General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 41 replies

Recommended User-ID settings

I need some help understanding the recommended settings for Pan-OS agentless User-ID. First, here are my current enabled settings.Server Monitor tab: I have "Enable Security Log" checked. Server log monitor frequency is 20, server session read freque...

ce1028 by L3 Networker
  • 5 replies

Resolved! How to add domain security group superuser access

Hello, I would like to add a domain security group superuser access to Panorama and devices. So any users in the below groups access to both panorama and firewall’s. Superusers - CN=PA Superusers,OU=Global Groups,OU=Ad Australia,DC=ad,DC=com,DC=auSup...

What the heck is in /pancfg?

Hi all, I'm trying to figure out what is taking up all the space in the /opt/pancfg filesystem on my Panorama appliance. I've deleted all the old saved configurations and lowered the number of config audit versions from 100 to 50. (Each of these vers...

Panorama Templates and default vsys settings?

What is the purpose/consequence of a having a template with a default vsys set to either : vsys1 or None -This is found under: panorama/templates/(specific template name)/Default VSYS/(option of vsys1 OR None) I'm finding that our firewalls with mult...

Sec101 by L4 Transporter
  • 1 replies

GlobalProtect Configuration Opinions

Greetings! Just to be upfront, I have my configuration working for the most part but I'm interested to hear if there's not a better/safer/quicker way of bending GlobalProtect to my needs. Please feel free to chime in with ideas, opinions or suggestio...

mbahen by L1 Bithead
  • 2 replies

Resolved! Loosing USER-ID

Our AD based USER-ID seems to keep loosing the IP/USER association. We only have a few rules which work some of the time and then fail with a blank user. What's the best solution to get it 100%??? Rob

Resolved! different wildfire version

Hello, We have a couple of PA3020 but only one of them have different wildfire version as currently installed once we saw failed wirdfire update messages. Is it normal behaivior to have a different wildfire verison instllaed even though it is the sam...

Security +

I’m studying for the Security + Exam. Any suggestions so I can pass the exam. I plan on taking the exam in February 2019. Thanks in advance

ShiemB by L0 Member
  • 3 replies

Specific channel allow Youtube - Not working

Hi, had a requirement of allowing specific channel in youtube. Follwed this document and everything was working as expected . ... by L3 Networker
  • 0 replies

Resolved! 5250 HSCI port compatibility?

Greetings all, I should be getting our new 5250 firewalls in any day now and I'm trying to get my cable shopping list together so we can start working on our install process. I noticed the HSCI port for the A/S config uses a 40/100 port and, giving t...

jsalmans by L4 Transporter
  • 1 replies

Resolved! URL Filtering - TLS 1.3 Website

Hi,I am new to Palo Alto Firewalls and am in the middle of testing some of the functionalities provided. One of which is URL Filtering. I have been able to clone the default URL Filtering Profile. I then added a website to the blocked list. Then assi...

tpmeier by L0 Member
  • 1 replies

Resolved! VM-500 will it run with 6xCPU?

Hi All, We currently have one customer with two clusters running VM-300, but facing dataplane CPU utilization. Support team has upgraded the VMs to 6xCPU (without knowing that VM-300 only support up to 4). Right now VMs are with 6 CPUs allocated and ...