General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1709 Views
  • 0 replies
  • 0 Likes

Packet Drops under 3.1.8 / 3.1.9?

This is more of an FYI than a question. I want to share what my company is going through so we can all learn from each other.

We monitor our network by sending out pings every 500ms. We have multiple ping sources going to scores of endpoints. Then, we

...

markjx by Not applicable
  • 3200 Views
  • 2 replies
  • 0 Likes

Resolved! DHCP Option - Is it possible?

I know that the DHCP service offered on the Palo Alto firewalls is quite limited but I wondered if anyone has had any success in setting up specific DHCP options?

We have a requirement to set DHCP options 66 and 67 for PXE boot - this is possible on m

...

Problem with ipsec vpn session

Hi

I hope that someone can bring some insight in to this problem.

The situation is this:

Two out of seven configured ipsec tunnels are having some kind of connection issue. Our monitoring system will notify me that the VPN connection is down. I have the

...

admin3r by Not applicable
  • 9918 Views
  • 9 replies
  • 0 Likes

Is there a limit on the icmp pakets size?

Hello,

We try to make ping throw a PAN-4020 device, whene we try with a 1023 byte pakets it works, but wehen we try with a 1024 byte pakets this is rejected by the PAN. Is there any limit on the icmp paket size?

Also, whene we activate the jumbo frame

...

asia by L3 Networker
  • 2657 Views
  • 1 replies
  • 0 Likes

vwire loop into tap port for QoS demo

Guys,

To show QoS, when running a PoC using out of band traffic, will connecting a tap port via the factory v-wire interfaces work?

So out of switch mirroring traffic, into trust vwire->untrust vwire->tap ?

Thoughts?

KatanaNZ by L3 Networker
  • 3996 Views
  • 5 replies
  • 0 Likes

why would i see traffic on a standby HA PA2020?

Hi,

We've just had a couple of PA2020s installed in an Active-Passive HA configuration, running v3.1.7, and I'm trying to diagnose an FTP problem which may or may not be related to the installation. One thing I have discovered is that we're seeing a s

...

FIPS mode algorithm decryption?

The FIPS Mode notes state:

"Non-FIPS approved algorithms are not decrypted and are thus ignored during decryption"

Can someone clearify what exactly this applies to, and what is not decrypted?

KatanaNZ by L3 Networker
  • 4012 Views
  • 4 replies
  • 0 Likes

Can't authenticate users in nested groups (AD, Radius)

Hi All,

I have a rule to allow access to Facebook.  The rule works if I list individual users, but not groups.

We have a single forest with 2 child domains.

Universal Group "FB Allowed"  has the following groups as members: "OU1 FB Allowed" and "OU2 FB

...

kill hung jobs?

Hi all,

How do I kill a job that has hung, such as a content download, that stops all other downloads from being able to run?

KatanaNZ by L3 Networker
  • 8698 Views
  • 2 replies
  • 0 Likes

Resolved! Hosting Websites - Google "Crawling" issues...

I haven't found the cause just yet, but I've noticed that since implementing our PAN firewalls, (PA-2020) I've noticed in our Google Webmaster tools that Google has stopped indexing our websites.  This is causing me big grief as you could imagine. No

...

cenders by L3 Networker
  • 3617 Views
  • 2 replies
  • 0 Likes

LDAP Schema Attribute as User Report filter?

Hi All,

I have a curly one, that a site has tried multiple solutions from HP, solarwinds, checkpoint, juniper etc etc to solve, and its all based around executive level reporting.

They have one large OU, with all users in it, two main classes, and then

...

KatanaNZ by L3 Networker
  • 2185 Views
  • 2 replies
  • 0 Likes

MAC Destination Problem (4.0.4)

We have a new pair of PA-2050 (HA).

The last two weeks works fine with 4.0.1 but last Thursday I upgraded them to 4.0.4 and two of our networks had problems to go trought the firewalls.

I saw in the traffic monitor that the rules were ok and that traff

...

  • 24219 Posts
  • 117 Subscriptions
Top Liked Authors
Labels