General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

2 OSPF process

Dear Community, I have 2 OSPF process on AsA, now I wont to replace Asa with PA, as I know PA only can run one OSPF process. Is it possible to solved this? Thank you in advance.

Dadonis by L0 Member
  • 1955 Views
  • 1 replies
  • 0 Likes

Hiding Global Protect version

Hello , for one of our customer , they did some pentest and came back with a report that our Global Protect Portal shows the version of GP They advised if is it possible to hide GP version info . When a user opens the GP Portal , version info is not displayed . But could be with pentest/VA tool it is So is there a way to completely hide version...

PBF Without Gateway

PBG without gateway Good afternoon, is it possible to configure a PBF, without specifying the gateway IP address, just apply the outgoing interface and that's it? is this possible ? I remain attentive, thank you very much. Best regards

Metgatz by L4 Transporter
  • 2021 Views
  • 1 replies
  • 0 Likes

Resolved! BGP Loose Route

Dear, good evening, can someone please help me. I have two Palo Alto configured by BGP and I am sending some routes via bgp and they appear as "loose ?" what can I do in this case, how do I solve this problem? Thank you in advance for your support. Best regards

2021-11-05 23_47_22-PA-VM.png
2021-11-05 23_47_02-PA-VM.png
Palo Alto_BGP.png
Metgatz by L4 Transporter
  • 8547 Views
  • 3 replies
  • 0 Likes

2 VM series HA Setup in Azure with ELB

Hi all, I've setup 2 VM series in a sandwich topology and want to know the following in terms of the setup:How to configure the 2 virtual routers being trust and untrust for the static routes that point to the ELB?How to configure the NAT for outbound traffic?What are the advantages of having a ILB, if there's no applications that require LB, th...

Dynam0 by L1 Bithead
  • 2263 Views
  • 1 replies
  • 0 Likes

Renewing a Subordinate CA Certificate for firewall, issued by MS Server Enterprise CA

Hi, I've been looking all over for some guidance on this, without much joy. I am trying to renew a subordinate-CA certificate on a firewall, that was issued by a Windows Server Enterprise CA. Obviously there is no Renew function on the firewall for that cert as it was externally issued - and it appears on Windows server you can only renew Subord...

syslog server logs

Hello, I am facing an issue to get the alerts for my syslog server ( description contains 'Syslog connection broken to server[\'AF_INET.127.0.0.1:2625.\']' ) every two hours I am getting alerts. i checked the sys-ng.log and took the packet capture but I can see the same error. Below is the configuration:-sys log Server IP- 192.1681.1protocol - U...

Jafar_Hussain_0-1636027177713.png

LAN to Portal/Gateway Externo same Firewall

Dear:Good afternoon, is it possible from my LAN network, to connect via Global Protect, to the external portal/gateway of my Firewall ? I tried, despite having the permissions at the policy level and it fails to establish a connection.Is it strictly necessary to have an internal gateway for this? To connect from my LAN to an Internal or should I...

Metgatz by L4 Transporter
  • 2207 Views
  • 1 replies
  • 0 Likes

Resolved! Shared Security Policy Rules

When you have multiple device groups, are you able to create shared security policies? When I try to select shared and create a security policy rule, the zones are blank. Only workaround I can seem to find is create a security policy in one device group and clone it to the others

ce1028 by L4 Transporter
  • 6062 Views
  • 2 replies
  • 0 Likes

PBF policy match works in CLI but hangs in the GUI

Hi, Came across an issue where a PBF policy match works in the CLI, but not in the GUI. When you run the test in the GUI it just hangs. The PBF rule is working as expected in production, its just the test in the GUI that seems to fail. Anyone come across this issue before? Other PBF policy match tests in the GUI work, so not sure if this is pro...

BenPrice_0-1635901518208.png
BenPrice_1-1635901757751.png
BenPrice_2-1635901890382.png
BenPrice_3-1635901946304.png
Ben-Price by L4 Transporter
  • 2404 Views
  • 1 replies
  • 0 Likes
  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels