General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 275 Views
  • 0 replies
  • 1 Likes

Resolved! Spyware Download Tab

Setting up new PA2020.  Have upgraded to 3.1.2.  In looking at SpyWare profiles, I am not seeing a Download Tab.  I only see a PhoneHome Protection and an Exception Tab.

What am I missing?

VLAN and Routing

Hi Guys,

I have an issue.

I have a PAN-500, I am using 3 interfaces: et1/4 is L3-Untrust, et1/3 is L3-Trust and et1/2 is L3-Trust.

ET1/4 has the public IP.

ET1/3 = 192.168.0.254/22

ET1/2 has 8 sub interfaces, each subinterface has its own IP addressing an

...

Resolved! Getting SSL-VPN clients to see internal servers

I am fairly new to configuring VPN's. I configured SSL-VPN using the wonderful guides found on this site and was able to log in with no problems. With the VPN active all of my traffic was routing out through my PaloAlto device perfectly I could surf

...

Packet Capture Question

Hey folks,

I'd like capture a particular traffic stream for analysis.  I see how you can capure a packet trace as part of a Vulnerability Protection profile, but this particular traffic is not seen as a vulnerability or threat (i.e. it's not showing u

...

User Activity Report

Hey folks,

Just installed my first PAN firewall - after running an eval unit for about a month.  Loving it so far, but still learning...

First question for this board - hope it's not a dumb one.

We're running 3.0.9 and pan-agent and that seems to be wor

...

Resolved! Vsystems With HA( Active/Passive)

Question :

Please refer the attached Diagram.

  1. If the Vsys1.1 fails what will happen to the firewall 1? What will happen to Vsys2.1, Vsys3.1 (will they remain active or will they go passive as well.
  2. How will be the session synchronization between virt
...

roshithw by Not applicable
  • 3297 Views
  • 2 replies
  • 0 Likes

QoS Question - per session or aggregate?

I am applying an application filter to a QoS class, and then limiting the maximum egress bandwidth to that class.  The idea here is to prevent streaming media from consuming excessive bandwidth.

My question is, is this maximum egress bandwidth an aggr

...

QoS in TAP configuration

Hi All,

Is it possible to use QoS and Realtime bandwidth monitoring capabilities, while in a TAP only configuration?

Cheers,

     SteveR

KatanaNZ by L3 Networker
  • 2700 Views
  • 1 replies
  • 0 Likes

Resolved! Best method to block Instant Messaging

Working for a State Government agency, we are required to keep a record of any official electronic communication.  Using public Instant Messaging services creates a problem for us in that we don't have a mechanism for keeping copies of any transactio

...

merrydc by L1 Bithead
  • 4014 Views
  • 3 replies
  • 0 Likes

Lost Newbie - TAP Interface

We bought a PA-500 just to start kicking the tires. I was ready to see a Juniper style GUI but was quickly lost in the PA Interface. Here is what I am looking to do, maybe someone can give me a quick list of configuration steps.

All we want to do is t

...

jickfoo by Not applicable
  • 2426 Views
  • 2 replies
  • 0 Likes

VeriSign VIP Authentication Service

Does PAN OS 3.1.2 support VeriSign's VIP Authentication Service for the SSL VPN connection? We are looking at setting up two-factor authentication for our VPN clients.

http://www.verisign.com/authentication/two-factor-authentication/vip-authentication

...

mharding by L4 Transporter
  • 2674 Views
  • 2 replies
  • 0 Likes

Communication Problem between Lan and DMZ

Hi,

We have PAN 500 device with us..deployed in L3 mode.Lan and DMZ communication is happening only if i have NAT rule in place with the destination zone and interface mentioned (but no natting be done)between them.Do we really require a NAT rule in

...

Missing data in TRAFFIC logs

Hi

PANOS ver: 3.0.5

Device: PA-2020

Exported traffic logs contains information about which protocol is used, however if the protocol is ICMP the type and code is not displayed. I a specific case im looking at right now both application and protocol is i

...

u2521 by Not applicable
  • 2212 Views
  • 1 replies
  • 0 Likes

Missing fields in URL log

Hi

PANOS ver: 3.0.5

Device: PA-2020

Did some exports of the sublogtype: URL and got the following columns/fields:

Domain,Receive Time,Serial #,Type,Threat/Content Type,Config Version,Generate Time,Source address,Destination address,NAT Source IP,NAT Dest

...

u2521 by Not applicable
  • 2472 Views
  • 1 replies
  • 0 Likes
  • 23639 Posts
  • 107 Subscriptions
Top Liked Authors
Labels