This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Traffic data

we are on 4.1.4, noticed some very odd traffic data from ACC.

1, some internal traffic happened at 9am - 930am, PA ACC showed it happened at 3pm afternoon.

2. about 35G data from one machine out to the facebook within one hour, but our connection is on

...

akqaking by L0 Member
  • 1651 Views
  • 2 replies
  • 0 Likes

Resolved! Question regarding SFP

Hi,

I have a quick question regarding the insertion of an SFP Module into a Palo Alto Networks 5050.  I have a Finisar FTLX8571D3BCL SFP module that works fine in Ether Port 1/13 (i.e I get link state).  From reading the vendor documentation for this

...

dsulli99 by Not applicable
  • 4672 Views
  • 4 replies
  • 0 Likes

Netflow panos 4.1.0

I configured Netflow on OS 4.1.0,

for testing reasing i started with 2 interfaces...but in ManageEngine NetFlow Analyzer I get 3 interfaces!?!?

I tried to identify the interfaces but when I look on the traffic showing up then I'm pretty confused...the

...

gsteiner by L3 Networker
  • 3851 Views
  • 7 replies
  • 0 Likes

Resolved! DMZ network configuration

We have installed PAN-2050 in my customer site.

It has been deployed with two L2 interface as vmwire.

And we made one L3 vlan interface for secondary IP.

There are 2 IP subnets. (192.168.10.0/24, 192.168.1.0/24)

One(192.168.10.0/24) is for user.

The other

...

sjlee by Not applicable
  • 4712 Views
  • 5 replies
  • 0 Likes

Can I verify a config before doing a commit?

I was writing a rule to allow ciscovpn to only certain addresses, so I added a destination and the application I chose was ciscovpn.  I added it to the policy and then did a commit.   it came back with messages saying that ciscovpn needed ike to func

...

dabels by Not applicable
  • 1681 Views
  • 2 replies
  • 0 Likes

Resolved! AntiSpyware Response Page

Did the AntiSpyware Response page option go away in version 4.1.4?  Seems like I tested with it and saw an option for an AntiSpyware page in eariler versions of 4.x, but I'm not seeing it listed as an option on the firewalls or in Panorama in 4.1.4.

robertb by L0 Member
  • 1816 Views
  • 1 replies
  • 0 Likes

FAIL TO PARSE SECURITY POLICIE

Hi guys

I`m having a big problem


When i try to commit my security policies show this erro.

Details:
· Error: Failed to find address '10.2.69.100 '

· Error: Unknown address '10.2.69.100 '

· Error: Failed to parse security policy

· (Module: device)

· Commit f

...

Thiago by L3 Networker
  • 3213 Views
  • 1 replies
  • 0 Likes

Resolved! Layer 3 Interface Trunk Configuration

Hi,

I am a new Palo Alto firewall user, however I have been working with firewalls for some time.  I have a couple of quick questions;

1) Does the Palo Alto PAN-OS firewall have equivalent of the "shut"  or "no shut" command to turn an interface on or

...

dsulli99 by Not applicable
  • 7356 Views
  • 2 replies
  • 0 Likes

Adding multiple IPs to external interface

I am interested in adding all of the IPs from a range like x.y.z.40/28 to the external interface of the PAN.

The verbiage on the GUI makes it sound as if I need to add each IP individually.

Can I add a range as listed above by entering it as  x.y.z.40/

...

BobW by L4 Transporter
  • 3158 Views
  • 1 replies
  • 0 Likes

Resolved! URL logging without URL Filtering license

We are trying to log all URLs without having a URL Filtering license

For that we created a custom URL category containing

*.*

*.*.*

Seemed to work but when we compared the amount of log entries to the proxy logs we discovered that we only see less than h

...

AndreasB by L2 Linker
  • 2707 Views
  • 1 replies
  • 0 Likes

CLI cmd to show system log

I'm trying to use the CLI to get a list of SSLVPN logins, but keep getting either "sytnax error at end of input" or "syntax error at AND" errors. what i've attempted so far is variation on:

show log system subtype equal sslvpn object equal "Test SSL-V

...

u11756 by Not applicable
  • 16520 Views
  • 1 replies
  • 0 Likes

ThreatLog forwarding doesnt work

Hi All,

I have configured the PaloAlto to email me threatn  logs for medium , high and critical alerts, but it seems to email me only medium threat alerts, how do i fix this 

Please find attached my log forwarding profile.

My email profile is configure

...

  • 24034 Posts
  • 102 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks