General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 887 Views
  • 1 replies
  • 8 Likes

Access rule simulation

Does anyone have any idea how we can do access rule simulation from monitoring logs in PAN 820. Any automation or tool recommended?

ZTP Models can be deployed as a traditional models?

Hello guys, I want to know if someone has seen this behavior with Port Management Configuration on ZTP NGFW Models ... The IP address, Netmask and gateway shows an incorrect value 0.0.0.0 or Unknown, but the CLI shows the correct configuration parame

...

egarantiva_1-1616164599996.png

Resolved! Using scripting mode to modify existing security rules

Hi,

 

   I was wondering if anybody has experience working with the scripting mode in the way I need.

Using the following commands, it is possible to add a single application or service to a rule:

set device-group INTERNAL post-rulebase security rules SE

...

Always-UP IPsec

 

The ipsec-tunnel comes up only when there is interesting traffic destined to the tunnel or when the tunnel manually initiated.


That leads to problems in our monitoring. I'd like to ask if there is a workaround to make the VPN always-up without need t

...

aabozaid by L1 Bithead
  • 3099 Views
  • 3 replies
  • 0 Likes

Global Protect not working with Big Sur on PA 820

Hi all,

 

I Use Global Protect  version 4.13 on a PA 820 Os 10.0, after updating my Mac to Big Sur i vant connect to the Palo anymore.

The strange thing: when i use the same Mac to connect to another Palo in our domein it works.

The error: failed to get

...

Resolved! Registration now open - Interactive Event!

Hi everyone,


If you haven’t already seen, registration is now open for our first interactive event all about the Best Practice Assessment (BPA) tool! 

 

You will be able to connect with subject matter experts, share best practices, and learn how this

...

jdelio by L7 Applicator
  • 2452 Views
  • 3 replies
  • 1 Likes

Resolved! EDL in vsys environment

Hello,

 

We have a pair of 5250 running PANOS 8.1 with 125 vsys.  We want to deploy EDL to block well known attackers.  My understand is the EDL has a limit of 150000 entries for IP list.

 

If I create a shared EDL (type IP list) with 10 entieres and cre

...

VPN socket closed

Hi All,

 

I have a user who connects via a thin client with GP to our network. Actually we have around 50 users, but this one user has many problems. She gets disconnected multiple times a day. She tried multiple connections: her current residence with

...

olloczky by L1 Bithead
  • 2923 Views
  • 5 replies
  • 0 Likes

Palo Alto VM No Internet in Browser

Hello,

I have PaloAlto on GNS3 i set a policy from inside to outside and i also do the NAT policy Plus the virtual router configuration.
from inside i can ping to internet but i cannot browse, is that related to licence or i miss something?

Thanks.

Resolved! Decryption Breaks Palo Alto Dynamic Updates

I'm having an issue where my Decryption policy is breaking my Palo Alto Dynamic Updates.  When I turn on decryption, and then attempt to download an Antivirus, Applications and Threats, or Wildfire update, I'm given the message "Invalid content image

...

RSteffens by L3 Networker
  • 3878 Views
  • 7 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors