General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Mobile Devices (Apple & Android)

Our school district has started purchasing mobile devices, the iPad2's and some Xooms.I've noticed in the Monitor logs that they don’t always fall until the default rule? So far two have been using the Admin rule which opens all but Adult content. These devices are not logging into the domain, they do not requester with DNS but they do get the...

Resolved! Application Choice in Security Policy

All,I am setting up a security policy that will allow inbound ssl traffic only to a secured web server. The NAT rule is already created but I have a question about the application choices for the security rule. If I just list ssl as the application will that work or do I also need to have web-browsing added also?Ken

tohoken by Not applicable
  • 2412 Views
  • 1 replies
  • 0 Likes

Palo Alto Site Survey

Hellofor my job, i will need to do a site for the installation of Palo Alto Firewalls (not still decided if it will be a cluster or not)Do soemone has some experience for that? What does i need to consider? Power supply, rack space, connectivity?Thanks for help

mmichel by Not applicable
  • 2102 Views
  • 1 replies
  • 0 Likes

Drive By Downloads

We turned on block/continue protection for .exe and PE files yesterday, but we're having issues with some sites not showing the page at all and sometimes the window is so small and not resizeable.This happens in both IE9 and Firefox 3.6.I was trying to download from cnet downloads and the links were basically all broken.I tried to download winFF...

Can you use the PANOS 3.1 style (CSS) in PANOS 4.0 GUI?

Is it possible to replace the PANOS 4.0 styles with the ones from PANOS 3.1? The higher-contrast colors that were used in PANOS 3.1 were much easier on my aging eyes. The very subdued PANOS 4.0 colors make it difficult to differentiate between different states - enabled/disabled/global/local rules for example. The new styling seems to me to be a...

PANOS 4.0.2 - User Management for Captive Portal

HiI'm now running PANOS 4.0.2 on both Panormara and 4050s. I have some local user accounts setup on the 4050s to authenticate some Captive Portal users for specific services. I was under the impression that this would be more integrated into Panorama with the 4.0.x release. But I can't see what I can do that is better. I thought it meant I may b...

fmd by L3 Networker
  • 2623 Views
  • 2 replies
  • 0 Likes

Page Redirect after Web Block

Hi,We use web filtering of Palo Alto to block websites. Is it possible to redirect users to another website instead of the default block page?Thanks,Rex

Resolved! Configuring OSPF

I am having some fundamental problems configuring OSPF. Here's the simple configuration:PA interface IP: x.y.200.94/29Cisco interface IP: x.y.200.85/29First problem...From the PA CLI I can ping the remote Cisco router just fine:admin@fs> ping source x.y.200.94 host x.y.200.89PING x.y.200.89 (x.y.200.89) from x.y.200.94 : 56(84) bytes of data...

quist by Not applicable
  • 4840 Views
  • 2 replies
  • 0 Likes

4.0.1 not as smooth as it could be...

Hi,not sure if its me, but the new interface seems very slow compared to the previous version and if I am honest I dont think some of the interface changes are for the better...But its definately slower to complete tasks under 4.0.1 than 3.1.7Just my thoughts...Darren

djbisbey by Not applicable
  • 3730 Views
  • 4 replies
  • 0 Likes

dscp and qos

hi all,can someone show me the way how i can map traffic with a specific DSCP tag to a specific class in qos profiles? only one place where i saw notice about DSCP - it's in security policies. in general, i want to recreate QoS policies on PAN device from my old router.

Palo alto to Checkpoint VPN

Is there any body tested the vpn functionality between palo alto to a policy based vpn such checkpoint? Can you guide me the steps on what to do with regards to what policy to allow and how to configure the vpn parameters? also i noticed that there is no option for ipsec sa for group2 with nopfs in palo alto, do you know if this is a limitation ...

u6960 by Not applicable
  • 6006 Views
  • 4 replies
  • 0 Likes

Unable to delete old software image.

Hi.Following a recent discussion regarding disk space on the forums, I decided I'd delete some old software images off my PA which are no longer in use.Trouble is, one of them won't delete!Has anyone seen the following error message when attempting to delete an old image?"Can't purge image 'panos-3.1.6' installed on active or backup sysroot"The ...

dagibbs by L4 Transporter
  • 11143 Views
  • 4 replies
  • 0 Likes

IPSEC VPN with Cisco ISR

I'm trying to set up a site-to-site VPN tunnel with an outside company from a PA-4050 on our side to a Cisco 3925 ISR. We can't can't get phase 1 to come up, though we're confident that the relevant settings (PSK, encryption, etc..) match up. We've tried different encryption settings, but the connection just times out on both ends. Before I g...

bowings by L1 Bithead
  • 4612 Views
  • 3 replies
  • 0 Likes
  • 24400 Posts
  • 123 Subscriptions
Top Solution Authors
Labels