General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Question of SSL VPN in HA active active.

Hello there. i have some questions regarding of SSL VPN in active active HA. 1. If I have configure Active-Active HA with PA500, is it possible to support 120 concurrent user at Active-Active HA? (limitation of SSL VPN concurrent user from PA500: 100 concurrent users.)2. If it is support 120 concurrent users is it possible to traffic load an...

willstech by L3 Networker
  • 3190 Views
  • 2 replies
  • 0 Likes

Destination: Public IP that NATs to DMZ private IP

Hi all,I'm trying to get a better understanding of how a specific request is completed. If an internal private IP, say 10.10.10.20 leaves the provate network behind an IP of 2.2.2.2 and heads to the Internet fine then tries to go to an IP which the firewall NATs, such as 2.2.2.3 to a DMZ IP of 10.10.50.20. What is the source for the packet?Does ...

UKRB by L3 Networker
  • 3512 Views
  • 2 replies
  • 0 Likes

Cutoff Reports

Our pdf reports are cutting off columns. The first column is cutoff down the middle and not real sure what else it is cutting off.

DHCP OPTION 161 (FTP)

Hi,Does anybody know a workaround for adding DHCP option 161 (ftp)? As far as i know this is not supported at this time, rendering DHCP for thin clients useless. I'm not that interested in using DHCP relaying.Palo Alto: Do you have an ETA on this option? You support captive portal etc on citrix, so should have this possibility.

johnd by L2 Linker
  • 3070 Views
  • 2 replies
  • 0 Likes

Authentication Sequence

I got two AD Domains.I did the two ldap and two kerberos configsIn the Authentication Sequence ch-dom ist the first one and the second is stebos. They are both kerberos profilesUsers in ch-dom can authenticate. User in stebos get immediatly a auth failer.LDAP is working on both AD, I can see users and groups.In Traffic Monitor I don't see kerber...

gsteiner by L3 Networker
  • 7938 Views
  • 11 replies
  • 0 Likes

Resolved! SNMP OID for Management Plane Load

Hi,Has the MIB OID for the Management Plane loading changed in PANOS4.x?I'm trying to poll my PA's and I'm pulling back Data PLane loading but getting an error on the DP OID (25.3.3.1.2.1)Ta!

apackard by L4 Transporter
  • 4759 Views
  • 3 replies
  • 0 Likes

A commit is pending. Please try again later.

HiI upgraded a few things, and all looks like they are completed, but I can't commit changes now - where can I see what the box is doing and progress?URL filtering database was upgraded from version 3734 to version 3735 by the auto-update agent11/09 09:55:35RASMGR daemon configuration load phase-1 succeeded.11/09 09:54:44IKE daemon configuration...

FlexyZ by L3 Networker
  • 7209 Views
  • 4 replies
  • 1 Likes

Configuring Virtual Route in 4.1 default gateway

I was trying to enter default gateway in Virtual Route when I commit it , it is asking to enter canont find interface.I use to configure this in 3.1 same no problem.Can anybody help tell me why ?Thanks,

BPA by L0 Member
  • 2661 Views
  • 1 replies
  • 0 Likes

Exchange 2010 NLB Cluster

I have a NLB Cluster configured for our Exchange 2010 environment. I have manually added the ARP entry for the Cluster to the interface of the PA. Everything works fine, until you make any change to the PA and commit it. Once you commit it, the PA can no longer ping the Exchange cluster and the entry in the ARP table is not present. All traffic ...

Steven by L1 Bithead
  • 11907 Views
  • 19 replies
  • 0 Likes

Natting Internal Hosts to a differente ISP`s

I'm trying to find documentation and/or any help to see if PAN firewalls are capable of NATing Two external ISP`s to a differents hosts IP.My scenario:My default gateway is 187.x.x.xWhen i try to make a NAT with the seconde ISP 189.x.x.x , i don`t know but don`t work.When i send a netstat at my HOST on NAT , the server don`t receive the SYN to s...

Thiago by L3 Networker
  • 3799 Views
  • 5 replies
  • 0 Likes

Resolved! How to monitor bandwidth on Internet interface

I'm looking to monitor the bandwidth of the Internet facing interface (ethernet 1/8) of our PA-500 through SNMP (using Solarwind IPMonitor), but am unable to find what OID to use.I've found several documents and lists, MIB's etc with various OID entries, but cannot find the right one for bandwidth.The reason I want to monitor it, is that the fir...

lhank by L0 Member
  • 18325 Views
  • 7 replies
  • 0 Likes

Problems with PA-2050

hello friends....I have a PA-20-50 configured as content filtering and is synchronized with a pan-agent, the problem I have is that the device is completely disconnected after 10 minutes and only restarting again operate.Know if any physical detail or firmware version, because neither the administration interface responds.Device:PA-2050Firmware:...

ljuarez by Not applicable
  • 3105 Views
  • 4 replies
  • 0 Likes

Monitoring PA4020 with Cacti

Hi,Has anyone managed to set up Cacti to manage the system resources, Mem, CPU, Sessions, Connections and so on?I have tried the Netcreen tips as per https://live.paloaltonetworks.com/message/2968#2968But this didnt help...Any other tips?Or can anyone suggest a monitoring tool thats better than Cacti?Richard

onesj by Not applicable
  • 4624 Views
  • 2 replies
  • 0 Likes
  • 24402 Posts
  • 123 Subscriptions
Top Solution Authors
Labels