General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! LSVPN not working when NAtted via Loopback

Hi Community, I got the following problem:We have a running LSVPN with primary and secondary tunnel, which are connected on the hub on two different VRs, which sync themselves via iBGP - everything fine so far. One of the satellite sites got two ISP lines, which should be used active/passive for redundancy.Binding the IPSec tunnel on the physica...

Chacko42 by L4 Transporter
  • 9221 Views
  • 9 replies
  • 0 Likes

The specific URL is not shown in the traffic log

PAN OS 9.1.7 The following traffic log shows the specific URL The other traffic log doesn't have the specific URL, and also this log cannot be seen in the url filtering log Is this a expected behaviors or something wrong with the customer's environment?

3.png
4.png
zji by L3 Networker
  • 2867 Views
  • 3 replies
  • 0 Likes

IP SLA

Hi,Could you please help me with a small query.Do we have any concept like IP SLA to monitor an ip and deactive route in a routing table.ThanksRaj

Adobe Creative Cloud -- Block Uploads

Hello has anyone had any success with blocking the ability to upload content via Adobe Creative Cloud using the Palo Firewall ? Is it as simple as creating a rule to block UDP\443 traffic for either QUIC, the domain, or both?

Pancast: Have an Idea for an Episode?

Hey Everyone! Have you listened to the PANCast podcast? PANCast is a Palo Alto Networks podcast that provides actionable insights from cybersecurity experts to customers, helping ensure each day is more secure than the one before it. Since launching last September, PANCast has produced and published 10 episodes — including titles like “Shou...

Screen Shot 2023-02-01 at 7.41.19 AM.png
Screen Shot 2023-02-01 at 7.45.27 AM.png
JayGolf by Community Team Member
  • 1524 Views
  • 0 replies
  • 0 Likes

Change HA setup A-A to A-P

Good Day. I am looking for pointers wrt changing the HA setup from A-A to A-P mode. The existing setup is for PA-5200s and they are in A-A mode with floating IP bind to active-primary (logically active-passive) and the HA setting is locally managed. Both the FWs are connected to panorama and they have unique interface IPs and dedicated templates...

krlinks by L0 Member
  • 1579 Views
  • 1 replies
  • 0 Likes

Resolved! Palo Alto integration with Azure Sentinel

Hi All, We are currently working on setting up the Azure Sentinel for our environment and Integration of PA firewalls with Sentinel is our top most priority. However we need to understand what will be the best approach for integration. Should we integrate independent firewalls with Azure Sentinel or Panorama with Azure Sentinel or both firew...

Multiple DHCP scopes on single interface

School network here with an old Windows server running DHCP for our 10 VLANs. Would like to use our PA-3220 firewalls to run DHCP so I can get rid of the old server. Layer 3 routing happens inside the building network on the top of rack switch (Aruba 6405) DHCP Relay is also enabled on the top of rack switch since the DHCP server is on a se...

Resolved! XFF: For security Policy

Trying to implement this. https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-admin/policy/identify-users-connected-through-a-proxy-server/use-xff-values-for-ip-based-security-policy-and-logging Azure Web Application Gateway is in the front, acting as proxy. I can see packet captures for port 80 x-forward for is included But i don't see xff in...

image.png
image.png
raji_toor by L4 Transporter
  • 3231 Views
  • 2 replies
  • 0 Likes
  • 24403 Posts
  • 123 Subscriptions
Top Solution Authors
Labels