This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 309 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3651 Views
  • 2 replies
  • 14 Likes

After migration from Checkpoint, any tips?

All,

We recently migrated from Checkpoint to PANOS (via the conversion tool) and so far things are looking pretty good. The next step of our project is to convert port based rules to app type rules and I wanted to get some feedback, tips, etc from oth

...

steveo by L3 Networker
  • 3970 Views
  • 4 replies
  • 0 Likes

Service Objects and multiple ports

I have the need to create a rule with three applications, ncp, ms-update and ssl.  Two of those applications use their standard ports - ncp (524) and ms-update (80 & 443).  The ssl application uses port 13000 - not the standard 443.

  1. If I create a sing
...

UID Agent Not Recognizing Docked Laptops

Last week we depolyed a PA500 for the first time and are seeing an issue with certain computers.  The issue is affecting some users who have laptops and are using them on a docking station.  When they are docked the computer essentially has two NICs

...

polgarm by Not applicable
  • 2901 Views
  • 2 replies
  • 0 Likes

Resolved! Cannot import certificates

Hello

I know the instruction how to convert the SubCA certificate from an MS CA

the pem files are OK

but I can't import them into the PA, with 4.1.4

Te PA starts Uploadding but nothing happens

The WebGUI keep showing the upload process for over 5 min

The s

...

Increased Data Plane CPU Utilization in 4.1.4?

We recently upgraded our PA-4020s from 4.0.9 to 4.1.4 a few weeks ago.  However, since the upgrade, we have noticed a 20-25% increase in our data plane CPU.  We usually averaged around 40% during business hours, but lately it has increased to 60-65%.

...

sham by Not applicable
  • 2073 Views
  • 3 replies
  • 0 Likes

CLI command for LDAP status in 4.1.4

Hi,

I am trying to setup a server profile for LDAP in PAN OS 4.1.4

Unfortunatelly I only see some groups of users but not the individual users themself.

Running the command "show users ldap-server" is not available in 4.1.4.

Attached is a screenshot of t

...

cschmi by Not applicable
  • 8912 Views
  • 16 replies
  • 0 Likes

Resolved! Is there a way to copy partial configs?

If I had a cisco, I could copy/paste partial configs between devices, is there away to do this with the PA?

I have some tunnels that need to get built across several firewalls, but I dont want to go to each one.

erantanen by Not applicable
  • 2516 Views
  • 2 replies
  • 0 Likes

Resolved! DHCP, AD and VLANS

We've just purchased our Palo Alto and are getting ready to configure. I just had a quick question on using AD.

Currently we have HP Procurves connected to a Radius server and Active Directory running DHCP. We'd like to simply and take the Radius serv

...

amariano by Not applicable
  • 3051 Views
  • 3 replies
  • 0 Likes

Resolved! DHCP max number of clients

Hello world,

My company is considering deploying a PA box to do some basic routing, NAT'ing, and other functions. One of those is dhcp. We'd like to use the PAN to serve up dhcp addresses for a number of VLAN's. What's the max number of clients that c

...

markjx by Not applicable
  • 2707 Views
  • 3 replies
  • 0 Likes

FAIL OVER SWITCHs

Hi guys ,

i want to explain my problem.

I have a 2 switches in fail over with link aggregate with 3 vlan`s. (LAN , SAN , Management)

I have one PA-500.

So

How can i configure my PAN interfaces , when 1 switch fail , the 2 switch get all flow and my fire

...

Thiago by L3 Networker
  • 3286 Views
  • 9 replies
  • 0 Likes

Resolved! Inconsistencies in Panorama?

Whether I am viewing the Security rules in Panorama or from the 2050, I noticed that the Security rules are listed on both the firewall and in Panorama.  However, this is not he same for the Policy Based Forwarding rules. The Policy Based Forwarding

...

Resolved! Commit Failed (4.0.4)

Hello,

Commit on our PA4050 Cluster running in Active-Passive mode on PANOS 4.0.4 is not working since today.

We get the following messages :

OperationCommitStatusCompletedResultFailedDetails 
  • device: config commit phase 1 aborted
  • Management server faile
...

Duplem by L2 Linker
  • 7597 Views
  • 8 replies
  • 1 Likes

SSL Decryption and Spoofing

If I enable SSL decryption and the PAN effectively works as a "man-in-the middle", the client recieves a cert error saying the certificate has not been generated by the destination server. No problem, as I can add the PAN cert as a trusted cert in my

...

Facebook-chat not blocking for specific account!!

hello !

I 'have seen on the same PC with the same windows user a strange problem:

when a user  is connected  on his facebook, I can see in the log facebook-chat DENY and the chat is blocked

when the same user is connected with an another facebook accoun

...

alle by L3 Networker
  • 3775 Views
  • 6 replies
  • 0 Likes
  • 24185 Posts
  • 100 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks