General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 194 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 877 Views
  • 0 replies
  • 0 Likes

Resolved! Dropped Sessions

I've a strange problem. My PA (5.0.1) randomly kills all sessions. This is causing me problems as all internet traffic times out during these issues.

You can see from the show system statistics screen dump below that there is 0 packets and 0Kbps thro

...

djrodb by L3 Networker
  • 3386 Views
  • 1 replies
  • 0 Likes

Resolved! Different block pages based on policy

Is there no way to have different block pages appear per policy ? We have distint needs for a few different groups of users. We need one URL block page to come up when one policy is triggered and a different block page when another policy is triggere

...

jhickey by L3 Networker
  • 4542 Views
  • 3 replies
  • 0 Likes

User-Id Agent and "login id attribute name"

Hi

In one of my customers (Pan-OS v4.0.7) with eDirectory I use User-Id Agent (v3.1.2) to get user IP addresses. In that directory I used the "Login Id Attribute Name" to specify 'CN' as the attribute to use for user account because many users didn't

...

emaneiro by Not applicable
  • 3982 Views
  • 5 replies
  • 0 Likes

global protect ssl-vpn and accessing the internet - v4.1

I have built access via global protect for remote users and all is working fine except that they cannot access the internet.

1. DNS is assigned (internal)

2. All internal network resources are accessable

3. accessable routes includes 0.0.0.0/32

Any idea

...

Marcum by Not applicable
  • 3866 Views
  • 3 replies
  • 1 Likes

sizing HA links

Hi all,

I would like to know what the requirements are on HA1, HA2 and HA3 links in an active/active deployment. Is there a formula to calculate this ?

Activesync and User-id

I recently determined that activesync clients do not leave any traces in the Event logs when they get their email form Exchange 2007.  Problem is I was banking on this as I was building our network.

Do Activesync clients with Exchange 2010 leave event

...

BobW by L4 Transporter
  • 3562 Views
  • 4 replies
  • 0 Likes

Resolved! Mac Users and User-ID

Is there a way to identify Mac users without turning captive-port on and having them login to get to the web?  We are willing to do a mac address reservation so the user gets the same IP.  We would really like to put this in without any real changes

...

expoffsol by Not applicable
  • 6371 Views
  • 7 replies
  • 0 Likes

Mapping users with user agent

Hi All,

to identify users , i  installed user-id-agent in AD, and then i added the user-id in palo alto

the status of the user agent in paloalto is connected, so when i tested the user agent in policies, i can apply just for group that i selected

but i

...

atelcom by L3 Networker
  • 7303 Views
  • 9 replies
  • 1 Likes

How PAN deal with multicast traffic on Layer 2 mode.

Hello guys.

I could not find any information of multicast processing on layer 2 mode for PAN. I wonder about that how do PAN deal with multicast traffic such as HSRP, VRRP and OSPF (that use multicast addressing) on layer 2 mode.

I believe that PAN wou

...

ttongfly by L3 Networker
  • 3124 Views
  • 1 replies
  • 0 Likes

Resolved! DHCP client on wan interface - ip cleared

The wan interface on a PA-200 (PANOS 4.1.6) is set up as DHCP client, receiving ip-address from the ISP. When the lease period is out, the ip address is cleared with this message in System Log:

DHCP client cleared IP address on interface:ethernet1/1 d

...

einar by L1 Bithead
  • 14149 Views
  • 13 replies
  • 0 Likes

Resolved! PA200 Dynamic DHCP Client Issue

I am running a PA200 at home with Verizon FiOS.  Currently the software is at version 4.1.6.  I currently have everything running correctly, but the DHCP lease for the WAN expires every 2 hours.  I watched the interface this evening to see what is ha

...

ccaruso by Not applicable
  • 4192 Views
  • 2 replies
  • 0 Likes

Resolved! UserID and multiple VSYS

From what I understand from the 5.0 documentation so far, each VSYS needs to be setup with separate userID agent configurations. There is no sharing of user-ID information between virtual systems. Is this assumption correct? I am seeing very inconsis

...

  • 24011 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Authors
Labels