General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 391 Views
  • 0 replies
  • 2 Likes

Log-Collector Issue with 10.x to 10.x

Hi Community,

 

I have a strange situation, maybe someone can help:

Panorama on 10.0.6, Firewalls mostly on 9.1.x.

We onboarded the 1st 10.0.5/6 firewalls and noticed, that we don't receive any logs within our dedicated log collector.

The collector group

...

Chacko42_0-1623654697519.png
Chacko42 by L4 Transporter
  • 1980 Views
  • 1 replies
  • 0 Likes

Unusual Issues in Hosted ESXI Environment

Hello folks,

 

Posting here as a final act of desperation. I am still pursuin the case with TAC, but I hope that perhaps someone will have seen something like this before.

 

Our network resides in a hosted ESXI environment provided by iLAND. We have an H

...

Resolved! PA-3220 - PAN-OS 9.1.9 - proxy_wait_pkt_drop

Hi community

This post is either to inform you about a possible problem and also to ask if someone already saw this and may be even has a solution.

 

Some days ago the global counter for proxy_wait_pkt_drop started to dramatically increase on a PA-32

...

Remo by L7 Applicator
  • 2929 Views
  • 2 replies
  • 2 Likes

Redundant Static Route through two IPSec Tunnels

Hello All,

I am attempting to setup primary and backup route to the same IP through two different IPSec tunnels. I have attempted both PBF and Static Route Path Monitoring and cant seem to get either to work, in both cases is because there is no IP as

...

IPSec Version

For audit purposes we neeed to know if paloalto is using IPSec version 3 or version 2?

Chana88 by L0 Member
  • 2716 Views
  • 3 replies
  • 0 Likes

Issue with correct FTP application detection

Hello Everyone!

 

We have a pair of PA-5260 (Panos 9.1.4) between 2 security zones serving primarily the traffic to a file buffer.

About 90% of the traffic is FTP  with server side being a load balancer IP.

With a small fraction of traffic we experience

...

New LIVE AMA event, LIVEcommunity Team Roundtable!

 

If you are curious to know more about how the LIVEcommunity works, have a chance to chat with community team members, or ask a non-technical question?

Now’s your chance!

 

The floor is open for all you burning questions now through June 24.

 

T

...

ama-graphic.png
jdelio by L7 Applicator
  • 2581 Views
  • 1 replies
  • 4 Likes

Zone Protection CPS Calculations - Make ZERO sense

I have been collecting CPS (total, TCP, UDP, IP) via OIDs using PRTG for ~6 weeks.  I have all the data I need (I think).  However, the DoS Zone Protection best practice documentation leaves a LOT to be desired as it's not clear.

 

If anyone has tried

...

link aggregation in a switched LAN environment.

Dear paloatonetwork live community I have the following question related the above topic

  • what are the operation of link aggregation in a switched LAN environment.
  • what are the Ether Channel technology will be used to create link aggregation.
  • what are t
...

thought by L0 Member
  • 1678 Views
  • 1 replies
  • 0 Likes

Ransomware Prevention / Detection / Response Resources

There are many articles, guides, and resources available across various Palo Alto Networks properties to guide users on how to best protect their organizations from ransomware. After spending some time to find many of them, I thought I would share wi

...

KPawlak by L1 Bithead
  • 4422 Views
  • 2 replies
  • 2 Likes

Resolved! IPSec VPN with overlapping networks

To begin with I know the document Configuring IPSec VPN between overlapping networks.

Due to my lack of experience still I am not able to understand how I should create the NAT rules.

My objective is to configure the IPSec tunnel only on "my" side - on

...

SAML Captive Portal

Hi All,

i'm trying to configure a SAML authentication for captive portal but when i'm trying to export metadata and selecting captivel portal i'm not able to export, it shows no option:

if I try to type an address and click ok the file generated contai

...

HygorPeixoto_0-1607522196574.png

Resolved! dhcp client class-id setting

Dear all,

a potential FTTH provider requires a special option for the dhcp client in order to work.

CISCO setting like:

ip dhcp client class-id 100008,0001,Cisco,e02f.6d21.xxxx,15.3(1)T,FCZXXXXXXXX


Is there any change to set the dhcp class-id for the dhc

...

  • 23686 Posts
  • 108 Subscriptions
Labels