General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 458 Views
  • 0 replies
  • 0 Likes

Resolved! Multiple DMZ setup question

Hello,

I'm looking to create 2 dmz's on the PAN as separate networks.  This is how I have it envisioned and would appreciate any feedback.

1. configure two layer 3 interafaces with GW IP assigned
2. assign security zone to each interface
3. attach each i

...

iguarino by L0 Member
  • 4580 Views
  • 3 replies
  • 0 Likes

Resolved! PA 500 cluster synchronization failure

Hello,

I've a problem with a cluster of PA500 running PANOS 4.1.8.

Config File synchronization is not working between members.

After a config change is done on the master, the following error message appears in the log file of the passive member:

HA Grou

...

licenselu by L4 Transporter
  • 6518 Views
  • 11 replies
  • 0 Likes

Applications within SOCKS

Hi,

When deploying a Palo Alto inline between a client and a SOCKS proxy that client uses, will it be able to recognize the applications accessed over the SOCKS Proxy? Or will you only see the SOCKS application being used by that client?

Thanks

S

dinges by L0 Member
  • 5159 Views
  • 2 replies
  • 0 Likes

vLAN clarification & help

At my place of employment we've implemented a couple PAN-2020s in HA and have defined about 6 to 8 networks 1 attached to 1 physical port in a L3 configuration. We have cables running to a switch that each are untagged with different vLAN ID's (LAN =

...

cmateam by L3 Networker
  • 4735 Views
  • 5 replies
  • 0 Likes

Single Mode Fiber GBICs ?

I need to purchase some Single Mode Fiber GBICS for my PA-4020's. They are really expensive. $750 a piece. Does anyone know if Cisco GBICS will work with the 4020s ? It's hard to justify spending thousands of dollars when I have a stack of Cisco SFP'

...

jhickey by L3 Networker
  • 2543 Views
  • 1 replies
  • 0 Likes

Log file quota when is reach 100%

Hi,

Can i know when the log space uses 100% of the quota,  will delete the old log to recycle to space, or do PAN just delete portion of the log? if it  only delete a certain percentage of the log , how many percent  of it  will be removed? or it dele

...

jeffhooi by Not applicable
  • 5930 Views
  • 5 replies
  • 0 Likes

How to disable App-ID for all applications

Hello,

I've got two VWIRE pairs that see some duplicate traffic. 

Basically:

VWIRE1 sees LAN to Internet

VWIRE2 sees LAN+DMZ to Internet.

What I'd like to do to free up some resources is disable inspection on one of those pairs for traffic when source I

...

abarnett by L0 Member
  • 6706 Views
  • 3 replies
  • 0 Likes

Resolved! Feature to test Firewall rule logic with test packets?

Im setting up some rules right now which 'should' just work as they are fairly straightforward.

Is there a feature that will let me state a certain packet with certain info is comming in on an interface and the FW can tell me what rules it hits and wh

...

choff123 by L3 Networker
  • 2539 Views
  • 2 replies
  • 0 Likes

Resolved! Since update problem with a particular site

Hi All,

I have a rather strange thing happening. Tuesday this week I did the latest PA updates (Software, URL, Antivirus and The Application/threat). It all seemed to go fine, but I have been informed that since the updates our users are having proble

...

JRussell by L3 Networker
  • 5180 Views
  • 7 replies
  • 0 Likes

Address object limits / Panorama ...

Heya,

Two related questions regarding address objects and current limits....

1) Is there a command to see the number of address objects currently on a specific firewall (whether they're local objects or Panorama objects)?  I'm familiar with how to view

...

Resolved! Upgrade caused AD admin authentication to fail

I upgraded my passive unit from 4.1.6 to 4.1.8 after the reboot I can't login using my domain credentials.  I still can with the active unit still on 4.1.6 and I can login with the local admin account.  Everything is setup the same, and LDAP lookups

...

rgreens by L2 Linker
  • 2966 Views
  • 2 replies
  • 0 Likes

Import global sign root CA

Hi,

I'am setting up global protect. The customer has a global sign certificate to use with the Global Protect. But I have to select the root ca in the Global Protect configuration. On the website from Global sign I can copy the certificate but can I i

...

4.1.5 and 4.1.7 Upgrades (Including hotfix 2)

So, I recently ran into an issue and I wanted to try to see if I could get some feedback from users to see if anyone else had something similar happen to them.

We recently ran into an issue where our active firewall tanked and transferred responsibili

...

emortaro by L0 Member
  • 7453 Views
  • 16 replies
  • 0 Likes

Resolved! URL categories not being resolved

Hi,

Our PAN 2020 is setup for URL filtering. After a reboot  we're now getting excessive matches for the "unknown" category. It appears URLs are not looked up on "Dynamic DB" and "Cloud DB".

Ex:

(active)> test url www.nds.org.au

www.nds.org.au society (D

...

BTS_MS by L2 Linker
  • 8737 Views
  • 9 replies
  • 0 Likes

Resolved! User Activity Report

I was wondering if there was a way to either use the Custom reports to look exactly like the User Activity Report, and how would I script that or can I fit multiple users into the User Activity Report? This is what I want the end result to be, have

...

dgunsolus by Not applicable
  • 4085 Views
  • 4 replies
  • 0 Likes
  • 24076 Posts
  • 116 Subscriptions
Labels