General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Uncommented CLI for resetting to default

We are doing quite a lot of evaluations during this time and we have found an interesting undocumented CLI command to reset the PA device to the factory default without following the complete process of the console boot. Use this command:

admin@PA-205

...

asecus by Not applicable
  • 2366 Views
  • 1 replies
  • 0 Likes

Resolved! Anonymize

We have some privacy concern with PAN. It's possible to anonymize the entries in the PAN device ?

Best regards Boris

asecus by Not applicable
  • 2088 Views
  • 1 replies
  • 0 Likes

Performance Problems

Hi everybody,

PA-500
Software: 3.0.5

We have different customers with an PA-500 implementation.
Two of those customers have an 100 Mbit connection, and they
complain about performance issues.

The Firewalls are configured in VirtualWire Mode, we have config

...

indevis by L2 Linker
  • 2735 Views
  • 2 replies
  • 0 Likes

Resolved! Possible bug in ACC PANOS 3.0.5 - PA-500

When I click on the ACC tab it loads the ACC with the charts

Application

URL Filter

Threat Prevention

Data Filtering

If I click on 'web-browsing' or anything else that creates a filtered view and then close that element to go abck to a non filtered view A

...

Resolved! Schedule and montly recurrence

I would like to perform a montly report, but in the scheduled page I can only choose between daily and weekly scheduling. I can do something on the CLI ?

Thanks Boris

asecus by Not applicable
  • 2051 Views
  • 1 replies
  • 0 Likes

Dynamic VPN

Dear PaloAlto Support,

Does Palo Alto support this VPN feature such as  Dynamic VPN or Easy VPN?

Customer will use  Cisco Router at their branches. They want to connect VPN from all  branches to their HQ. All branches will have dynamic IP and HQ will

...

Ovan by Not applicable
  • 2674 Views
  • 3 replies
  • 0 Likes

Resolved! session flags

I can't find documentation about connection Flags in command show session all


-------------------------------------------------------------------------------

ID/vsys   application     state   type flag   src[sport]/zone/proto (translated IP[port])

     

...

Resolved! Is there a Bug in the URL filtering profiles

Hi everybody,

PA-500
Software: 3.0.5
Threat-Apps: 163-489
URL Filter: 3243

I have a question to the URL filtering profiles.
When we add URLs to the block or allow list,
and make a commit the listed URLs were not blocked or allowed.
We need a second step, we

...

indevis by L2 Linker
  • 2760 Views
  • 1 replies
  • 0 Likes

Resolved! User Agent System Requirements

We're running into issues with the Palo Alto User Agent.  It'll run for a few days, then we'll stop getting user information.  When I look at the server running the agent, and try to start the agent, I get a message along the lines of "The paging fil

...

Virtual-Wire connectivity during reboot

Hi all,

I know some IDS/IPS are able to keep the network connectivity during a reboot. Then it does not stop the trafic.

Does the PA able to do the same in Virtual-Wire mode ? Or in other mode ?

The aim is to upgrade the appliance in a production enviro

...

olev by Not applicable
  • 2659 Views
  • 2 replies
  • 0 Likes

QoS data in logs

Hello PAN,

Is there any way to obtain QoS data from the PAN logs other than doing a "show session id" CLI command in the current release 3.0.5? My customer would like to be able to see how much traffic is hitting the QoS classes and which traffic is h

...

jwolach by L4 Transporter
  • 1834 Views
  • 1 replies
  • 0 Likes

Resolved! sample logs of licenses expiration

Hello,

Could you give me the sample logs that the PA log before the following licenses expira ?

- Support
- URL Filtering
- VSYS upgrade

We have the log of threat prevention license:
- License for feature threat will expire on 2009/12/11

Regards,

Defining Policies, Profiles, etc via CLI

Our primary interface with devices and management systems is through the CLI.  Essentially, what I need is a guide that explains the syntax and how to create/update/delete policies, security profiles, etc via CLI.  (Neither the CLI Reference nor the

...

Troubleshooting PAN-Agent connectivity

Hello, I have PAN OS 3.0.5 installed on a cluster (active passive)

The passive device seams to have problem to contact PAN

As you can see from ommand below 10.44.36.125 Agent can't be reached (on active is ok)

(active)> show pan-agent statistics
Name    

...