General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Natting Internal Hosts to a differente ISP`s

I'm trying to find documentation and/or any help to see if PAN firewalls are capable of NATing Two external ISP`s to a differents hosts IP.

My scenario:

My default gateway is 187.x.x.x

When i try to make a NAT with the seconde ISP 189.x.x.x , i don`t kn

...

Thiago by L3 Networker
  • 2474 Views
  • 5 replies
  • 0 Likes

Resolved! How to monitor bandwidth on Internet interface

I'm looking to monitor the bandwidth of the Internet facing interface (ethernet 1/8) of our PA-500 through SNMP (using Solarwind IPMonitor), but am unable to find what OID to use.

I've found several documents and lists, MIB's etc with various OID entr

...

lhank by L0 Member
  • 12796 Views
  • 7 replies
  • 0 Likes

Problems with PA-2050

hello friends....

I have a PA-20-50 configured as content filtering and is synchronized with a pan-agent, the problem I have is that the device is completely disconnected after 10 minutes and only restarting again operate.

Know if any physical detail o

...

ljuarez by Not applicable
  • 2143 Views
  • 4 replies
  • 0 Likes

Monitoring PA4020 with Cacti

Hi,

Has anyone managed to set up Cacti to manage the system resources, Mem, CPU, Sessions, Connections and so on?

I have tried the Netcreen tips as per https://live.paloaltonetworks.com/message/2968#2968

But this didnt help...

Any other tips?

Or can anyon

...

onesj by Not applicable
  • 3247 Views
  • 2 replies
  • 0 Likes

AIM-MAIL dependency

After a recent APP-ID update, AIM-MAIL is sqwauking about not having imap, smtp and pop3 dependencies enabled. Users still get access to their webmail, but I'd like not to continue getting the below warnings.  Ideally, I'd like PA to re-address this

...

AD/LDAP admin authentication in 4.1

Hi all,

does anybody have an exmple of howto authenticate a user based on it's group membership against active directory?

We have 3 kind of groups in AD which should represent the access level.

Could someone please post a small summary how to achieve th

...

muellerm by Not applicable
  • 4900 Views
  • 7 replies
  • 0 Likes

Object Reports or comapre groups option

Is there a way to print the details of a URL filter group or an Application Filter group? How about the ability to comapre 2 URL filtering groups or 2 Application groups?

We have 8 different URL filtering groups and 8 different Application filtering g

...

Captive Portal for AD Users

Hello,

I'm seeing an issue currently where a handful of my hundreds of AD users are being directed to the CP landing page despite their workstations being on our domain, and with valid AD user accounts. They are all on Macs and have the same configur

...

Conde01 by L1 Bithead
  • 3025 Views
  • 5 replies
  • 0 Likes

PA-500 throughputs?

I realize that is a difficult question to answer.  What kind of maximum throughputs are people seeing with their PA-500s?

For example: I monitor our firewall (not a PA) using PRTG via SNMP and see a fairly constant 20 Mbps with some 30-45 minute spike

...

XML Interface to PAN Agent

Hi


We are having a lot of issues with using the PAN Agent scraping the wrong user / ip information from our AD logs as we also have a mixture of local user logins and remote desktop RDP connections which change the user's login / ip address associatio

...

ERIKS by L1 Bithead
  • 2962 Views
  • 2 replies
  • 0 Likes

Resolved! Schedules object

Hi,


I have a question about the schedules object which is used in security policy.

Is there any notification can remind the firewall administrator to cleanup the policy after the schedule object expiration?

Thanks,

Richard

Cannot get DMZ access to work

I have a PA 500, running 4.0.5 and I have two zones that are 'special' : PCI and DMZ. Both are setup identically but only one works. Here is how it is:

Zones: Rest1 (Tunnel.1), DMZ (1/8), External (1/1, 1/7), Internal (1/1, tunnel, Tunnel.2), PCI (1/6

...

u7483 by Not applicable
  • 5372 Views
  • 7 replies
  • 0 Likes

Panorama Out Of Sync

I just installed Panorama to my existing deployment, the firewalls are connected to Panorama, but the shared policy is out of sync. How do I get Panorama to house the current configuration on the firewalls? Currently with no configuration on the Pano

...

  • 24298 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels