General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

QOS Bandwidth Limitation Download & UPLOAD

I would like to understand bandwidth limitation steps on Internet download and upload

 

Example - lets say i want to restrict steaming url category on download and upload

 

1. create QOS policy to map traffic going to inside to Internet  youtube as Class

...

kan0062 by L1 Bithead
  • 3165 Views
  • 1 replies
  • 0 Likes

Resolved! After Forward Trust certificate is renewed

After Forward Trust certificate is renewed is there a way to validate the renewed certificate is working correctly from either GUI or CLI?
Device > Certificate Management > Certificates > Forward UNTrust Certificate

GP prompts for internal gw connectivity

Hi all,

 

I've deployed a GlobalProtect installation solely for the purpose of User-ID. The GP agent connects to the internal portal/GW (one box) upon login with Kerberos SSO. However, when the internal gateway is not reachable (user has no network, us

...

GP GW Prompt.png
Arne-VDH by L3 Networker
  • 4606 Views
  • 12 replies
  • 0 Likes

Resolved! API - Manage Users for VPN access

Hello Community,

 

i'm currently planing a project which should be able to control the VPN user access via the API.

It should be a simple tool where you just need to click a single button. The tool then activates or deactivates the user for that VPN via

...

JustAGuy by L1 Bithead
  • 2195 Views
  • 3 replies
  • 0 Likes

Resolved! TCPDUMP execution

 Hello,

 

I have to do a TCPDUMP to test the communication of my Active Directory because a have a problem with the User-ID service. 

 

I have read the documentation and I don't understand when says that the TCPDUMP captures the traffic that traverses th

...

iscott by L2 Linker
  • 1524 Views
  • 1 replies
  • 0 Likes

Resolved! Static Route Path Monitoring Clarification

Hi,

 

Let's say a scenario where I have a default route configured to go out interface 2 with a Metric of 10

 

Then I have another static route to go out interface 3 with metric of 5. On this route I setup path monitoring to ping an ip address that is ac

...

Resolved! NCAA 2020 App-ID

Is there any timeframe for when the new NCAA app-id's released for March Madness?  I found the 2017 app-is signatures, and a link for the 2018 signatures but was not able to access the files.

Global Protect Sign Out function

Running PanOS 8.1.1 & GlobalProtect Agent 5.1.0 & connect method Pre-logon (Always On)

 

When connected and authenticated to my VPN from an external network - all is good.  I can restart with a connection to my internal WiFi and my VPN connection shows

...

Whys is Passive peer still passing traffic?

When I go to Monitor > Session Browser I still see active connections on the pasive peer.  I verified it is truly the passive firewall and the other is active and that its supposed to be in Active/Passive mode in the HA configuration.   Running the s

...

Resolved! Panorama Integration with PA HA

Hi,

 

I am new to Palo Alto and want to do Palo Alto integration with our Panorama. need some guidelines for the same. and do we need to break HA for this process? Let me know if any other inputs.

BK0007 by L2 Linker
  • 2570 Views
  • 4 replies
  • 0 Likes

5200 upgrade from 8.1.5 to 9.0.6 and HA2 won't come up

Perform an upgrade from 8.1.5 directly to 9.0.6 yesterday on A/P pair of 5250.  The HA2 link won't come up on 9.0.6

 

This is from TAC,

 

Check the pan_dha.log in dp0-log and dp1-log for this error,

 

I was able to see the following errors that explain as 

...

Top Solution Authors
Top Liked Authors