General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

GRE issues with 4.1.0 ?

Good morning,

we run PanOs 4.1.0 on a couple of new sites, but we are not able to make GRE tunnel works. The sceario is IPsec Tunnel between 2 firewalls (PA-2020 to PA-5050), GRE tunnels built inside the IPsec on Cisco routers.

IPsec is ok and ping is

...

fm_eng by L1 Bithead
  • 2189 Views
  • 2 replies
  • 0 Likes

Pan os 3.1.8 VirtualWire and Microsoft NLB Problems

Good morning

I have a Virtual Wire configured on a PAN-2050 with Pan OS 3.1.8 and I connect in one Interface of it a Microsoft ISA Server 2004 and in the other interface a Catalyst Cisco Switch.

This Microsoft ISA SERVER 2004 has a Microsoft Load Balan

...

Pepen by L1 Bithead
  • 1469 Views
  • 1 replies
  • 0 Likes

App ID Classification

I noticed that Sophos anti-virus is classifed under business-systems/management, while McAfee, Symantec, Panada are all classifed under business-systems/software-update.

Seems to me Sophos is misclassified under the wrong sub-cateogry.

snormoyle by Not applicable
  • 1479 Views
  • 1 replies
  • 0 Likes

Update problems, PANOS 4.0.5

Hi, I need some help about a PAN update trouble, since december of last year can't update all the signatures of threats, APP's, url filtering and antivirus.

On the dynamic update section, when checking for new version, shows an error:

Failed to check c

...

How to identify specific object usage ?

Hello,

Is there a way to easily find out where a specific object is used in the policies ?

I know that I can use the filter filed in the policy tab (by using "drag and drop" or filter drop-down menu). However, when using group objects for multiples add

...

ldormond by L3 Networker
  • 3233 Views
  • 7 replies
  • 0 Likes

Resolved! User Identification - 4.1 LDAP - AD

Hi,

I have upgraded to 4.1 and added a ldap-server profile to the config so the firewall does the query instead of the user-id-agent.

When I go to group-mappings settings ( under user-identification ) and select the tab 'Group Include List',
I can see t

...

paulmeys by L1 Bithead
  • 3083 Views
  • 3 replies
  • 0 Likes

Retrieve Primary group of a user

Hi,

I've just upgraded my PA-2050 to 4.1.1 and configured LDAP servers and group mapping for building some policies rules based on AD groups.

Everything works well except one thing.

The primary group of a user is not retrieved.

And this is a problem beca

...

pboegli by L1 Bithead
  • 2064 Views
  • 2 replies
  • 0 Likes

PA 2050 running 4.1.1

Just curious if anyone else notice performance issues with their palo boxes after upgrading to 4.1.1? 

I’m getting a lot of commit failures, cannot connect to the device errors or the page just takes 3-5 minutes to load.  I’m also noticing that when

...

Globalprotect client failing authentication

We have had several instances where our end users are not able to connect with the globalprotect client since upgrading to PANOS 4.1.  When I check the system log file I see the following errors

2012/01/18 09:45:03info     globalp portal globalp 0  G

...

jbland by Not applicable
  • 2610 Views
  • 3 replies
  • 0 Likes

Resolved! Using "Any" as zone for a converted policy

Hi

I'm converting a security policy from a Check Point device to a PAN device using the PAN converter. By default the converter sets source and destination zones as "Any". Can I use the rule like that? Is there any problem that such configuration migh

...

Multi Gateway

Hello,

I need to install a PA200 for a internet breakout. Since i can't change the IP Subnet, I tough to change the default gw to the PA and use the PA as a router for traffic to the WAN (same subnet). But my problem is now that traffic comming from t

...

gsteiner by L3 Networker
  • 3745 Views
  • 8 replies
  • 0 Likes

OSPF - Reditribution intra OSPF

Hello,

My PA is connected to 2 OSPF areas and I want to take some routes from one area and send them to the other one.

I try to do a redistribution profile but it only send my directly connected routes, not those learned from OSPF.

Is there a way to do

...

rroger by L1 Bithead
  • 2137 Views
  • 1 replies
  • 0 Likes

Resolved! URL-filtering Profile

Hi!

Friday we upgraded our devices to 4.1.0.
Everything is working ok, the gui is pretty fast, which is nice, only:

When we want to edit a url-filtering-profile, the list of categories is empty.

Can someone confirm this running on 4.1.0 ? ( or is it just

...

paulmeys by L1 Bithead
  • 7261 Views
  • 7 replies
  • 0 Likes
  • 24126 Posts
  • 102 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels