General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! URL filtering sequence in Panos 9.0

We are going to upgrade the PAN NGFW from 8.1 to 9.0

I have below queries

case 1 : if we have below setting in URL filtering profile will be able to block facebook.com ?

custom category_block* - facebook.com - block

custom category_allow* - facebook.com

...

Deepak_K by L3 Networker
  • 1711 Views
  • 1 replies
  • 0 Likes

Resolved! How much time Panorama will be down if we upgrade it to 9.0

 

As per the attached image, its suggested to take maintenance window of 6 hours for Panorama upgrade activity. Also we cannot move ahead for firewall upgrade unless logging updated on Panorama.

We are storing logs in Panorama-M200 and not using any de

...

Panorama.PNG
Deepak_K by L3 Networker
  • 2314 Views
  • 1 replies
  • 0 Likes

Unable to register a used PA-500 Firewall

Hey,

 

I recently bought a PA-500 Firewall on eBay for testing in my Lab. Unfortunately, I can’t register it at Palo Alto Website, because it is already registered. So I can’t get access to resources like Firmware-Upgrades or even get access to a LAB-L

...

Resolved! AE Interface State when Connected to Switch LAG

I'm working on an HA project, but can't get the interfaces to negotiate.

2 x PA-3220 v8.1     2 x Dell N4032F switches latest recommended firmware

 

The firewalls are setup for active/passive HA and the switches are configured for MLAG and have a LAG se

...

HTTP Content Securty Policy validation possible with PAN?

Hi Community,

 

I recently got tricked by my web-browser, denying me access to my monitoring satellites.

After I looked into the issue, I noticed, that the vendor got a wrong implementation of content security policy, so my Web-Browser blocks these kind

...

Chacko42 by L4 Transporter
  • 865 Views
  • 0 replies
  • 0 Likes

Resolved! Want to upgrade only Panorama to panos 9.0

In PAN OS 9.0 multiple URL category feature is added(high, medium and low risk category).
Is there any issue if we only upgrade panorama to 9.0 and not a managed firewalls ?
We should not face configuration or commit issue as panorama and firewall will
...

Deepak_K by L3 Networker
  • 1192 Views
  • 1 replies
  • 0 Likes

Ipsec Tunnel Failover issue

We have a PA-3020 firewall pair that has multiple IPsec tunnels to a VM series pair in AWS. We have 4 IPsec tunnels that we run to the firewalls. They are:
  • Tunnel A - On Prem to AWS FW1 over Direct Connect
  • Tunnel B - On Prem to AWS FW2 over Direct Con
...

Fr4nk4 by L2 Linker
  • 2606 Views
  • 1 replies
  • 0 Likes

Resolved! Lock down VPN for certain users

I am fairly new to Palo Alto so please forgive me if this is a simple answer or answered somewhere else.

I have a requirement to lock down our Global protect for our vendors. Here is what I have.

I have group mappings and User-ID mappings set up and wo

...

Resolved! Does Palo Alto do NAT before doing Policy Based Forwarding

Hello Folks,

I'm trying to set up my Palo Alto to do Policy Based Forwarding. 

 

Does PA do NAT before Policy Based Forwarding???

 

I've created Policy based forwarding to send traffic to an interface, if it is sourced from an address. 10.0.0.0/24 

BUT it'

...

Jedi_D by L2 Linker
  • 4584 Views
  • 5 replies
  • 0 Likes
Top Liked Authors