This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4115 Views
  • 0 replies
  • 0 Likes

Resolved! Routing question with semi-private (MPLS) connection

Hello all,I currently have the following:e1/1 - untrusted - L3 interface - "Internet_VR"e1/2 - trusted - L3 interface - "Internet_VR"We have an MPLS network handled by our ISP that links remote facilities back to corporate HQ. For the most part the remote facilities can be considered "Trusted," but it would be nice to be able to segregate traff...

bradenmcg by L3 Networker
  • 6020 Views
  • 4 replies
  • 0 Likes

Resolved! Dynamic URL filtering???

What is it exactly - and is it recommended? I've seen some posts here that indicate turning it off solved some poor performance issues. I guess I'm asking whether I should turn this feature on and what will it buy me?Ver 3.1.4 PA 2020

CWillms by L2 Linker
  • 3710 Views
  • 2 replies
  • 0 Likes

Admin users AD authentication HELP

/* Style Definitions */ table.MsoNormalTable {mso-style-name:"Tabla normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-parent:""; mso-padding-alt:0cm 5.4pt 0cm 5.4pt; mso-para-margin:0cm; mso-para-margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:10.0pt; font-family:"Times New R...

Configuration of authentication profile via LDAP

Hi to all,we have a PA500 release 3.1.4.We configure an LDAP server that comunicate with a Windows 2003 DC then we create an authentication profile that use that LDAP server; finally we create a vpn profile that use that authentication profile.VPN users can authenticate only if we add the username in the "allow users list" of the authentication ...

u4353 by Not applicable
  • 3377 Views
  • 1 replies
  • 0 Likes

Group Updates

We have just moved a new PAN2020 into production and are slowing starting to move users over to the new system. We are running the following: PAN2020 v3.14 using the LDAP Agent v3.12.The firewall is not updating Group changes. I have the update set to 60 sec in LDAP Server config. I read the note that was posted on this on the 14th and am u...

Connectivity Issues

We are having an odd connectivity issue that randomly shows up on some of our machines. They pull an IP # from the DHCP server, they are able to do nslookups, but when I run a traceroute they time out after the L3 Trust port (10.2.0.1). If you let it sit for a few minutes it will suddenly start working.There is no record in the Traffic Logs of...

Odd SSL-VPN Lock Ups

We are noticing that our SSL-VPN connection, whether using the Windows or Mac client, will just lock up for five minutes at a time. The status window shows that no packets are moving at all. Has anyone else had this problem?We are running PAN OS 3.1.4 and version 1.2.0 of the SSL VPN client.

mharding by L4 Transporter
  • 2760 Views
  • 1 replies
  • 0 Likes

Resolved! SNMP Monitor a VPN Tunnel?

If I point my network monitoring system at our PAN, it sees all the ethernetx/x NICs and the MGMT NIC and a "HA" interface.Is there a way to add a VPN tunnel (tunnel.1) to the list of interfaces monitored as I'd like to know traffic passed up/down the tunnel.Thanks.

Resolved! Memory usage issue at no traffic case

I have a PA-2050 running PAN 3.1.4, There is no traffic on the device. Only the management IP was assinged to the device.But only 44MB free memory is available. Is this expected behaviour? % CPU 18 %Free Memory 44.0 MBTotal Memory 984.2 MB% Disk Usage 1 %Session Count 0

Resolved! NAT question

Hello,I have migrated a configuration from an netscreen firewall.On the netscreen on the outside interface (against the internet) there are two mip ip's configured, one of the MIP ip's are on the same subnet as the ip on the main ip. But the other IP is on a different subnet.Like this:main public ip: 192.168.1.1/29MIP ip one: 192.168.1.2MIP ip t...

NSS Labs report

Hello guys,I was reading the recent NSS Labs Report and noticed at page 5 the following:'security effectiveness was excellent. Using the default policy, the PA blocked 56,6% of attacks. After rapid tuning that consisted of changing just three settings within the policy by a Palo Alto engineer the effectiveness improved to 93,4%'.Does anyone know...

IPsec VPN

/* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-qformat:yes; mso-style-parent:""; mso-padding-alt:0in 5.4pt 0in 5.4pt; mso-para-margin-top:0in; mso-para-margin-right:0in; mso-para-margin-bottom:10....

roshithw by Not applicable
  • 3641 Views
  • 1 replies
  • 0 Likes

Resolved! Active Directory 2008 Supportability

Hello,New to PANs (PA2020s) and trying to find if the Agents are usable with AD 2008. We are migrating and want to ensure we are not about to break the authentication.Thanks in advance.

  • 24333 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks