General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 449 Views
  • 0 replies
  • 2 Likes

Nike Plus

I have a Palo Alto 2050, software version 4.1.6

I have a user behind my Palo who can't log on to his Nike+ account. When he attempts to log on he gets redirected back to the sign on page continually. We've tested this outside the firewall and he has n

...

Decryption

Does the PAN still inspect secured traffic for all threats if it's not decrypting it?

jorge by Not applicable
  • 3663 Views
  • 7 replies
  • 0 Likes

Creating user activity report with all the username in AD

Hi All

I am trying to create a report that will display all my users in my active directory and their activities, the current user activity report only allow a single user. I have also try using the custom report creation but there is no tab for user

...

RIS by Not applicable
  • 2243 Views
  • 2 replies
  • 0 Likes

How to route internet traffic through a tunnel interface

What's the best way to route all internet traffic (except IPSec VPN tunnels) through a IPSec VPN tunnel interface?

We want to have a single point where all internet traffic passes through and uses the same policies for web and applications.

helge by Not applicable
  • 5052 Views
  • 5 replies
  • 0 Likes

Resolved! Panos 4.1 and new pan agent

i tried panos 4.1 and new agent(4.1-0-43) with active directory domain (but a way agent successfuly connect to active directory domain and showing active directory users)...i have trouble panos 4.1 when pa box try to connect pan agent i see below

...

lildeniz by L3 Networker
  • 2909 Views
  • 4 replies
  • 0 Likes

Resolved! Round Robin NAT?

Hello,

I'm running PANOS 4.0.11 and I'd like to be able to set NAT to round robin between 2 servers in the DMZ.  We would have a single public IP round robin NAT'd to two internal IPs.  Is this possible on 4.0?  How would I accomplish this?

Thanks,

Ian

iguarino by L0 Member
  • 3108 Views
  • 3 replies
  • 0 Likes

syslog from PAM OS 3.1 to 4.1

Hi,

I migrated our PAN FW from 3.1 to 4.1 and there is some more fields on TRAFFIC and THREAT syslog format.

With 3.1, using syslog-ng, I got:

Sep 27 00:00:35 giacometti-2 00: 00:35,0003C100873,TRAFFIC,end, etc ...

Since by defualt in 4.1 there is more f

...

Resolved! Software Upgrade Question

When upgrading from PanOS 4.1.6 to 4.1.7, will the device fail over without issue as it installs the new software or will I have to schedule an outage?  Thanks in advance.

-Matt

mcw015 by Not applicable
  • 3879 Views
  • 5 replies
  • 0 Likes

incomplete

Hello,

I need urgent help. I dont know why but from one moment during the day is one website unreachable from our internal network(only this website). There was no change in configuration PA500, no changes in web server configuration. From outside of

...

oitspa by L2 Linker
  • 6874 Views
  • 15 replies
  • 0 Likes

Resolved! Commit not showing who did it in system log

Dears,

I have a serious issue, yesterday the internet became down suddenly, when i check the firewall, i find out their is big changes happened on the firewall without us knowing, no one have change anything, when i went to the system log to see the

...

yousef by Not applicable
  • 4747 Views
  • 6 replies
  • 0 Likes

Resolved! IPSEC VPN implementations

Hi this is one the sample output that i captured when i established a VPN tunnel between 2 PA firewalls.

As far as my knowledge goes Ike SA's are bi directional and IPSEC SA's are uni directional correct me if i am wrong.

But here i see 2 SA's in Phase

...

srikanth by Not applicable
  • 3276 Views
  • 4 replies
  • 0 Likes

Resolved! Re: Upgrade Process Using Panorama

Hi do we need to activate the devices first time from Panorama is that mandatory?

I already activated the devices and now when i try to add auth codes for rest of the devices its not happening and throwing error saying auth code already used.

Can some

...

srikanth by Not applicable
  • 5307 Views
  • 11 replies
  • 0 Likes

blocking traffic with User-Agent header, ie Mobile

We have a need to block mobile devices from getting to a particular host with active-sync, imap or pop3. From what I have read looking for and blocking traffic based on User-Agent is possible. Anyone ever do this with the PA ?

Thanks,

Justin

jhickey by L3 Networker
  • 2241 Views
  • 1 replies
  • 0 Likes
  • 23703 Posts
  • 110 Subscriptions
Top Solution Authors
Labels