General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 489 Views
  • 0 replies
  • 0 Likes

VPN Tunnel IPSEC L2L VPN NAT not acting as intended

I am Labbing up a configuration I am about to go live with in production but it is not acting as it should when trying to apply a NAT rule to a tunnel interface. When I apply individual rules to the vpn traffic as I would like it to act I am not gett

...

alliman by L0 Member
  • 1975 Views
  • 1 replies
  • 0 Likes

Appid ms-teams-audio-video vs ms-lync-audio

We're having both legacy lync users and Teams users in our network. But for the life of me: I don't seem to get hits on "ms-teams-audio-video" .

Is it because the data itself is not different enough so the contentid engine can't see the difference? Do

...

KenVaBr by L1 Bithead
  • 2551 Views
  • 1 replies
  • 0 Likes

Resolved! Log viewer not working for 8.1.13 PAN-OS

Cx facing this issue with PAN-OS 8.1.13 . 

From the policies tab when we are selecting log viewer option for any security policies rule then it redirected to the Monitor tab . Logs traffic tab there it is showing all firewall traffic and filter bar ta

...

Sonu_Singh_0-1582119899809.png
Sonu_Singh_1-1582120233668.png
Sonu_Singh_2-1582120793761.png
bit_byte by L2 Linker
  • 17667 Views
  • 16 replies
  • 1 Likes

Barracuda to Palo Conversion

I've tried searching but have not been able to find much information. Does anyone have experience converting a Barracuda ng800 to Palo Alto? I'm working with someone that just received a pair of PA-5200 series firewalls and want to move their Barracu

...

Resolved! GlobalProtect Certificate to Encrypt and Decrypt Cookies

Hi All,

I'd like to find out what type of certificate you need if you are configuring Authentication Override for GlobalProtect Portal and Gateway. That is, for the option to specify a certificate to Encrypt/Decrypt Cookie (screenshot below), does thi

...

override.PNG
Bocsa by L3 Networker
  • 17671 Views
  • 5 replies
  • 1 Likes

GlobalProtect multiple gateways

Hi All,

 

Similar to a Cisco ASA tunnel-group configuration where we can have different VPN configurations using the same public IP, I wonder if similar configuration can be achived on Palo Alto. My objective would be to configure different gateways us

...

ipsec question

Hello,

Do I need a tunnel interface for site to site vpn ? 

If yes How can I do that and what is the benefit 

Thanks 

 

 

 

tifotano by L0 Member
  • 1611 Views
  • 1 replies
  • 0 Likes

destination port in PBF

Is there an option to define destination port in PBF. Now if a service is selected, PA applies PBF if source or destination has that port.

I am looking for a PBF which should match only if destination port is 80.

ceapen01 by L2 Linker
  • 2182 Views
  • 3 replies
  • 0 Likes

Resolved! Always on Global Protect

Hello All,

Looking to get advice on this topic. The idea is to have the users connect via a VPN tunnel regardless of their location, internal LAN or working from home, etc. I need to make it easy on the users so its to a burden, e.g. having to authen

...

exclude a network from static route

Is it possible to exclude a network from static route.

 

For eg  I have static route 10.20.0.0/16 to the core-switch.

unfortunately my management network (including PA) is 10.20.200.0/24

I dont want traffic to 10.20.200.0/24 going to core switch.

 

just ex

...

ceapen01 by L2 Linker
  • 3451 Views
  • 3 replies
  • 0 Likes
  • 24089 Posts
  • 116 Subscriptions
Labels