General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Configuring QoS on VLAN interface

Hi guys,We want to apply QoS on our inside zone for downloads, but it's not hitting the QoS Policy, here's our conifg:For the Inside Zone (users zone) we have an L2 interface eth1/1 and one VLAN interface linked to the subnet.We created a QoS Profile with Class 1 Egress Max = 0.2 mbps (everything else was left at default).In Network > QoS, we...

echahine by L2 Linker
  • 5874 Views
  • 4 replies
  • 0 Likes

Destnation NAT by https kindly help

I have one real ip address and I have three web sites. Is it possible to work on them on the same port 443 , and the difference is according to the site address? i asked for NAT Solution in paloalto kindly help

Osamaps by L0 Member
  • 2272 Views
  • 2 replies
  • 0 Likes

Unable to log case

I am going to raise a case but when I get to the section of selecting the asset affected there are no tick boxes next to any of the assets. The filtering dropdowns on the columns also appear to be missing the images however these options do still work.

BGP Session flaps for every 3 minutes - PAN OS

Hi Team, We have a BGP running over IPSec VPN. The VPN is terminated between PA 5250 and SDN Gateway. The VPN is running fine but the BGP session is flapping for every 3 minutes. Normally this behavior observed due to MTU size detection in during PMTUD in Cisco devices. Please help me to troubleshoot this further in the Palo Alto Firewall side....

Resolved! Autofocus license

Hi there! I'd like to know what is the difference between the autofocus enterprise edition vs standard edition? Could anyone help me? I already searched in Palo alto docs but I didn't find nothing Best!

MonicaR by L1 Bithead
  • 2784 Views
  • 1 replies
  • 0 Likes

Resolved! Custom URL Category override wildcard matches with more specifics?

Is there a way, within the URL Categories, to override wildcarded domain blocks in one category with more specific allows in another category? E.g. we have created custom URL categories for company allowed and blocked domains. I have a wildcarded domain that was put in a custom block category do to Infosec policies. Now I need to add that specif...

Resolved! Scheduled reboot of device

Hi,Is it possible to schedule a reboot at a specific time.I do know there is a manual reboot, but I thought It would make life easier if I could keep a scheduled reboot of the device to a specific timelike at midnight.Any options via CLI or something.Rgds,Tauseef

ta185020 by Not applicable
  • 13977 Views
  • 10 replies
  • 0 Likes

PA Firewall 3 Wan

PA Firewall With 3 WAN , Wan 1 (1.1.1.1) , Wan 2 (2.2.2.2) , Wan 3 (3.3.3.3)we wan three wan have port forward to internal web server ip: 192.168.1.10 port 80but only response on 1.1.1.1 wan 1 interface , another wan no response on port forward

Global Protect Connection method : Always-on not working on Mobile Apps

Hi Guy ,I would like to know about the GP connection method: Always-on not working on global protect mobile-apps both android and iOS (iPad, iPhone) is shown about "The network connection is unreachable or gateway is unresponsive" but on Notebook or PC is working normally.So, Please help meThank you in your advance.

Resolved! Problems signing in to the support site

I have a PA-220 at home I have a problems signing in to the support site. I get the following message when I want to log in to the support site: An unexpected error has occurred. Please contact support. And of course I can't create a ticket regarding this problem. Any idea how I can fix this problem

Biga01 by L0 Member
  • 2767 Views
  • 1 replies
  • 0 Likes

Resolved! Can "Decryption Mirroring" forward non-encryption traffic?

I am planning to forward all traffic to traffic collection tool. As I know there are "Decryption Mirroring" (https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-admin/decryption/decryption-concepts/decryption-mirroring.html) and it will forward the traffic after decryption.I would like to know if the traffic is non-encrypted traffic such as htt...

JoeKwok by L2 Linker
  • 4366 Views
  • 4 replies
  • 0 Likes

Network segmentation via routers VRFs to Palos VRs and OSPF

Hello everyone and thank you for your answers, I would like to implement segmentation in the data center, we will create VRFs in a Cisco Nexus Core switch and each VRF will have its own OSPF process to peer with a Palo Alto Firewall, all VRF traffic needs to go through the Palos for policy and routing, the question is: -Should we create multiple...

BBravo by L0 Member
  • 15136 Views
  • 5 replies
  • 0 Likes

Very weird PanOS upgrade issue

We have a pair of active passive firewalls on PanOS 9.0.11. We have attempted to upgrade to 9.1.10 4 times out of which 2 times was with tech support. Upgrade seems to cause issue with some linux servers which are critical to us. As an example we have system running Nagios which starts alerting immediately for number of devices. And when we try ...

raji_toor by L4 Transporter
  • 2982 Views
  • 3 replies
  • 0 Likes
  • 24395 Posts
  • 123 Subscriptions
Top Solution Authors
Labels