General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone, Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June. This event will cover the following points related to the newly unveiled Zero Trust Network Security: Secure access to the right applicat...

seattle-launch-live-community-r2b-1100x120.jpg
jdelio by Community Team Member
  • 446 Views
  • 1 replies
  • 4 Likes

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 18131 Views
  • 41 replies
  • 32 Likes

PAN-OS SDWAN tunnel failover

Hi All, I have recently setup a SD-WAN between 2 PA firewalls. a default route was created automatically to sdwan.1. Though when one of the interface failed, it is not able to failover to the remaining tunnel which mapped to sdwan.2. May I know if I ...

Jitter when making Phone calls

Hi ExpertsThe client is reporting Latency/Jitter when making the phone calls which is traversing through the PA firewalls 5220. We've QOS policy configured for the RTP/SIP applications (User/Zone is set to 'any') with Class 1(real-time) . Also, we've...

FQDN exclusion Global Protect enforce connection

Is it possible to FQDN exclude your local domain *.localdomain when enforcing network Global Protect connection? Could this be used as a workaround for not having pre-logon configured? How/why is there not a enforce global protect connection only whi...

Sec101 by L3 Networker
  • 487 Views
  • 8 replies
  • 0 Likes

Failed to renew device certificate

Hi the device certificate is going to expire end of march.My PA trys to renew it and comes up with the following error:Failed to renew device certificate.Failed to send request to CSP server.Error: No OCSP response received(dest => 35.238.43.180) I h...

kbe by L3 Networker
  • 589 Views
  • 5 replies
  • 0 Likes

Palo Alto appliance SSL-VPN throughput

Hi all, I searched all the documents available for Palo 5220 (performance datasheet, PANOS admin guide etc) but i cannot seem to find anywhere specified the SSL-VPN throughput...only the maximum number of SSL-VPN tunnels. Is there anyway or maybe a d...

livliv by L0 Member
  • 196 Views
  • 1 replies
  • 0 Likes

Connect 2 Aruba Controllers to PA-220

We have two Aruba wireless controllers in a master / secondary configuration. Each one has a trunk port which contains about a dozen VLANs with our guest wireless traffic. The VLANs are arbitrarily assigned to the trunk ports by the controllers and c...

M200 log collector Panorama issue

Hi, I'm trying to add a M200 log collector as a Managed Collector to our central Panorama management. When I add by serial number it lists it by its serial number but not other info is pulled in and I can't add it to a collector group etc. It does ha...

StuartS by L1 Bithead
  • 168 Views
  • 1 replies
  • 0 Likes

DDNS over PPPOE

I would like to know some details about DDNS over pppoe. That feature was not available in 9.1.x series below is the document i chedked. https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/networking/dynamic-dns-overview.html However, when I ch...

Jafar_Hussain_0-1615877557334.jpeg
Jafar_Hussain_1-1615877557336.jpeg

Resolved! Query on clientless VPN

We are told that the clientless apps only works with HTTP/HTTPS based apps, and therefore we cannot use it to allow MS remote desktop. This is the problem I am trying to solve. Our users currently use their own computers at home. They connect to the ...