General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 14508 Views
  • 1 replies
  • 4 Likes

VPN

Hi. who can help me this topic?

Person A must configure vpn with person B. Person A must configure two vpn connection and all data flow to vpn 1 node but if vpn node1 goes down, aoutomatic all traffic must flow through with node 2.

URAN_725 by L1 Bithead
  • 1023 Views
  • 1 replies
  • 0 Likes

Free space in /dev/md2 partition

Hello
We have a Firewall PaloAlto with free space 509MB in partition /dev/md2, and 609MB in partition dev/md5, actually we need to upgrade the PanOS since 7.1.18 to 8.1.12, and there are 5 PANOS to upgrade, so the information is keep in /dev/md5 but b

...

How to block Internet Explorer

I am trying to block Internet Explorer traffic going out to the internet from my internal users. I have decryption in place and followed this article: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClEdCAK

I am seeing some w

...

Resolved! Block External Email

Hello -

Basically I would like to start blocking external email access from the internal network such as Yahoo Mail.  I don't want to block access to Yahoo itself, just inbound email from Yahoo and other sites like that.

 

Is there any documentation on

...

Global Protect HIP check issues

Have had an open case with support since August 2019 with HIP checks setup for Global Protect.  There are options to allow HIP checks for a large number of different AV vendors and their products.  The issue we have come across is that we have define

...

mattwech by L0 Member
  • 1523 Views
  • 2 replies
  • 0 Likes

VPN between Palo Alto and Check Point firewall

Hello,

I am trying to establish a successful VPN connection between my Palo Alto firewall and a Check Point firewall. The VPN tunnel on the Palo Alto side shows all green for phase 1 and 2, however on the Check Point side I keep getting a failure per

...

HA clarification with a single ISP

Hi Gang,

 

Excuse me for my ignorance. We had firewalls Palo literally thrown at us, and instantaneously put into production (not great!). 

 

I have a pair of Palo's in HA Active/Passive with preemptive enabled on active/primary. These are in turn, patch

...

Bootstrap debugs / logs

Hi,

 

I was wondering when I went through the bootstrap documentation, it mentions that it should display logs of the bootstrap even if successful but in either case, nothing appears on the console, not even a single word about bootstrap... where shoul

...

CLIq by L3 Networker
  • 2680 Views
  • 5 replies
  • 0 Likes

Resolved! PING from Firewall GUI

Hi All,

 

I have a basic doubt.

Isit possible to ping from firewall GUI ?

If not from Panaroma CLI, isit possible to connect firwall ( to test the ping from firewall to host )

 

Reason : To check the network latency from fireawall.

 

Thanks

KM

*Urgent* Global Protect Crypto

I have one more query, If I change week encryption to strong encryption in tunnel traffics like Global Protect, IP sec tunnels, will it get affect the clients ??

Of course We have to check the peer side before we change the encryption methods & algori

...

User-id with internal portal

Hello community,

I have just started my journey to PA world and spend several days configuring global protect features.

I successfully configured portal for as internal point of connection for Global protect client.

Idea is to provide User-id informatio

...

eronko by L1 Bithead
  • 4939 Views
  • 7 replies
  • 0 Likes

IPSec tunnels - Active/Passive OR Active/Active

Hello Folks,

I'm planning on getting two new Palo Alto firewalls for setting up IPSec tunnels. I think the first tunnel will be a primary tunnel and the second tunnel will be back up. I'm tempted to set up my new firewalls as active/passive HA, to mak

...

Jedi_D by L2 Linker
  • 3168 Views
  • 3 replies
  • 0 Likes
Top Liked Authors