

BTS_MS by L2 Linker
  • 3312 Views
  • 4 replies
  • 0 Likes

Resolved! Harddisk Diagnostic Run test

Hi All,

Have you guys any experience to do harddisk diagnostic test on PA5020? if yes, how long i should wait? because i run the box almost 4 hours but till now no response from the box. there is no progress indicator so i dont know whether it still r

...

el by Not applicable
  • 5152 Views
  • 5 replies
  • 0 Likes

False Positive Virus

We use Total Defense for an antivirus program.  It appears that one of the executable (both the 32 bit and 64 bit versions) in the latest update is being flagged as a virus, Virus/Win32.WGeneric.bnrd, the other executable files are fine.  When I look

...

rgreens by L2 Linker
  • 2717 Views
  • 3 replies
  • 0 Likes

Resolved! Problem with Captive Portal authenticated by User AD

Hi all,

I got a problem when I use captive portal authenticated by user AD

- First, I install Palo Alto User Agent on AD machine, this job worked fine. On the traffic log of PA, I saw User AD.

- After that, I configure captive portal on PA and it works

...

nguyenma by Not applicable
  • 3341 Views
  • 4 replies
  • 0 Likes

Resolved! Multiple DMZ setup question

Hello,

I'm looking to create 2 dmz's on the PAN as separate networks.  This is how I have it envisioned and would appreciate any feedback.

1. configure two layer 3 interafaces with GW IP assigned
2. assign security zone to each interface
3. attach each i

...

iguarino by L0 Member
  • 3102 Views
  • 3 replies
  • 0 Likes

Resolved! PA 500 cluster synchronization failure

Hello,

I've a problem with a cluster of PA500 running PANOS 4.1.8.

Config File synchronization is not working between members.

After a config change is done on the master, the following error message appears in the log file of the passive member:

HA Grou

...

licenselu by L4 Transporter
  • 4734 Views
  • 11 replies
  • 0 Likes

Applications within SOCKS

Hi,

When deploying a Palo Alto inline between a client and a SOCKS proxy that client uses, will it be able to recognize the applications accessed over the SOCKS Proxy? Or will you only see the SOCKS application being used by that client?

Thanks

S

dinges by L0 Member
  • 3335 Views
  • 2 replies
  • 0 Likes

vLAN clarification & help

At my place of employment we've implemented a couple PAN-2020s in HA and have defined about 6 to 8 networks 1 attached to 1 physical port in a L3 configuration. We have cables running to a switch that each are untagged with different vLAN ID's (LAN =

...

cmateam by L3 Networker
  • 3507 Views
  • 5 replies
  • 0 Likes

Single Mode Fiber GBICs ?

I need to purchase some Single Mode Fiber GBICS for my PA-4020's. They are really expensive. $750 a piece. Does anyone know if Cisco GBICS will work with the 4020s ? It's hard to justify spending thousands of dollars when I have a stack of Cisco SFP'

...

jhickey by L3 Networker
  • 2051 Views
  • 1 replies
  • 0 Likes

Log file quota when is reach 100%

Hi,

Can i know when the log space uses 100% of the quota,  will delete the old log to recycle to space, or do PAN just delete portion of the log? if it  only delete a certain percentage of the log , how many percent  of it  will be removed? or it dele

...

jeffhooi by Not applicable
  • 4378 Views
  • 5 replies
  • 0 Likes
Top Liked Authors