General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 997 Views
  • 1 replies
  • 9 Likes

Session behavior when resource limit is reached.

Hi,

I have been checking my PA-2050 with PAN 4.0.3 and I realised about new command in sesion configuration. The exact command is:

set deviceconfig setting session resource-limit-behavior  with the options bypass and drop. Default option is drop.

I had

...

Resolved! Cannot see Dynamic IP lists

We are currently going through the process of setting up new PA-820s for use in our environment.

We should have access to the following External Dynamic IP lists on these devices based on our licensing, however they are not being displayed.

I have enab

...

Old PA220.png
New PA820.png

Resolved! Passive device aggregate interface down

I have the firewall 3220 model in the 9.1.11 version in HA mode.

I can see all the aggregate interface in passive firewall is showing down. i want to know is this expected behaviour or not because I checked the below KB for some mode it is expected be

...

Increase CPU on VM-series

Hello

As PAN-OS CLI is locked, I don't have the ability to run a script and increase the CPU of my VM-series instances in Azure VMS.

I'd like to test and demonstrate the scaling (IN/OUT) feature regarding CPU level (high/low).

 

Did someone knows a way/s

...

FatihT by L1 Bithead
  • 1315 Views
  • 1 replies
  • 0 Likes

Resolved! Full cone/Port Restricted/Restricted NAT

Hi all,

I need to make work a voip server behind my pa-3020. The server is using stun protocol and requires that nat is not symmetric.

I've tested a public stun server (for example stun.telbo.com on port 3478)  using pystun3 (a python tool to retrieve

...

N2Z2 by L2 Linker
  • 2553 Views
  • 3 replies
  • 0 Likes

Resolved! Dropbox uploaded files not determined correctly

Hello, after implementing SSL decryption we're trying to improve visibility and noticed that files to dropbox web aren't shown correctly

 

When downloading from the dropbox website, the file names are correctly shown, but when uploading the files are r

...

Megrretz by L1 Bithead
  • 1736 Views
  • 2 replies
  • 0 Likes

Query about EDL in an VSYS environment

Hi Folks, 

 

We had  5 vsys active on the firewall. We had configured separate EDL for each vsys.  My query is when we check the EDL Maximum capacity on the firewall will it show the Total EDL capacity utilized for 5 vsys capacity utilized by each vsys

...

Data Filter

Hi,

 

I want to block all Microsoft files and pdf files data transfer through data filter, Could you please help me at 'file property' and 'property value' in file property data pattern 

 

 

Thanks

Dhananjay

Resolved! IpSec Tunnel Phase2 Red But Ike Side Green

Hi,

 

I have several TpLink Archer Mr400 4G Router. I setup Ipsec VPN tunnel between PA-220 and them many times. But new one is not success at Phase2.

 

Phase1 IKE is green so devices communicate. But Phase2 Tunnel Info is red and i can't see any tunnel

...

Tplink_ArcherMr400_phase2.PNG
PA_Phase2_ipsecCrypto.PNG
PA_Phase2.PNG
tsenturk by L0 Member
  • 1533 Views
  • 1 replies
  • 0 Likes

programmatically create address objects.

Hi,

 

Is there any way to programmatically create address objects, via API or something?

I have a list of approx. 50 subnet ranges for which I need to create corresponding address objects in the firewall, hence was thinking if there is a quick and ea

...

fatemabw by L0 Member
  • 830 Views
  • 0 replies
  • 0 Likes
Top Liked Authors