This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4234 Views
  • 0 replies
  • 0 Likes

Securing SSH

Is it possible to secure SSH with a public/private key or some other means. I have noticed an extremely high number of logon attempts, and want to block these as much as possible. I am sure I can lock it down to certain source IP addresses, but I would prefer to not go that route as we have roaming IT staff that use a variety of connection met...

Resolved! Virtual Systems with Different PAN-OS versions

Hi All,I heard that its possible to have a vsys with a different PAN-OS that the others, to do such things as test the PAN-OS upgrade out with rules, etc before applying it across the board to all.What I can't see in the appliance UI, is how to do this, if its in fact possible.Can anyone confirm, or deny, this can actually be done, and if so how.

KatanaNZ by L3 Networker
  • 2829 Views
  • 1 replies
  • 0 Likes

Admin roles and Vsys

Hi All,I'm trying to create a role based user, that is specific to a vsys. when creating a user when logged in as the superuser,I can't create a user, and select the RoleBased profile that is based on a vsys, as the ok button grey's out.Is there a step that i'm missing here?

KatanaNZ by L3 Networker
  • 2559 Views
  • 1 replies
  • 0 Likes

NTLM security credentials warning over VPN

Hi,We have a couple of Linux Samba servers that can only talk NTLM 0.12 dialect(this is from packet captures).If I am connecting to a Linux Samba share from the internal LAN my Win 7 client(that supports up to SMB 2.0) negotiates down to NTLM 0.12 and connects using cached credentials.If I am connecting to a Linux Samba share from client VPN, th...

Cannot download a file on php.net

Hi,I have an issue wen my co-worker try to download a file from php.net.I cannot find wich progam is called in my policies rules.The file is available at : http(s)://pecl.php.net/get/oci8-1.4.6.tgz and cannot download it.Thank you and sorry for my bad englishM.B

ffgolf by L0 Member
  • 2906 Views
  • 3 replies
  • 0 Likes

Native VLAN configuration

I have configured a couple of layer-3 subinterfaces on a aggregate, they are tagged as VLAN 700 and VLAN 800, in my cisco switch I have configured a trunk port that permits VLAN 700 and VLAN 800 to pass traffic across it. When plugged in, everything comes up just fine and I'm able to ping both interfaces etc etc.As soon as I add a native vlan ...

bjaming by Not applicable
  • 10511 Views
  • 7 replies
  • 0 Likes

How to select multiple objects at the same time ?

Hello,I wnder that there is no way to select multiple objects at the same time when creating a group object ? Indeed, when I create several addresses, and I create a group to inculde all these addresses, I have to select one address at a time.Immagine when you have to create a group that should contain dozen of addresses, and you cannot use the ...

ldormond by L3 Networker
  • 6255 Views
  • 5 replies
  • 0 Likes

Resolved! PA-4020 max NAT rule limit?

I am getting very close to the 1000 max NAT rule limit on my PA-4020's, are there any plans to increase this limit in future releases of PANOS or is my only option to upgrade to a PA-4050?

debsPal0 by Not applicable
  • 5386 Views
  • 8 replies
  • 0 Likes

OSPF - BGP : Route-map control

Hi, I've the following setup. Two PA5020 in Active/Passive setup. One VR = STX-VRRunning OSPF & BGP instances.Primary firewall joined in OSPF since i have interface e1/1 joined Area : 0.0.0.0Primary firewalls joined in BGP since i have interface e1/2 peering with TWO BGP routers ( cisco ) Interface e1/1 is part of OSPF and its learning defau...

Resolved! Slow network traffic after deploying PAN 2020 device

We are experiencing a gradual change in our network speed since we deploy an Inline PAN 2020, the internet connection has slowly dicreased, is there any particular test or place where I can go to verify that the PAN device is not the reazon of this change? I have checked our network speed from the ISP link directly and we have a 20/20Our network...

Application Statistics in Custom report on specific IP address or range?

I've reviewed what I can on the custom reports online as well in KP, but can't seem to find any way to create application based statistics filtered on specific IP address or ranges as it doesn't appear that DB has IP addresses info. Does anyone know of anyway to provide application based info filtered on IP? Ideally, even something like the ne...

entadmin by Not applicable
  • 3194 Views
  • 2 replies
  • 0 Likes

Resolved! Global Protect on overlapping networks

Hello everybody!I have a big problem with Global Protect and overlapping networks.I make you an example.-------------My local network is 192.168.10.xMy Global Protect Network is 172.16.x.xThe external network has the same class of my local network--------------If I connect my lapton in any networks everything works good but if the network has th...

  • 24357 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks