This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 264 Views
  • 0 replies
  • 1 Likes

url category with wildcard

I have to create a url category which is would allow anything coming from url

x.y.z.com/api-*

every time i try to create that custom url category i get the following error

"Consecutive asterisks (*) in a URL wildcard pattern can severely impact perfo

...

Resolved! Objects Capacity on PA-3400 Series

Hello,

 

Despite my research on the site, I am looking for the following features on the PA-3400 series:

- Max Virtual Routers

- Max. Security Zones

- Max. Security Rule

- Max. Address Objects

- Max. Address Groups

...

Thank you for your help

site to site vpn. IKEv2 and fragmentation?

When configuring a site to site IPSEC tunnel, i see that the IKE gateway can be set to allow packet fragmentation or not (DF bit) when using IKEv1. However the option isn't present for IKEv2. Other vendors, such as Cisco, allow the DF bit to be set f

...

Resolved! meaning of ms.log - update system boot?

Hi all,

 

I am checking the log of firewall to know the states of firewall issue.

I found that there are some log in ms.log as show below

2022-XX-XX XX:XX:XX.XXX +0800 update system boot: count = YYYY, timestamp = 2022/XX/XX XX:XX:XX

 

What is the meaning

...

JoeKwok by L2 Linker
  • 3118 Views
  • 1 replies
  • 0 Likes

GlobalProtect - Multiple Gateways on One IP Address

Good day,

 

Our PA-500 is currently on PANOS 7.0.5-h2. We want to configure GlobalProtect - Multiple Gateways using the same IP Address. Is this possible?

 

We tried to follow the instructions here:    http://dsg0.com/t/palo-alto-networks-globalprotect-w

...

WCCP visibility

Hi All.

Yesterday we tried to put PAN Device on a POC with a customer just before traffic reach their Proxy solution. Customer redirect using WCCP web traffic from router to Proxy and we used a PAN port on Palo Alto to receive that WCCP traffic. The P

...

CPU core and memory list for each model

Dear Team,

 

I can check the log storage and number of NICs on the compare site and spec sheet provided by paloalto.

 

However, I cannot check the CPU core and main memory for each model.

 

If I have a device, I can access the firewall and check it, but if

...

Resolved! HTTP OPTIONS Method Enabled on Panorama

Hi All,

I got Vulnerability HTTP OPTIONS Method Enabled on Panorama, the status show OK.

curl -k -v -X OPTIONS -x "" https://10.10.10.10/restapi

 

* Mark bundle as not supporting multiuse
< HTTP/1.1 200 OK
< Date: Wed, 27 Apr 2022 02:47:02 GMT
< Content-Typ

...

Resolved! User identification and WinRM on HTTP

Hi to all, before to write i red some post here on the community and i just configured my NGFW and windows domain controllers.

Becuase i have every 3 sec an alert about "The server-side authentication level policy does not allow the user AAA\BBB SID (

...

Resolved! Does PAN-OS VPN functionality support MFA?

Hey guys,

 

I'm looking at moving off Sonicwall NSA 3600 and onto a PAN appliance. One factor is that I'm currently using Sonicwall's VPN functionality which has some simple, built-in MFA in the form of TOPT codes that the user must put in each time th

...

Zone Based Policy in PANOS SD-WAN (not PRISMA)

Hello,

In PANOS SD-WAN (not PRISMA), you must either use predefined zones (zone-to-branch, zone-to-hub, etc.), or you can map pre-existing zones to the predefined zones in Panorama.

 

Before SD-WAN, using IPSEC tunnels, we could give each tunnel/branch

...

JayGee by L0 Member
  • 1658 Views
  • 1 replies
  • 0 Likes
  • 23630 Posts
  • 107 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks