General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Regarding Bootstrap issue

Hi Team,

 

We are facing issue with bellow error while starting the firewall up.

Also sometimes the firewall is not coming up so we need to reset the firewall and have to upload the configuration files to bring the production up.

Please provide a solutio

...

Identify Intune managed ActiveSync devices

Our management decided to move our mobile devices from a 3rd party MDM (which included an email client, VPN tunnel, AS proxy, etc.) to Intune. Now I have to open our Exchange server to the world via Palo. Is there any way to identify our Intune manag

...

Evahi21 by L1 Bithead
  • 1371 Views
  • 0 replies
  • 0 Likes

Resolved! Configuring tunnel ike-gateway with API

I am at my wits end with this. Can anybody tell me what I am doing wrong here? I'm trying to make a script that will use the API to stand up L2L VPN tunnels, and there is something in this request that is making the firewall puke (error 18 "Malformed

...

SDWAN traffic - where does it go, can I show?

A few days ago on one of our Palo Alto firewalls the primary (MPLS) line was down (not the provider router, somewhere between there was a broken cable) and traffic was routed over backup (Internet). 
Because provider router was up, the interface on Pa

...

ChrisCon by L2 Linker
  • 1798 Views
  • 1 replies
  • 0 Likes

Resolved! Allow web-browsing but not for users?

Hello everyone,

 

First post so please be gentle. I need to have a security rule to allow the Bitdefender application on my servers. Part of the Bitdefender application requires explicit web-browsing. That is obviously easy enough to do. My problem is

...

temperature

hi,

 

I had a firewall palo alto with the version 9.0.12 and i upgrade the version to 9.1.11 after this the temperature pass of 30 grades to 60 grades.

 

Why after upgrade the temperature changed?

 

 

Kind regards

BigPalo_0-1633528948057.png
BigPalo by L4 Transporter
  • 2183 Views
  • 3 replies
  • 0 Likes

Psiphon blocking in a non-decrypted network

Hello Bros'

               Recently, I have issues with the application called Psiphon, this app is eating my internet based on authentication portal page.

As I check previous threads in the community, all speaking about a decrypted traffic or blocking

...

Decryption Exlusions

As you all know, Palo Alto gives you two ways to exclude sites from decryption.  Are there any scenarios where excluding from SSL Decryption Exclusions works but setting the same url in a decryption policy doesn't?

 

I ask because I've had the scenario

...

ce1028 by L4 Transporter
  • 1746 Views
  • 1 replies
  • 0 Likes

Monitor aux ports through SNMP

Is it possible to see the aux ports on a PA-5200 series firewall through the SNMP interface mib?  These are currently the interfaces that show up, the aux ports are not there.  This is on 9.1.11, PA-5250 to be specific.

 

ifName.1 = STRING: ha1-a
ifName

...

Research

Hi community. I am a student and I would like to know which product/feature of Palo Alto brought it to the center of the map as in, gave them the recognition. 

 

P.S. This is for my coursework and it's a 3000-word assignment. So, I want to focus on the

...

Sm0001 by L0 Member
  • 1852 Views
  • 2 replies
  • 0 Likes

bgp troubleshooting

Hi I'm having issues with bgp routes not propagating I know that I can click on view routes under the virtual router section, but was wondering if I could see the bgp errors in syslog, doesn't seem like I know the search string if that is possible, o

...

mpugina by L0 Member
  • 6976 Views
  • 1 replies
  • 0 Likes

PA default interface state

Hello community 

I've been searching but couldn't find an answer so:

What is the default interface state (out of the box firewall)? Is it forwarding L2 packets? Can I create a L2 loop by connecting two interfaces between FW & a switch?

 

PANOS 10.x - share interface in Multi-vSYS mode

Hello All,

 

We are working on a design to move Cisco ASAs firewalls into PA 5260 with Multi-vSys mode enabled, so each Cisco ASA is a separate vSys. 

 

While everything else looks like nice and easy-to-convert, we have problems with shared interface. In

...

  • 24034 Posts
  • 102 Subscriptions
Top Liked Authors
Labels