General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Custom Report Oddity in PanOS 4.0.1

I have the following report configured and it is checked "scheduled" in PanoramaSoft Block Report { type { panorama-url { group-by day-of-receive_time; aggregate-by [ risk-of-app action category srcuser src misc ]; values [ repeatcnt ]; } } period last-7-calendar-days; topn 500; topm 10; frequency daily; query (action...

rroberts by Not applicable
  • 2282 Views
  • 1 replies
  • 0 Likes

Cisco CAPWAP

We recently brought in some new Cisco WLC's and AP's and noticed that they use LWAPP. Originally my PAN saw this traffic as an app called Xunlei...which was being blocked. After finding and creating a special category for this custom app...it started working. Then, PAN came up with this app id....so now it's identifying all 3. Has anyone els...

Panorama Management of CLI/SSH Admins

Panorama allows central management of Web UI users, but what about SSH/CLI users? Is there any way use Panorama as a CLI proxy to access managed devices in a similar manner? It seems to me that the only way to manage CLI users is via a local account on each device, which could be quite cumbersome. It may also force folks into following not-s...

mgentile by L2 Linker
  • 2308 Views
  • 1 replies
  • 0 Likes

PAN agent over WAN issue

Hi,Just had another issue to discuss about WAN Pan Agent, if you do have time, please go through.Local LAN PAN agent is configured for 10.0.0.0/8 networkWAN PAN agent is configured for site 1 network 10.12.111.x/24But I have users from Site to with network 10.13.111.x/24 as well logging on to the same DC of site 1.I think its some AD issue, thou...

ta185020 by Not applicable
  • 2224 Views
  • 1 replies
  • 0 Likes

i'd like to know an average disk usage for PA appliance.

Hi all.somebody who has a datasheet of disk usage for every single appliance including PA 5000 series??Of course I know it is impossible to calculate correctly because it is depend on customer’s networks environment. What I want to know is that just rough disk usage for every single appliance.Below is an example.(below table is an incorrect dat...

willstech by L3 Networker
  • 2960 Views
  • 2 replies
  • 0 Likes

Resolved! Cannot ping L3 interface except mgmt?

Hi all,I have a classic setup... mgmt port, one outside, one DMZ and one inside L3 ports, NAT policy defined and a bunch of security rules.Outside, Inside and DMZ ports all have their IP addresses defined, but I cannot ping them. Not even inside port from inside network. Any ideas?

Active Active HA on PAN 4.x

PAN 4.x is supporting Active-Active High availability.Clearly, most firewalls also support Active-Active HA but, they need Layer-4 switch to get full performance.In other words, most of firewalls also support Active-Active, but it is in name only in the real network world without Layer-4 switch.How about Paloalto on Active-Active? PAN also need...

willstech by L3 Networker
  • 5751 Views
  • 6 replies
  • 0 Likes

L3 install issue - two internet lines of L3 mode installation on same networks

Hi all.One of demo customer has two internet lines from same ISP and same network. PA appliance runs on V-wire mode behind L3 office router at now.But, customer wants to change network like attached file therefore, PA should be changed from Vwire to L3 router mode.(Refer to attached network diagram. Ultimately, Router will be changed to PA appli...

willstech by L3 Networker
  • 4069 Views
  • 3 replies
  • 0 Likes

SSL VPN client ports

We have a few officers that connect from a remote location with a firewall of its own. They are all using the SSL VPN client to connect back to home. I can pull up the https://external-ip and login, but when the connection starts up i get a Disconnected; unable to connect to remote client. I need to know what ports the SSL VPN client uses to c...

Does Netconnect work with Windows 7 Service Pack 1?

Netconnect version 1.2.0-402 connecting to PANOS 4.0.1 running on Windows 7 SP1 (32bit) have been successfully tested using both IPSec and SSL protocols. We received some reports from clients using other VPN technologies that SP1 broke their client VPN connections.

jdgregg by Not applicable
  • 5340 Views
  • 2 replies
  • 0 Likes

URL Filtering Bug filter bypassed

HI,I am having issues with the URL filters for example if i have a blocked porn site www.xxx.com and i enter www.xxx.com.(dot) it bypasses the filter and is allowed through. I am running version 3.1.6

  • 24401 Posts
  • 123 Subscriptions
Top Solution Authors
Labels