General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone, Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June. This event will cover the following points related to the newly unveiled Zero Trust Network Security: Secure access to the right applicat...

seattle-launch-live-community-r2b-1100x120.jpg
jdelio by Community Team Member
  • 446 Views
  • 1 replies
  • 4 Likes

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 18131 Views
  • 41 replies
  • 32 Likes

Resolved! NAT over IPSec tunnel.

hello all I have an IPSEC tunnel with ASA(99.1.1.23<> 123.2.4.105), the tunnel is UP but the source client is not able to access the destination server.The proxy ID on PA side islocal: 1.1.1.1remote: 2.2.2.2 both sides are using nat for the client/se...

DongQu by L2 Linker
  • 750 Views
  • 8 replies
  • 0 Likes

SSH to Management interface (RADIUS Auth) PAN OS 10.0.4

Working on an HA Pair of PA-820 firewalls and just finished configuring auth for management interfaces. Went to test, and found that the firewall said auth succeeds, but the SSH connection immediately drops. Config:Auth profile is RADIUS (Windows NPS...

D_Baerry by L1 Bithead
  • 254 Views
  • 2 replies
  • 0 Likes

Resolved! Authenticating a PC based application

We have an old vertical application that can connect to a web server via https and that populates the datain the desktop application (thick client). Mgt Team would like there to be two factor authentication. But if the thick app does not support two ...

PA-220 advertising BGP routes

Hi everyone, hope you're well. I hope somebody can help with this. I'm looking to introduce a local Internet breakout, by installing a Palo Alto 220 firewall, as the site has been reporting slow Internet recently.

BChana by L0 Member
  • 173 Views
  • 1 replies
  • 0 Likes

Template setting not working

WildFire looks like this on the Palo: But if I click on it to change it, it has a template setting: I took a look at the Stack and the one at the top has the correct setting, the one at the bottom is set to none. So that should be right, any idea why...

Manual.jpg
WF.PNG

Enabling multi vsys on a prod firewall.

I’m planning to create multi vsys on my palo alto. I just wanted to know if my existing configuration (interfaces, aggregate interfaces and rulebase) will be moved as it is to vsys1 or they need to be mived manually? I have aggregate interfaces layer...

Resolved! Monthly PDF Report

We are trying to get a report of threats and export as PDF. I used “Managed PDF summary reports” but it is allowing only to pull per day. I used custom reports and I can pull reports for 30 days, but it is much like raw data. We need something like b...

SUMMARY.png

Custom Category traffic flow issue

Hello all, I have created a custom URL category for a site and have a security policy to allow specific applications to that category but the results are inconsistent and when I review the log, when the traffic was successful the URL Category shows a...

EmptySet by L1 Bithead
  • 717 Views
  • 8 replies
  • 0 Likes

Hardware Migration PA-850 to PA-3220

Hi,Planning for upgrading PA-850 to PA-3220, Just wanted to be sure that if we download the current running config from PA-850 and import it to new PA-3220 device, will that work?Precision configuration of the PA-850 and managed by a Panorama.

PDelobel by L0 Member
  • 287 Views
  • 2 replies
  • 0 Likes

Resolved! Defining metrics for routes learned through BGP

Hi All, We have four tunnels(tunnel 1, tunnel 2, tunnel 3 and tunnel 4) configured to reach the AWS Network through BGP on an single default virtual router on the firewall and all the tunnels are up. There are three ISP in total connected to the defa...