General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 348 Views
  • 0 replies
  • 2 Likes

External user access to cloud app through firewall

Hello,

Currently we are using an application hosted in cloud (Azure) which is being accessed by LAN users only through a Site-to-Site IPSec tunnel.

Now we want to give access of this Azure application to external users(they don't have LAN access).

We wa

...

OFHydIn by L0 Member
  • 1292 Views
  • 1 replies
  • 0 Likes

Resolved! how to whitelist Akamai downloads ?

How do yuo configure a correct FW rule to only allow downloads for a specific user from a specific URL, but the content is hosted on akamai networks ?

 

I configred a FW rule with the URL of the server as FQDN in the destination field and allowed downl

...

DaxVC by L2 Linker
  • 10927 Views
  • 5 replies
  • 0 Likes

real time interface monitor

I have an interface connected internet line with bandwidth 10MB can i monitor B.w utlization real time , meaning can paloalto draw a graph time and b.w at every moment i can see ultization may 5 MB ..5.1MB 9MB or something like that . or i must use a

...

PBF over VPN tunnel

Hello,

 

I try to create a route forwarding from a Palo Alto in one AWS account to a Palo Alto in another AWS account.

The Palo Alto in account A is creating a VPN to a Virtual Private Gateway  in account B. THe VPN is up and we can manage the firewall.

...

pbf.jpeg

lacp neg failed for sec then came up

got email alert

 

SYSTEM ALERT : critical : LACP interface ethernet1/21 moved out of AE-group ae1. Selection state Selected

 

system log shows

 

( severity neq informational ) and ( eventid eq nego-fail ) and ( description contains 'LACP interface ethernet

...

MP18 by Cyber Elite
  • 4187 Views
  • 6 replies
  • 0 Likes

PA-220 is not allowing inbound traffic

HI PA Community! I have a very odd issue. My Palo will not allow any inbound connection. I was setting up GP and wondered why I can't hit the portal.  Then realized I can't even PING the public IP.  I am using a dynamic PPoE connection to my ISP. I c

...

DJ_Palo by L1 Bithead
  • 1503 Views
  • 1 replies
  • 0 Likes

No way to unsubscribe?

The unsubscribe link at the bottom of the newsletter takes me to a page that only has a "Subscribe" button. An unsubscriber should not have to agree to Terms of Use and a Privacy Statement.

Easiest way to find and replace Interfaces

What is an easy way to find and replace Palo Alto interfaces?

 

Let's say for example I am combining a bunch of interfaces such as ethernet1/9 and ethernet 1/10 into an aggregation group (i.e. ae1) and adding these as tagged VLANS i.e. ae1.123, ae1.456

...

birkhojk by L2 Linker
  • 2026 Views
  • 1 replies
  • 0 Likes

Resolved! Wildcard certificate for management interface access

Hi,

 

A client is trying to install a wildcard certificate on their firewall for management access, but is receiving a certificate error in the browser. 

 

Is the below the correct way to generate the required CSR for the firewall for a wildcard cert

...

BenPrice_0-1646699239332.png
Ben-Price by L4 Transporter
  • 4312 Views
  • 5 replies
  • 0 Likes

SDWAN Failover issue

Dear Team,

 

 

We Are facing issue in link failover and internet SDWAN 

 

we are unable to get the internet using SDWAN 

 

so pls align the engineer

Pan Commit Changes By User

An intriguing feature of PAN OS 8.0.9 is the ability to commit your own changes as opposed to all candidate config. This would be great because it's often that two or more engineers will have changes that overlap pending the approval chain. But if I

...

Resolved! GP / PA GUI fault

Hi, 

 

I currently have Palo running within a EVENG environment.

I have set up Global Protect, the problem seems to be every time I try to log into GP using an AD account. I am automatically logged out of the Palo GUI. Furthermore, the username/password

...

Vimz888 by L1 Bithead
  • 2649 Views
  • 3 replies
  • 0 Likes
  • 23672 Posts
  • 108 Subscriptions
Top Liked Authors
Labels