General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 436 Views
  • 0 replies
  • 2 Likes

Resolved! About DIPP

Hi guys.

I checked the specsheet of PA5000 series that showed DIPP, Unique destination IPs per source port and IP, for NAT. but I cannot understand clearly that meaning.

What is DIPP means and when do I use that function?

Thanks.

Regards.

Roh.

ttongfly by L3 Networker
  • 3553 Views
  • 3 replies
  • 0 Likes

Is DHCP Logging for lease-start possible

Hi All,

We have got a captive portal set up for guest access which terminates on our Palo Alto firewalls. To meet our code of connection we need to capture DHCP lease offers but by default this does not seem possible.

DHCP lease ends are sent to the sy

...

URL Filtering based on AD Group membership

I'm trying to created a URL filter that only applies to a specific AD Group.

I have a URL filter that applies to all known and unknown users, but it's fairly restrictive.  I have a group of users that require a slightly less restrictive URL filter.

The

...

PBF policy not working.

Hi,

I have packets that arrive on interface eth1/10 that I need to be forwarded back out of eth1/10 with a next hop address of another router on that subnet. I have created a pbf rule that I hope would achieve this however it is currently not working.

...

debsPal0 by Not applicable
  • 2081 Views
  • 1 replies
  • 0 Likes

Resolved! Application usage – Implement Time limit

I would like to schedule certain application for user to use.  Here are the examples.

User can use You-Tube or http-audio only 30 minutes per day.

Or

User can only use You-Tube / other streaming media between 9:00-9:30 am and then 5:00pm - 6:00 am .

User

...

ssarcar by Not applicable
  • 3157 Views
  • 3 replies
  • 0 Likes

Comprehensive IANA service port listings

[SO] I'm putting together a configuration and I'm wondering if I'm doing any duplicate work that maybe some other PA customer has already done and may be willing to share. I'm creating service definitions that are IANA defined for example:

set service

...

bjaming by Not applicable
  • 5302 Views
  • 9 replies
  • 0 Likes

Resolved! QoS Question

All,

I am trying to wrap my head around QoS and how it functions.  What I want to do is to limit the download rate of streaming media.  I understand the rule creation and placement.  I assign my QoS policy to my trusted zone interface so that the dow

...

tohoken by Not applicable
  • 2351 Views
  • 1 replies
  • 0 Likes

Resolved! IPS Signatures

Hi, does anyone know if PAN retires somehow the old IPS signuters?

Into the update bulletin there are informations only for new and modified signatures, not for the retired ones.

For example yesterday night I received the PAN bulleting and Cisco. In th

...

zanonibs by Not applicable
  • 3136 Views
  • 2 replies
  • 0 Likes

500-652 Antivirus Version Makes our PAN unavailable

Guys,

Has anybody faced a problem regarding the latest AV version 500-652 as after installation our firewall behaves strangely (Commit failed - Down and up again - AV version mismatch)

We have called support and they have told us that there is a proces

...

Update PA2020 from 3.0.6

Hello all,

I'm doing some maintenance work on a PA2020 and just found out that it is way out-of-date. The software release is 3.0.6 and the other updates Threat and Apps is nonexistent...

What is the recommended upgrade procedure for this? I would like

...

Resolved! what "session table utilization" is really mean?

Hello guys.

I have question about session information of PA. PA showed session table information after command "show session info"

And this command contains that information of "session table utilization" but I wonder about that information about maxim

...

ttongfly by L3 Networker
  • 2723 Views
  • 2 replies
  • 0 Likes

Resolved! About Link Aggregation

Hello guys.

I tested about link aggregation for PA4060 that connected CISCO SW. but PA only connected "channel-group mode on" that mean disabled PAgP en LACP only with Cisco SW.

I think PA should connected other devices using LACP (802.3ad) but result

...

ttongfly by L3 Networker
  • 5396 Views
  • 4 replies
  • 0 Likes

Not able to get DNS working

Hello,

After visiting the forum, i have tried all options, but still the PA 500 wouldnt talk to the outside world.

Source recognition under device to routing has all been checked. But there is one peculiar error which

i am getting again and again  Devic

...

nsalian by Not applicable
  • 5330 Views
  • 4 replies
  • 0 Likes

Resolved! Palo Alto configure as access port

Hi All,

It has been sometime that i haven't touch on Palo Alto device and i want to clarify whether can i configure as access port (or called as untagged port) other than normally create L3 vlan routing?

I don't see such settings available on the confi

...

eugene by Not applicable
  • 3459 Views
  • 1 replies
  • 0 Likes
  • 23699 Posts
  • 110 Subscriptions
Top Solution Authors
Labels