General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 198 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 880 Views
  • 0 replies
  • 0 Likes

Resolved! Global Protect on overlapping networks

Hello everybody!

I have a big problem with Global Protect and overlapping networks.

I make you an example.

-------------

My local network is 192.168.10.x

My Global Protect Network is 172.16.x.x

The external network has the same class of my local network

---

...

Resolved! some reports modification inquiries.

hi,

i have some inquiries just recieved from a customer i dont think its possible but lets see if its achievable :

.1-    can we convert second to minute in reporting.
2-    can we convert bytes to Mbytes in reporting .

i  tried but could not find anyth

...

SSL Decryption and Application Default

Best practice for building security policy is.  For allow traffic always define the service as application-default, that way you only create session for applications on there default port and only perform application ID for those session this reducin

...

Combination Signatiure in Custome Vulnerablity Signature

Hi

when I create new combination Vulnerablity Signatures ( for examples create new threat ID 48888 inlcude threat ID 40000 or 40001 )

1) I am not sure if ID=40000 attack happend , if threat log both have two log are ID=48888 & ID=40000 log , or whic

...

JeffJin by L2 Linker
  • 1643 Views
  • 1 replies
  • 0 Likes

Can Panorama manage Firewalls with Overlapping IP

HI.

We have a requirement to manage a number of Palo Alto Firewalls. Some which have overlapping IP Addresses.

Is it possible for Panorama to manage an estate with this configuration almost like an MSSP

Many thanks

Richard

rimpey by Not applicable
  • 2683 Views
  • 3 replies
  • 0 Likes

Cannot Ping

Hi,

I have a small problem. I cannot ping and access the ip address of my external interfaces although I can ping their default gateway. I already assigned interface mgmt for each interface and allowed ping, https, ssh and response pages but no luck.

...

DHCP Not releasing IP addresses

Called support they said 'known bug' upgrade to 3.10 .  Did the upgrade and IP addresses are still committed (lease expired for months in some cases) and not being released and added back into the pool.  Any ideas on how to solve this?

Intermittent User-ID with eDirectory

We're on a PA2050, v4.0.5 using eDirectory Agent 3.1.2 (Windows 2008 srvr) connected to two eDirectory servers v.8.8.5.

Users are being identified on the PA, but not all packets or sessions are showing a userid.

If I filter a single busy source IP in t

...

tharris by Not applicable
  • 3117 Views
  • 3 replies
  • 0 Likes

Qos - Rewrite DSCP field

Hi all,

Can PAN (i've got a pan 500)rewrite the DSCP field for some type of traffic(by Policy-Based routing or any way of doing this)?

Indeed i need to rewrite the dscp field of any RADIUS traffic on ef to make it appears on the WAN as a high priority

...

steria by L0 Member
  • 2761 Views
  • 2 replies
  • 0 Likes

Resolved! Copy Policy Between VSYS

We are getting ready to start using multiple VSYS on our PA. Want to find out if there is a way to move or copy policy and objects from one VSYS to another?

We have many policies in our original VSYS1 and want to move those policies and objects into t

...

Block Botnet Traffic

Hi All;  Is there now or will there be a way to block botnet traffic based on thresholds.  A few customers have fireeye and are looking for the same type of heuristic detection and blocking.

Is there a way we can block unknown (Zero Day) botnets using

...

amansour by L4 Transporter
  • 4238 Views
  • 2 replies
  • 0 Likes

Resolved! playboy.com and dropbox.com categorized as "unknown"

I just realized that playboy.com and dropbox.com are being catergorized as "unknown".  "Unknown" has been set to alert only, and not block.  I have no idea how long it has been like this, or what other sites may be doing the same thing.  I'm on URL F

...

jambulo by L4 Transporter
  • 3638 Views
  • 6 replies
  • 0 Likes
  • 24013 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Authors
Labels