General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 330 Views
  • 0 replies
  • 2 Likes

Resolved! Support on PA for UNIX-Syle tracerouts

Does PA support unix-style tracerouts. I have enabled ICMP and PING, but tracerouts from unix hosts through palo alto are still being denied. Looking at this a little bit further, we noticed that windows-style tracerouts use ICPMP echo requests and r

...

bbivolaku by Not applicable
  • 3588 Views
  • 3 replies
  • 0 Likes

Securing SSH

Is it possible to secure SSH with a public/private key or some other means.  I have noticed an extremely high number of logon attempts, and want to block these as much as possible.  I am sure I can lock it down to certain source IP addresses, but I w

...

bschaper by L2 Linker
  • 1588 Views
  • 1 replies
  • 0 Likes

Resolved! Virtual Systems with Different PAN-OS versions

Hi All,

I heard that its possible to have a vsys with a different PAN-OS that the others, to do such things as test the PAN-OS upgrade out with rules, etc before applying it across the board to all.

What I can't see in the appliance UI, is how to do th

...

KatanaNZ by L3 Networker
  • 2212 Views
  • 1 replies
  • 0 Likes

Admin roles and Vsys

Hi All,

I'm trying to create a role based user, that is specific to a vsys. when creating a user when logged in as the superuser,

I can't create a user, and select the RoleBased profile that is based on a vsys, as the ok button grey's out.

Is there a st

...

KatanaNZ by L3 Networker
  • 2066 Views
  • 1 replies
  • 0 Likes

NTLM security credentials warning over VPN

Hi,

We have a couple of Linux Samba servers that can only talk NTLM 0.12 dialect(this is from packet captures).

If I am connecting to a Linux Samba share from the internal LAN my Win 7 client(that supports up to SMB 2.0) negotiates down to NTLM 0.12 an

...

Cannot download a file on php.net

Hi,

I have an issue wen my co-worker try to download a file from php.net.
I cannot find wich progam is called in my policies rules.

The file is available at :  http(s)://pecl.php.net/get/oci8-1.4.6.tgz  and cannot download it.

Thank you and sorry for my

...

ffgolf by L0 Member
  • 2137 Views
  • 3 replies
  • 0 Likes

Native VLAN configuration

I have configured a  couple of layer-3 subinterfaces on a aggregate, they are tagged as VLAN 700 and VLAN 800, in my cisco switch I have configured a trunk port that permits VLAN 700 and VLAN 800 to pass traffic across it. When plugged in, everything

...

bjaming by Not applicable
  • 6981 Views
  • 7 replies
  • 0 Likes

How to select multiple objects at the same time ?

Hello,

I wnder that there is no way to select multiple objects at the same time when creating a group object ? Indeed, when I create several addresses, and I create a group to inculde all these addresses, I have to select one address at a time.

Immagin

...

ldormond by L3 Networker
  • 4594 Views
  • 5 replies
  • 0 Likes

Resolved! PA-4020 max NAT rule limit?

I am getting very close to the 1000 max NAT rule limit on my PA-4020's, are there any plans to increase this limit in future releases of PANOS or is my only option to upgrade to a PA-4050?

debsPal0 by Not applicable
  • 4039 Views
  • 8 replies
  • 0 Likes

OSPF - BGP : Route-map control

Hi,

I've the following setup.

Two PA5020 in Active/Passive setup.

One VR = STX-VR

Running OSPF & BGP instances.

Primary firewall joined in OSPF since i have interface e1/1 joined Area : 0.0.0.0

Primary firewalls joined in BGP since i have interface e1/2

...

Resolved! Slow network traffic after deploying PAN 2020 device

We are experiencing a gradual change in our network speed since we deploy an Inline PAN 2020, the internet connection has slowly dicreased, is there any particular test or place where I can go to verify that the PAN device is not the reazon of this c

...

Resolved! Global Protect on overlapping networks

Hello everybody!

I have a big problem with Global Protect and overlapping networks.

I make you an example.

-------------

My local network is 192.168.10.x

My Global Protect Network is 172.16.x.x

The external network has the same class of my local network

---

...

  • 23670 Posts
  • 108 Subscriptions
Top Liked Authors
Labels