General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Policy - Tag Column

Hi - does anyone know what the maxium number of Tags that can created for use in the Tag column in the Policy tab?

fmd by L3 Networker
  • 2099 Views
  • 8 replies
  • 0 Likes

Normal CPU/Disk Usage

Hi All;

In 4.0 it looks like the dashaboard doesn't show disk usage anymore, will that come back? How does the disk manage when its almost full?

Also with the CPU and RAM as well what is the average expected from a device sized properly, we consistentl

...

amansour by L4 Transporter
  • 1001 Views
  • 1 replies
  • 0 Likes

Newbee Needs Help

I am trying to setup outlook web access (Exchange 2010) for my network.

Here is what I have done thus far:

Object -> Addresses: Setup the internal address of the exchange server.

Policy -> Security: Created a rule with the following data (Name: owa - So

...

URL Sync to Peer for Active-Passive Cluster

Hi All,

So title says it all. I have a client with twin 4050's running in an active-passive cluster, that we have recently enabled

URL filtering on.

Annoyingly, there is no sync that we can see between the active and passive for the URL database, from i

...

KatanaNZ by L3 Networker
  • 3120 Views
  • 5 replies
  • 0 Likes

Resolved! PAN on trunked interface

I have talked about this setup before but I am having issues getting it to work in the lab. I would like to position the PAN "inline" between two cisco switches that are connected via a trunked interface with specific allowed vlans. I would like to b

...

PAN Layer 2 and STP

I have a customer that is using RPVST+ on the core of their network for redundant Layer 2 connections to their servers. Using spanning tree link costs they load balance the trunked connections to their core switch. They have asked if it were possible

...

Resolved! Database Extraction "PA 2020"

How I can extract the entire database of PA2020? I need to generate other reports with another system, please help!
ps:
and try it with the command "export log-file tftp *" does not give me what I need, I'm only one month of the five I have, the disk

...

Question about Security Policies and NAT

I'm working on developing my rule base prepping for implementation.  I'm noticing that alot of my inbound rules, ie:

Where the destination in an address object with my internal IP.  Now of course I have NAT rules to statically NAT the traffic inbound

...

dshue by L2 Linker
  • 1294 Views
  • 2 replies
  • 0 Likes

HA Active Active Setup

Hello,

We have two PAN-2020 appliance running with 4.0.5 and setup for active/standby HA. We would like to change our HA setup to active/active instead of active/standby. In our existing setup we have two interfaces configured for virtual wire and on

...

ahmedf by Not applicable
  • 1893 Views
  • 1 replies
  • 0 Likes

Resolved! TAP mode and user ID

Hello all.

quick question.

during the demo(TAP mode), customer want to map IP to user id.

in the TAP mode,   can I integrate w/ LDAP to retrive the user id?

in the doc-1445. transparent authentication only support AD. and interactive authentication can s

...

willstech by L3 Networker
  • 1906 Views
  • 2 replies
  • 0 Likes

SSL VPN over Dial-Up Speeds

YES, you read it right!  DIAL-UP speeds!  Unfortunantly we have some users that have old 1x and iDEN air cards that are probably slower than some Dial-Up speeds.  It is what it is I suppose.  Our old IPSEC vpn (Check Point) client really didn't compl

...

dshue by L2 Linker
  • 1338 Views
  • 2 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors