General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! ip adress of mgt

hello ,i forgot the ip adress of my mgt interface, so i can't reach itcould you tell how i can figure it outthank's

atelcom by L3 Networker
  • 2910 Views
  • 1 replies
  • 0 Likes

Resolved! FQDN Table in CLI

Hi,does anybody knows what is the meaning of CLI output for > request system fqdn show, that states for fqdn object ...Not usedSome fqdn objects that i've configured, PAN has resolved, but for some there is output Not used. I'm sure that those fqdn's are in use. For example when i use nslookup those get resolved.thnx,

agrgic by L1 Bithead
  • 6234 Views
  • 1 replies
  • 0 Likes

Resolved! Problem Access Routes with VPN

Hi everybody.I've got a problem with my configuration of VPN for remote clients,If I configure only one access route (see picture1), I obtain the following routing table and everything works well:As VPN client we are using vpnc from a Linux distribution (the same problem happens with cisco VPN client from windows computers)If I configure only on...

Resolved! Globalprotect and Linux

Hi everybody.Is it possible to use the client GlobalProtect on a Linux operating system? Is there a "workaround" or some free Linux VPN client that can be used for it?Thank you very much.

Best way of restricting web access?

Hi there,Have a "interesting" problem. Scope* Clients are not to be allowed access to the internet. Restrict and control with firewall.Scope creep*Clients need access to Google to do a search, click on any links in that search. They will search for people/locationHow can I best isolate and protect these clients web access? I've been trying to fi...

Ante by Not applicable
  • 3499 Views
  • 4 replies
  • 0 Likes

Resolved! User-ID agent v.4.1.4.3

A question about using palo alto with the user-id agent v.4.1.4.3I get complain from the administrators of Window env. They see that the user-id agent doing many logs on all PC. They are store in the Events>Security logs on each PC.Since the installation of the agent, all PC logs many stuff in the computer event> security tab. All of t...

Configuring QoS settings multiple egress interfaces

We currently have our PA-5050 configured with two vWire ingress and two vWire egress interfaces (one trust and one untrust zone mapped to vWire-1 and one trust and one untrust zone mapped to vWire-2). In this configuration is it possible to configure QoS? I see that when configuring QoS on the interface you only have the option to select a singl...

wfleitz by L0 Member
  • 3596 Views
  • 3 replies
  • 0 Likes

Resolved! NAT and GRE

Hello.I have to do NAT for GRE protocol and as i've read here in knowledgebase that can only be done with static NAT without specifiying ports. However the customer also has other services on same public IP address, like SMTP and DNS.Would this work?Rule1 - Public_address -> ports 53TCP/UDP -> NAT -> private_server1Rule2 - Public_addre...

santonic by L6 Presenter
  • 4082 Views
  • 4 replies
  • 0 Likes

Resolved! Detecting Flame exploit

It looks like the Snort folks have a signature for Flame, does PAN? If not, when is it coming? The CTOs will be asking if we are safe...http://vrt-blog.snort.org/2012/05/flame-malware-targeted-attacks-and-you.html

Dropbox Signature Change?

Hello,We have for some time now blocked the use of Dropbox (as an app) and only allow a few users access, based on a domain group. Over last couple of weeks have noticed activity where non allowed users are able to access the application. In my initial investigation, it appears the sessions are not falling into the "dropbox" application object ...

MGoodnow by L4 Transporter
  • 5479 Views
  • 5 replies
  • 0 Likes

Subnet entry in Custom URL Category

If I were to enter multiple subnets (ex: 218.65.30.0/24) as entries in a Custom URL Category, will those entries been seen as the entire subnet or will they be seen as a URL (http://218.65.30.0/24)? I ask this because I'm looking at creating an outbound block/deny policy based off custom URL categories and I want to make sure I am actually bloc...

sconley by Not applicable
  • 3168 Views
  • 1 replies
  • 0 Likes

Resolved! Graph Realtime bandwidth consumed by each application

Hello,Is it possible to have a graph with the Realtime bandwidth consumed by each application in VWIRE mode ?I saw these: http://www.paloaltonetworks.com/products/QoS.htmlbut for applications, there is only a chart...Maybe is there a way to make it with the splunk tools?Regards,

Inbound NAT - Please advise

Hi,Consider the following:All traffic (0.0.0.0/0) is NAT'd as 1.1.1.1 (public)The exchange server has an inbound NAT of 1.1.1.2 (public) > 192.168.1.1 (private).Now when the exchange server makes a connection to the outside world will it be seen as 1.1.1.1 or 1.1.1.2?If it is 1.1.1.1, then I must make a reverse NAT rule for all my inbound VIP...

Resolved! Maximum Rows In Policy Editor

I am currently working within Panorama and for one device group there are over 533 rules and editing them is terribly slow. I found this document and one of the fixes mentioned was limiting the row count in the policy editor to only 100. I would love to do that but I can't seem to find where in the interface I specify this.Any help would be v...

  • 24392 Posts
  • 123 Subscriptions
Top Solution Authors
Labels