General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Reference guide to configuration xpath and entry?

Is there any PA published document for the node paths and entries in the configuration file? And how do you tell if something is a path or an entry in the config? It seems extremely painful to try and figure out an xpath to pull the data you want. Se

...

Resolved! Prisma SD-WAN application SLA setup?

Where can I know how to setup the application SLA condition?

 

I read some Prisma SD-WAN Administrator’s Guide, I seen there are lot of function to enable Path selection and monitoring based on the Link Quality, SLA.

 

But how can I set the SLA of the ap

...

JoeKwok by L2 Linker
  • 2999 Views
  • 3 replies
  • 0 Likes

Antivirus Security Profile

Hi everybody,

 

i've enabled and configured an antivirus security profile and attached to a security policy for web-traffic

 

as i see web-traffic can be antivirus-scanned, but my problem is: traffic is identified as ultrasurf with port 8080

 

so antivirus

...

Resolved! Can't advertise static route over ebgp

Hi all,

 

i'm not having much joy getting this working.

I have created a static route for a subnet which I am trying to advertise to an eBGP peer.

I then created a redistribution profile with only static enabled

I then added that profile under bgp Redist

...

Mushussu by L0 Member
  • 4246 Views
  • 3 replies
  • 0 Likes

Resolved! Static Route Question

I just have a question about static routing on the palo alto and how it deals with traffic.

 

We one VR and a default network route to send traffic for 10.20.0.0/16 out via ethernet 1/5 , zone core.   There is another interface 1/6 configured with 10.2

...

MistryJa by L1 Bithead
  • 2031 Views
  • 3 replies
  • 0 Likes

compatibility

Dear Gents.

Kindly, i have a Cisco catalyst 9500 switch, my question, what is the last product of Palo alto firewall compatible with my cisco 9500 switch?

 

thanks. 

 

SDWAN - DIA anypath -Scenario?

Im still trying to get a grasp of the concept of SDWAN - DIA anypath.  The components and configuration are pretty straight forward but the "why/when" is not making sense.  The main scenario that's proposed is "when you want to fail over to using the

...

smarcyes by L1 Bithead
  • 3362 Views
  • 6 replies
  • 0 Likes

In Progress: Device Updates / Content Publishing

Incident Report for Content Publishing is Failing: Palo Alto Networks Cloud Services — If you are unable to retrieve new updates for devices, please stay up-to-date on the issue and its resolution via the status page.

jforsythe by Community Team Member
  • 1806 Views
  • 1 replies
  • 1 Likes

using Snmp3 to backup PA

Solarwinds Network Config Manager has the ability to use SNMP3 to backup PA config. 

See below link.

https://thwack.solarwinds.com/product-forums/network-configuration-manager-ncm/i/feature-requests/backup-palo-alto-configuration-with-solarwinds-ncm-co

...

Resolved! Dynamic IP and Port - Session Browser s2c

Hi All,

 

Firstly many thanks for checking out my query.

 

I have a virtual router that has an ISP connection. This ISP has assigned us a /30. I have configured an interface on the FW with the designated add from the /30, this address is used to NAT

...

DForde by L1 Bithead
  • 1523 Views
  • 1 replies
  • 0 Likes

MFA no longer active/available at all

Hello,

i read the info from april 14th, that mfa is mandatory in the future.

Before, i had mfa enabled with the authenticator app, which worked fine.

Since the information, no mfa at all is active/available on the account.

Access to PA-200 Web GUI is Denied.

When I open up a https://if_of_pa-200

I get access denied message with You dont have authorization to view this page.

I have logged into this firewall many times before but have not for several months now.

I can use putty to get into the console.  I fou

...

Omni918 by L1 Bithead
  • 4612 Views
  • 10 replies
  • 0 Likes
  • 23590 Posts
  • 103 Subscriptions
Top Solution Authors
Top Liked Authors
Labels