General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Dual ISP, PBF and DMZ

Hello.I have a specific question about certain situation. There is a customer with 2 ISPs, let's call them ISP1 and ISP2. Customer has a single PA device to which both ISPs are connected. Each ISP provides a block of public IP addresses which are routed to the PA device. With PBF we'll make a rule, which sets ISP1 as primary ISP and ISP2 as seco...

santonic by L6 Presenter
  • 9037 Views
  • 11 replies
  • 0 Likes

Maximum number of UserID Agents for 4.1.x ?

Whats the maximum number of UserID agents that can be configured to talk to the firewall ?ie. Will the firewall complain if we have 200+ userID agents configured to talk to it?I know each agent can monitor a maximum of 100 domain controllers.. but how many agents can the firewall monitor?

ucteam by Not applicable
  • 7024 Views
  • 10 replies
  • 0 Likes

static routes

HiI have 4 interfaces;eth1/1 = sub1 -> 10.10.1.1/24eth1/2 = sub2 -> 10.10.2/1/24eth1/3 = mpls -> 10.10.3/1/24eth1/8 = wan -> x.y.z.wdefault router on all interfacesbut now I need to route all 0.0.0.0/0 traffic from sub1 over the MPLS (10.10.3.10) and 0.0.0.0/0 on sub2 over the wan (x.y.z.w)sub2 still needs access to sub1 and sub2 to ...

FlexyZ by L3 Networker
  • 4616 Views
  • 6 replies
  • 0 Likes

Application-based DoS capabilities?

I am seeing several atempts by the same IP address utilizing t.120 to connect via port 3389 to the various Windows Servers that I have with external IP addresses (and, yes, some are actual Terminal Servers). I would love to be able to configure a threshold of denying this type of activity via the application with an activity threshold similar t...

mmartin by L1 Bithead
  • 3977 Views
  • 3 replies
  • 0 Likes

Resolved! Session Clearing

I have a PA-500 Firewall. I am trying to test some policies, however, when I add and remove users from groups, the Palo Alto isn't picking this up fast enough. Does anyone know the command line to clear out a session from the Palo Alto so it will re-check which group a user is in?Thanks!

kaysun by L1 Bithead
  • 4188 Views
  • 3 replies
  • 0 Likes

Resolved! Panorama Distributed Certs

Am I going mad, or can anyone else not actually use certificates imported in Panorama and then distributed to end devices?Once I have pushed these to PA's I cannot seem to apply them to 'functions' via the GUI or the CLI.Using the same certificate uploaded directly to the PA, everything is fine.I'm on PAN-OS 4.1.4.Rgds

apackard by L4 Transporter
  • 3370 Views
  • 3 replies
  • 0 Likes

Need to logout/login to see new signatures?

I think I may have found a bug with PANOS 4.1.1 on PA-5050s where the WebUI will not display new signatures until the user has logged out and logged back in again.I left a browser (Firefox 10) logged in for several days, using it just enough that the session did not time out. During this long session, a content update was installed. However, w...

Mack by L2 Linker
  • 2604 Views
  • 2 replies
  • 0 Likes

SSL decryption notification response page. Don't load !

Trying to set up SSL decryption these are the steps ive done:* Configured SSL decryption rules* Installed certificated on FW* Installed cert on client computer with gpo, (yes it removed my warnings about saftey)But it won't warn the user with the response page even though iv'e enabled it under Device > Response Pages > SSL decryption opt-o...

Create an App-ID for YouTube in the context of facebook

HI guys I am trying to create a custom App-ID to identify Youtube in the context of facebook, I would like to use this for a possible App QoS.Dependency is youtube from facebook but defining youtube app in the context http-host-header is too complex, so I was thinking of using youtube app as dependency and look for triggers as facebook referrer....

Importing Configuration from Fortinet

Hi,I'm experiencing a problem for importing configuration file from a cluster Fortinet 310B. After conversion, i try to load the file, and i recieve a message "File pan_conversion_l3.xml is malformed". I have tried to compare with the first configuration file fform the PA4020, I saw ther's no certificat on the top, but I'm not shure, if it's the...

Web Browsing

HiWe're about to install the web filter licence for the PA. Our current system is a proxy configuraiton via websense. Now that we're going to use the PA for web filtering is the best practise to create a security rule allowing all internal PCs direct access to the Internet using the common web based ports or is there some other way of making the...

djrodb by L3 Networker
  • 2446 Views
  • 2 replies
  • 0 Likes

Resolved! Block page for vulnerability protection

I have been testing the security profile for vulnerability protection. I set the action for all critical threats to block. What should I expect to see on the user computer screen if a site does contain a critical threat recognized by Palo Alto? Should the user see a block page?

oshcomp by Not applicable
  • 4835 Views
  • 3 replies
  • 0 Likes

MAC address filter and DHCP enforced...

Hi!Is it possible to create Policies based on MAC address instead of IP addresses?Also, can we enforce DHCP clients only mode? Meaning that the firewall only allows those who obtained IP's from the DHCP server. Seems like DD-WRT got the DHCP-Authoritative option:http://www.dd-wrt.com/phpBB2/viewtopic.php?p=650805thx!

gebis by Not applicable
  • 9736 Views
  • 3 replies
  • 0 Likes

Resolved! ACC Not displaying drop-down boxes when filtering is applied

We have an issue where the drop-down boxes in the ACC disappear when filtering is applied.For instance, when I go into the ACC, I see all my data.1) I click on the web-browsing application to see the top users. The information displays properly.2) Then I click on a specific user to see that user's activity.I'd like to see a list of the top URLs ...

  • 24397 Posts
  • 123 Subscriptions
Top Solution Authors
Labels