General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 563 Views
  • 0 replies
  • 2 Likes

Resolved! Cannot ping L3 interface except mgmt?

Hi all,

I have a classic setup... mgmt port, one outside, one DMZ and one inside L3 ports, NAT policy defined and a bunch of security rules.

Outside, Inside and DMZ ports all have their IP addresses defined, but I cannot ping them. Not even inside port

...

Active Active HA on PAN 4.x

PAN 4.x is supporting Active-Active High availability.

Clearly, most firewalls also support Active-Active HA but, they need Layer-4 switch to get full performance.

In other words, most of firewalls also support Active-Active, but it is in name only in

...

willstech by L3 Networker
  • 4484 Views
  • 6 replies
  • 0 Likes

SSL VPN client ports

We have a few officers that connect from a remote location with a firewall of its own.  They are all using the SSL VPN client to connect back to home.  I can pull up the https://external-ip and login, but when the connection starts up i get a Disconn

...

Does Netconnect work with Windows 7 Service Pack 1?

Netconnect version 1.2.0-402 connecting to PANOS 4.0.1 running on Windows 7 SP1 (32bit) have been successfully tested using both IPSec and SSL protocols. We received some reports from clients using other VPN technologies that SP1 broke their client V

...

jdgregg by Not applicable
  • 4328 Views
  • 2 replies
  • 0 Likes

URL Filtering Bug filter bypassed

HI,

I am having issues with the URL filters for example if i have a blocked porn site www.xxx.com and i enter www.xxx.com.(dot) it bypasses the filter and is allowed through.  I am running version 3.1.6

Setting up Orion NPM to monitor PA-2050 via SNMP

Hi,

I'm new to setting up SNMP and need help.

Our Network Engineers need to setup their Orion NPM to monitor our 3 Palo Alto 2050's via SNMP.

They basically only need to monitor CPU, Memory, and Link States of the 3 interfaces hooked up for each of the

...

ikinnexi by Not applicable
  • 3662 Views
  • 2 replies
  • 0 Likes

Resolved! Panorama 3.1 to 4.0 migration

Hi,

I would like to know if Panorama 4.0 is able to manage PanOS 3.1.x firewall. If yes is there any restrictions or known caveats ?

In fact, we are planning to purchase Firewall 5050 which support only PANOS 4.0, and beside this we have some others 40

...

bdaussin by L0 Member
  • 2633 Views
  • 4 replies
  • 0 Likes

No IPSec-Tunnels after Upgrade from 3.1.7 to 4.01

Hello,

we run 8 PA-500s in 8 Branches. After upgrading them from 3.1.7 to 4.0.1 not all IPSec-Tunnels become active.

The Tunnels to the branches with the WAN-Interface connected to SDSL with PPPoE (automatic IP/Netmask/Gateway) stayed inactive, even af

...

Multiple NAT or UTurn NAT rules

We are hoping that someone can suggest a simpler way to resolve the issue of allowing internal hosts (in the Trust zone) to access servers sitting on the Trust zone via their external IP address (what PAN calls a UTurn or Hairpin rule).  We have near

...

synapse by L0 Member
  • 3198 Views
  • 2 replies
  • 0 Likes

Resolved! Opening file download for specific URLs

I have recently deployed PAN 2050 in my organization. We are enabled file blocking for selected file types e.g. (EXE, BAT, CAB, ZIP, ISO, RAR etc.) in both the direction. But as per management decision I have to allow download access from Microsoft U

...

u6402 by Not applicable
  • 2128 Views
  • 1 replies
  • 0 Likes

Resolved! PANOS 4.0.1 - Color Scheme Hard to Read

Does anyone else find that the color scheming of PANOS 4.0.1 extremely hard to read?

Since upgrading recently I've had multiple complaints specifically with reading of the 'greyed-out' areas such as disabled rules, the soft contrasting and color choic

...

micit by L1 Bithead
  • 2154 Views
  • 1 replies
  • 0 Likes

Packet Capture problem w/ PA-5020 running 4.0.0

So, using debug dataplane packet-diag I am unable to get filters to work propperly and quite often don't see data that I actually Should.  I didn't know if this was a bug with the 4.0.0 code or not but it makes it awful hard to defend the firewall wh

...

  • 23750 Posts
  • 110 Subscriptions
Top Solution Authors
Top Liked Authors
Labels