General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone, Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June. This event will cover the following points related to the newly unveiled Zero Trust Network Security: Secure access to the right applicat...

seattle-launch-live-community-r2b-1100x120.jpg
jdelio by Community Team Member
  • 446 Views
  • 1 replies
  • 4 Likes

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 18131 Views
  • 41 replies
  • 32 Likes

PANORAMA COMMIT AND PUSH TO FIREWALL FAILS WITH ERROR

For the last few days, we have been trying to import firewalls into Panorama and have not been successful at it. Panorama firmware is 9.0.7Palo Alto firmware: 8.1.13 Description of issue: During the importing process, I was able to extract the config...

SFP Virtualwire on PA-820

Hi,I configure my device to virtualwire mode with sfp baseT transceiver but it wan't to work (they are red in GUI).When I change to Layer3 mode everything work corectly (change to green).In CLI I can see transceiver.Have you got similar problem or an...

KamWes by L1 Bithead
  • 962 Views
  • 4 replies
  • 0 Likes

MSTP and instances

HI So my reading says to medon't put vlans on instance 0 .. seems like a good idea. now how many instances can I have ?cause I am thinking an instance is like a scoping tool. I would want to put my WAN ports in an instance why would I want my STP re ...

HTTP response code logging

So PAN doesn't log HTTP response code, at least I do not seem to find one under URL Filtering logs, and if it doesn't, then how Palo could claim that it is the replacement of proxy?

rKarki by L1 Bithead
  • 1873 Views
  • 3 replies
  • 0 Likes

Global protect User mapping.

Hi Team, One of our customer wants to restrict "per user-per system" basis.In Global Protect Clients, one user is able to connect through multiple end devices.Can we able to restrict i.e one user should be able to connect through only one end devices...

Syslog Custom Format for Splunk

I'm trying to get the firewall to send before and after change detail to splunk. I've tried various formats in Custom Log Format, but any changes I make result in no logs being sent to splunk. What is the correct format for Custom Log Format when usi...

FIPS 140 and CC enabling

Couple of questions on FIPS. When you enable FIPS140 on a Palo it wipes the device. Can you just reload your last saved?Can a FIPS140 enabled device talk to a non-FIPS device over an ipsec tunnel provided the cyphers are compatible?FIPS disables PAP....

Firewall active sessions age

Does PAN OS has a feature to calculate session age for any active session ? In particular looking from SOC point of view if they want to monitor long time period active sessions used by attackers to compromise security. I am not looking for session t...

PS007 by L1 Bithead
  • 1668 Views
  • 6 replies
  • 0 Likes

Resolved! dedicated log collector setup and licensing

hi,I am preparing a new environment (my plan is for 2x management only + 2x log collector only) and have no experience with dedicated lot collectors yet. Please help me to clarify few things:- log collector for sure needs licenses, are they the same ...