This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Panorama - policies and device groups

Hi All,Does anyone know if there is a way to share policies between device groups in Panorama? I have several HA pairs of firewalls and would like to use the device group functionality for administering each pair, and would prefer not having to create the same policies for every group.thank you!Andrew

abarnett by L0 Member
  • 4018 Views
  • 2 replies
  • 0 Likes

Unable to see the reports on Application command center

Hi ,We are using PA-2050 with PAN os 3.1.3. Application command center does not show the statistics on the page after a Manual restart.In the home page it shows insufficiant data.I have cleared the log for ACC ,still no change.Waiting for your valuable comments to fix this issue.Thanks,BIJILESH,Qatar.Email: bijilesh.k@mannai.com.qa

Dynamic Updates not happening to schedule

Hi,I'm new to here so if this is not the correct place, apologies.I have a PA4020 HA pair that just won't update the Dynamic Updates on the schedule, If I do it manually it works. I have another HA pair set up the same that work ok!!Steps I've taken to rectify.System log showed licence errors - ran request licence - resolved this.Rebooted both d...

onesj by Not applicable
  • 3049 Views
  • 1 replies
  • 0 Likes

Trace Session Tool

In OS 3.1, there appears to be a new tool available (reading from 3.1 Release Notes) called the Trace Session Tool. Can some one explain what this does? I am afraid I am finding the included explanation a bit vague since I do not have the OS installed to play with on my evaluation unit.Thanks!!

cnelson by Not applicable
  • 2976 Views
  • 2 replies
  • 0 Likes

Complete session captures

Hi All,In an attempt to displace a SNORT environment, with a PAN implementation for monitoring ( at this stage only ),we need to be able to replicate complete session captures for forensic's ( internal security, police etc ).Although its possible to capture packets for false positive reasons, how would I go about storing ( most likly off the app...

KatanaNZ by L3 Networker
  • 5025 Views
  • 5 replies
  • 0 Likes

URL FILTERING LOG

Hi,I am trying to configure url filtering, I would like to forward blocked url site logs to be emailed to certain group ofpeople instantly.Is it possible to do with our present appliance PA-2050 with PAN OS 3.1.Thanks in advance.Best Regards,M NagarajanMBC Group LLCDubai.

Resolved! URL Continue Timeout in 3.1.x

Hello,Did the URL Continue Timeout get changed in 3.1.x? It seems a lot longer than in 3.0.x which seens it was set for 10 minutes.Thanks

sonet by L2 Linker
  • 2628 Views
  • 1 replies
  • 0 Likes

Resolved! PAN Agent not seeing changes in AD

Hi,we have just become new users for the Palo Alto.I have created some additional AD OU's to help managed our URL filterting, however the PAN agent is not seeing the changes.We have tried the following:Reboot of both domain controllersrestarting of the pan agent service.Both of which have failed.Any help would be great.thanksDarren

djbisbey by Not applicable
  • 3153 Views
  • 2 replies
  • 0 Likes

Virtual Systems in Layer 2

/* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-qformat:yes; mso-style-parent:""; mso-padding-alt:0in 5.4pt 0in 5.4pt; mso-para-margin-top:0in; mso-para-margin-right:0in; mso-para-margin-bottom:10....

roshithw by Not applicable
  • 3599 Views
  • 2 replies
  • 0 Likes

Evaluation unit- Multiple questions

Greetings,During my evaluation of a PAN device, I have found I have many questions regarding the capabilities of the device. I won't list them all in this one post but maybe just several for now. If it would be better to list these as separate posts, please let me know.1. Does the device do any sort of reverse proxying for web servers? OWA, ...

cnelson by Not applicable
  • 3002 Views
  • 2 replies
  • 0 Likes

SSL VPN Authentication

Hi Guys,I have an issue with the SSL VPN authentication via RADIUS.I have configured the RADIUS Server with this options:Name:PANSSLAddress: 10.0.0.8Vendor Name: RADIUS StandardThe Policy and Connection Type, is as follows:Name: AccessVPNConditions: Windows User Groups, domain\domain_usersAccess Permission: Access GrantedAuthentication Method: C...

Panorama software available in seperate hardware-related versions

Hello,It is new to me. After a software refresh on the PaloAlto, the list shows more than it used to . My Panorama currently is running 3.1.1 and I like to upgrade it to 3.1.3We have PAN500 and PAN4000 boxes so i guess I have to down load 2 files, one for each type, correct?I got error when try to commit all and hope that the new updated softwar...

leole by L2 Linker
  • 2165 Views
  • 1 replies
  • 0 Likes

Evaluating- Secondary TCP/UDP connections

Having some trouble finding a way to enable the use of secondary tcp/udp connections for a rule. For example, in our current FW I can configure a rule with a UDP primary connection with a range of ports using Receive/Send, then set it up for a UDP secondary connection with the same ports only with Send/Recieve.How can I do this in PAN?Thanks!

cnelson by Not applicable
  • 3959 Views
  • 4 replies
  • 0 Likes
  • 24381 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks