General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 241 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3554 Views
  • 2 replies
  • 14 Likes

Resolved! LDAP not working

I am trying to get my PA to talk to an LDAP server.  I set up the LDAP server as described in the documentation User Identification Tech Note - PANOS 4.1.pdf) but it never is able to connect.  I get this error:

ldap cfg mydomain failed to connect to s...

kjh by Not applicable
  • 2861 Views
  • 4 replies
  • 0 Likes

GlobalProtect Portal has a problem with DHCP Ext interface

I'm hoping that someone from PAN Support or Development can answer this question.  I have been fighting with this for weeks now and have narrow the problem down to the GP Portal service.

Scenario

I have a PA-200 in my lab with two Layer3 interfaces def

...

jwolach by L4 Transporter
  • 2377 Views
  • 5 replies
  • 0 Likes

Need help with Enterasys NAC/NMS and PaloAlto UserID

I am trying to make the Enterasys/PaloAlto integration from this doc work:

Running 4.1.6 code on the PA-4020 and the associated UserID agent on a single server.  I followed the directions exactly but see no evidence info is making it to the UserID age

...

keklund by L1 Bithead
  • 1735 Views
  • 1 replies
  • 0 Likes

ARP Cache Limit on PA-500

Hi PAN,

When is that the PA-500 will have an ARP cache limit of 1000?  I was promised during the launch of version 4.1 that the ARP cache limit had been increased to 1000 from 500 just to realise that it never happened. 

I am desperately waiting for s

...

Resolved! Renaming a VSYS

Should I expect any issues if I rename a VSYS? I assume it should rename all VSYS names in the config where applicable?

jambulo by L4 Transporter
  • 4008 Views
  • 4 replies
  • 0 Likes

Traffic log database exceeds alarm threshold

Hello,

This is not very clear on Palo box, since months we have issue that every
week we have alarm indicating that the log was exceeded 80 of the quota, in
fact we want to log all traffics and don’t want to disable logging on some
rules, I monitored dur

...

BSadozai by L2 Linker
  • 7483 Views
  • 6 replies
  • 0 Likes

Public IP's and DMZ

I am currently setting up a DMZ using a class C address range provided by my ISP. So far I have an untagged interface built connected to a switch and a VR built.

Example:

I have the subnet 10.10.10.0/24

I set interface G1/2 with address 10.10.10.1/24

I

...

mgross by Not applicable
  • 2621 Views
  • 3 replies
  • 0 Likes

Resolved! Issues installing the Terminal Server Agent on Server 08R2

I have this same issue at two separate clients. I installed the agent under elevated priveledges but once it is installed an I open it, I cannot click on any of the menu options. If I click on Restart Server, it says "query service fails with error5"

...

SDorsey by L4 Transporter
  • 2866 Views
  • 4 replies
  • 0 Likes

Ethernet link speeds

I am curious what the recommended link speed settings for the various ports. The external port has to be hard speedcoded to 100/full as that is required by the ISP.  The internal connection is to a gig core switch at auto detect (1000/full).

Should th

...

BobW by L4 Transporter
  • 4136 Views
  • 5 replies
  • 0 Likes

Site to site VPN terminating in DMZ possible?

Is it possible to setup a site to site VPN and have it terminate on the DMZ interface rather than the WAN interface? We have numerous remote locations that are running small sonicwall firewalls and connecting back to our corporate site. They currentl

...

  • 24169 Posts
  • 100 Subscriptions
Labels