General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 18360 Views
  • 41 replies
  • 32 Likes

tips for adding devices to the Panorama.

Folks,We configured a devices some fays back and it is now up and running. Our plan is to add this to the Panorama and replicate the same policies which will act as a template for other devices. What care needs to be taken so that the Panorama would ...

nson2139 by L3 Networker
  • 551 Views
  • 0 replies
  • 0 Likes

3CX PBX behind a PAN-500

After about a week of trial and error, the Palo Alto Network engineers have told me that my PAN-500 does not support the 3CX phone system. I am told that a future feature request will resolve flow based NAT issue I am having with STUN traffic. Unfort...

JCapron by L1 Bithead
  • 3891 Views
  • 11 replies
  • 0 Likes

Traffic Logs - Resolve Hostname - Micrsoft Public IPs

Dear Commuity,I am very new to Palo Alto Firewalls. I saw, that you can check the "Resolve hostname" checkbox when viewing Traffic Logs. Sadly a lot of IPs are not being resolved. I examed a few random samples and notices, the IPs mostly belong to Mi...

tpmeier by L0 Member
  • 622 Views
  • 3 replies
  • 0 Likes

Resolved! Always on Global Protect and Open Wifi

I'm in the initial stages of a support case, but am curious if you all have had issues or success with this scenario: A GP user that is: pre-login / always-on / machine cert auth / no split-tunnel (0.0.0.0/0 include route) with access to their local ...

Resolved! Tunnels status VPN between Palo Alto-3260 and AWS VPC.

Folks,Typically when we build a IPSec tunnel from the AWS VPC to the on-prem Palo Alto box we get an option of 2 tunnel's from the AWS. I have options of configuring both the tunnels as UP/UP when the end point is something like a Juniper ISG-1000/IS...

nson2139 by L3 Networker
  • 1831 Views
  • 2 replies
  • 0 Likes

Resolved! Firewall - Interface High availablity

Hi All,In my scenario, i have single PA-220 for guest access. In trusted zone i would like to keep the interface lelvel (active/standby) high availablity.Interface type as L2. I couldn't do aggregate interface since it's connected to two seperate swi...

pa-220-ha.png
gpsriram by L1 Bithead
  • 516 Views
  • 2 replies
  • 0 Likes

Troubleshoot/debug scep

Our pki team has setup a scep/ndes server for us to use for new firewall we setup. The error i get in the gui is not saying anything. If I would like to start a debug on the firewall cli for scep. Where do i do that?

hbalzac by L3 Networker
  • 796 Views
  • 1 replies
  • 0 Likes

FQDN TTL shorter than refresh time

I have a problem with some sites that uses DNS round robin as loadballancer.As an examble:vs-ssh.visualstudio.com This has the TTL set to 300 sec, the PA's FQDN refresh is default 30 min.So the firewall won't cache all IP's used in the round robin, b...

Resolved! Is it possible to skip 8.0 and go straight to 8.1

Good morning everyone we are running 7.1.x right now and are wanting to move to 8.1.x. Does anyone know if it is possible to install 8.0 dont reboot then install 8.1.x then reboot or do you have to reboot after 8.0 and then reboot after 8.1.x install...