General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 418 Views
  • 0 replies
  • 2 Likes

Resolved! External Palo Alto Dynamic List

Hi Team 

 

 

Have a PA220   licensed for Wild fire, Threat prevention, and PANDB URL filtering .

 

Though I had configured the External Dynamic List based on the best practice, I could not get the default  PaloAlto Dynamic IP lists feed : Palo Alto Networ

...

User-id agent timeout integration with dhcp lease timeout

Hi all,

let's suppose these conditions:

 

- interface with dhcp enabled, 24 hours lease timeout, ip range (for example) 192.168.3.0/24

- user-id agent enabled with 45 minutes timeout

- virtual machine environment with non persistent vm, so when a machine

...

N2Z2 by L2 Linker
  • 2965 Views
  • 5 replies
  • 0 Likes

Resolved! No hits on source NAT

Really basic setup here.  I'm just trying to get a lab setup going but I'm not able to get out to the Internet.  I'm not seeing any hits on my NAT policy and therefore no hits no my security policies.  To my knowledge this is setup correctly.  I can

...

NAT-config.PNG
AtosErik by L0 Member
  • 3485 Views
  • 2 replies
  • 0 Likes

url category with wildcard

I have to create a url category which is would allow anything coming from url

x.y.z.com/api-*

every time i try to create that custom url category i get the following error

"Consecutive asterisks (*) in a URL wildcard pattern can severely impact perfo

...

Resolved! Objects Capacity on PA-3400 Series

Hello,

 

Despite my research on the site, I am looking for the following features on the PA-3400 series:

- Max Virtual Routers

- Max. Security Zones

- Max. Security Rule

- Max. Address Objects

- Max. Address Groups

...

Thank you for your help

site to site vpn. IKEv2 and fragmentation?

When configuring a site to site IPSEC tunnel, i see that the IKE gateway can be set to allow packet fragmentation or not (DF bit) when using IKEv1. However the option isn't present for IKEv2. Other vendors, such as Cisco, allow the DF bit to be set f

...

Resolved! meaning of ms.log - update system boot?

Hi all,

 

I am checking the log of firewall to know the states of firewall issue.

I found that there are some log in ms.log as show below

2022-XX-XX XX:XX:XX.XXX +0800 update system boot: count = YYYY, timestamp = 2022/XX/XX XX:XX:XX

 

What is the meaning

...

JoeKwok by L2 Linker
  • 3201 Views
  • 1 replies
  • 0 Likes

GlobalProtect - Multiple Gateways on One IP Address

Good day,

 

Our PA-500 is currently on PANOS 7.0.5-h2. We want to configure GlobalProtect - Multiple Gateways using the same IP Address. Is this possible?

 

We tried to follow the instructions here:    http://dsg0.com/t/palo-alto-networks-globalprotect-w

...

WCCP visibility

Hi All.

Yesterday we tried to put PAN Device on a POC with a customer just before traffic reach their Proxy solution. Customer redirect using WCCP web traffic from router to Proxy and we used a PAN port on Palo Alto to receive that WCCP traffic. The P

...

CPU core and memory list for each model

Dear Team,

 

I can check the log storage and number of NICs on the compare site and spec sheet provided by paloalto.

 

However, I cannot check the CPU core and main memory for each model.

 

If I have a device, I can access the firewall and check it, but if

...

  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels