General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 291 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3626 Views
  • 2 replies
  • 14 Likes

Two Virtual Routers and NATing

Hello,

We currently utilize dual ISP's as part of our business continuity plan and it looks like we have most of our PBR's setup appropriately. I am trying to figure out a way to create a static NAT entry on ISP2 via VRF that will go to the Core Netwo

...

jschelert by Not applicable
  • 2049 Views
  • 2 replies
  • 0 Likes

Exchange 2010 - Applications Required?

We have a Palo Alto in front of an Exchange 2010 CAS server.

The Palo Alto is in a back-to-back config with a "dumb" firewall in front of it that only allows port 443 inbound.

The Palo Alto has the SSL cert from the Exchange box on it, so does SSL insp

...

HA interfaces link fail questions

According to manual, active-standby cluster..

• If one HA interface fails, synchronization continues over the remaining interface. If the state synchronization connection is lost, then no state synchronization occurs. If the configuration synchronizat

...

raymondl by Not applicable
  • 2283 Views
  • 2 replies
  • 0 Likes

traffic between management IP addresses in HA ???

hello guys,

i have a silly question for today. am testing HA in my lab ....... i have noticed on PAN dashboards that it shows the management IP address of it's HA partner!! is there any traffic concerning ''  HA  '' that moves between the managements

...

Passive Logging

Hi - we are running 2x PA4050 in version 4.0.4. We are sending all logs to Panorama. We have them in active-passive mode. I see logs for both the policy and alarms (eg an etherchannel leg is lost - I get  port & HA events etc) from the active. Howeve

...

fmd by L3 Networker
  • 1713 Views
  • 2 replies
  • 0 Likes

Resolved! vwire with "zoned" vlans

I have a design type question I received from a customer today that I couldn't quite answer. They would like to position the PAN inline on a trunked interface in a vwire type configuration. But based on the traffic tagging they would like to create s

...

Resolved! Trying to block only certain websites using 3.1.6

I need some help. I am very new to using firewalls and am not scheduled to go to class for Palo Alto until the first week of September. In the mean time I am trying to block a group of users from accessing the internet other than about 10 sites. I ha

...

JeffTQT by L2 Linker
  • 3355 Views
  • 6 replies
  • 0 Likes

Bitrix

I am unable to find an app for 'Bitrix'. Does anyone know if this PAN app exists?

URL: http://www.bitrixsoft.com/

bbsoc by L2 Linker
  • 1544 Views
  • 1 replies
  • 0 Likes

Impact of large address group

What is the performance impact of having many addresses to match against?  If I have an address group that has hundreds of individual addresses in it (some FQDN), others ip netmask, will it have a noticible impact on performance?  We are using a 2050

...

Dropping of SNMP polling when committing changes

I have a pair of PAN-500 in HA on 3.1.9 and our NMS system polls the PAN using SNMP.

Everytime I commit a rulechange, i noticed that it stops answering SNMP requests for about 2 minutes.

The PAN still passess traffic but I've seen this with ruleset com

...

  • 24181 Posts
  • 100 Subscriptions
Top Liked Authors
Labels