General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 86 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 792 Views
  • 0 replies
  • 0 Likes

Newbee Needs Help

I am trying to setup outlook web access (Exchange 2010) for my network.

Here is what I have done thus far:

Object -> Addresses: Setup the internal address of the exchange server.

Policy -> Security: Created a rule with the following data (Name: owa - So

...

URL Sync to Peer for Active-Passive Cluster

Hi All,

So title says it all. I have a client with twin 4050's running in an active-passive cluster, that we have recently enabled

URL filtering on.

Annoyingly, there is no sync that we can see between the active and passive for the URL database, from i

...

KatanaNZ by L3 Networker
  • 5660 Views
  • 5 replies
  • 0 Likes

Resolved! PAN on trunked interface

I have talked about this setup before but I am having issues getting it to work in the lab. I would like to position the PAN "inline" between two cisco switches that are connected via a trunked interface with specific allowed vlans. I would like to b

...

PAN Layer 2 and STP

I have a customer that is using RPVST+ on the core of their network for redundant Layer 2 connections to their servers. Using spanning tree link costs they load balance the trunked connections to their core switch. They have asked if it were possible

...

Resolved! Database Extraction "PA 2020"

How I can extract the entire database of PA2020? I need to generate other reports with another system, please help!
ps:
and try it with the command "export log-file tftp *" does not give me what I need, I'm only one month of the five I have, the disk

...

Question about Security Policies and NAT

I'm working on developing my rule base prepping for implementation.  I'm noticing that alot of my inbound rules, ie:

Where the destination in an address object with my internal IP.  Now of course I have NAT rules to statically NAT the traffic inbound

...

dshue by L2 Linker
  • 2271 Views
  • 2 replies
  • 0 Likes

HA Active Active Setup

Hello,

We have two PAN-2020 appliance running with 4.0.5 and setup for active/standby HA. We would like to change our HA setup to active/active instead of active/standby. In our existing setup we have two interfaces configured for virtual wire and on

...

ahmedf by Not applicable
  • 2896 Views
  • 1 replies
  • 0 Likes

Resolved! TAP mode and user ID

Hello all.

quick question.

during the demo(TAP mode), customer want to map IP to user id.

in the TAP mode,   can I integrate w/ LDAP to retrive the user id?

in the doc-1445. transparent authentication only support AD. and interactive authentication can s

...

willstech by L3 Networker
  • 3054 Views
  • 2 replies
  • 0 Likes

SSL VPN over Dial-Up Speeds

YES, you read it right!  DIAL-UP speeds!  Unfortunantly we have some users that have old 1x and iDEN air cards that are probably slower than some Dial-Up speeds.  It is what it is I suppose.  Our old IPSEC vpn (Check Point) client really didn't compl

...

dshue by L2 Linker
  • 2813 Views
  • 2 replies
  • 0 Likes

Captive portal users not in groups?

We are using the UserID agents on our servers for ID and groups.  Users that login via our AD domain on bound machines are correctly identified and we can apply policies based on group membership.  That all works very nicely.  We just put captive por

...

Viewing Rules in the Policy

Hi - we use Panorama and 4050s all running 4.0.5. We have a lot of rules on this firewall for one reason or another (it's a port from Checkpoint of an internal datacentre firewall where there are lots of non-web applications etc). Anyway, I can find

...

fmd by L3 Networker
  • 3471 Views
  • 6 replies
  • 0 Likes
  • 23991 Posts
  • 115 Subscriptions
Top Liked Authors
Labels