General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Discussions

Join Us for a Tech Deep Dive Miniseries!

 

Stop Zero-Day Threats in Zero Time with Nebula PAN-OS 10.2.

 

Join us live for an in-depth look at the latest advancements in cybersecurity, best practices, tips and tricks, demos and
more to protect your business and defend against threats in real

...

nebula-on-demand-tech-deep-dive-miniseries-live-community-banner-2600x600.jpg
jforsythe by Community Team Member
  • 435 Views
  • 3 replies
  • 1 Likes

Resolved! Inconsistent policy action on the same traffic flow

Hello,

 

I do have a connection flow for Microsoft Teams direct routing domain sip-all.pstnhub.microsoft.com where I do have a NAT rule and a security rules for bidirectional traffic with the Microsoft domain from our DMZ. The issue is that the firewal

...

bambox by L1 Bithead
  • 606 Views
  • 3 replies
  • 0 Likes

Resolved! Geolocation Region EU allowed bust Spain is denied

Hi

 

we use the region as source adress in policies.

We allowed region EU but traffic from Spain was blocked. We had to add ES (Spain) to the allowed regions.

What am i missing? Spain should match the EU region. Any ideas?

 

If i enter the ip that was bloc

...

kbe by L3 Networker
  • 767 Views
  • 5 replies
  • 0 Likes

AWS Tunnels Down when We make a Failover

Hello everyone,

 

I have observed that when a failover occurs on an active/passive cluster the IPSEC tunnels to AWS all go down and take a time to recover.

 

I have verified that the traffic goes down and does not communicate for a time of about 5-10 min

...

Alpalo by L3 Networker
  • 397 Views
  • 2 replies
  • 0 Likes

Inter-working of PBF and DHCP Relay

Hi All,

 

I have a query regarding DHCP Relay working with Policy based forwarding.

 

We have a setup where DHCP relay is configured on firewall and DHCP server is in remote location reached via IPsec tunnel. We have 2 IPsec tunnels configured (tunne

...

Finding unused objects in policies

Hi,

I'm wondering if there's a way to see when an object last had a hit on it? I know there is for security policies, but I'm wondering about specific objects.

We don't have Panarama, and I'm just thinking about creating a new syslog server to captur

...

JohnT by L0 Member
  • 412 Views
  • 2 replies
  • 0 Likes

Web Application intermittently having a performance issue

From the tcp dump at the server end, I am seeing a lot of traces on TCP Dup ACK, retransmission and out of order being flag out at the pcap file

 

 

 

 

The connection made is via VPN client to the Web Application server. Tried few scenario where we acces

...

afifdin_0-1618935667620.png
afifdin_1-1618935712790.png
afifdin_2-1618935811755.png
afifdin by L0 Member
  • 695 Views
  • 3 replies
  • 0 Likes

Policy Commit Failed

I am trying to push a template stack to FW, the same one is pushed to a lot other FWs but here i get this error 

 

. In virtual-router vr1, OSPFv2 is not supported on unnumbered interface ethernet1/1 in area 0.0.0.0.
. In virtual-router vr1, OSPFv2 is n

...

Resolved! Error No valid URL filtering license

Hi All,

 

Recently license has been renewed and part of the renewal was change to "Advanced URL Filtering". I got the error whenever commit a change. 

But looking at the licenses section I can see PAN-DB URL Filtering listed as expired. Any step to fix

...

isentric89_0-1645597092589.png

Resolved! QoS - show drops in web view

Hi there,

 

where can I find the packet drops of an interface in the PA web frontend, I wanna monitor the QoS function, without the use of ssh command line tool.

Netzer by L2 Linker
  • 349 Views
  • 2 replies
  • 0 Likes

URL allow list for some of the subdomains

Hi all

 

I want to limit the user to access the company's sharepoint only, but not other sharepoint from other tenant or even the sharepoint from personal account. Then I found the below KB (section 6) and show how to use allow list in the URL filterin

...

alextsa by L1 Bithead
  • 678 Views
  • 8 replies
  • 0 Likes

Decryption GitHub not working

Hi

 

We are trying to run a api from passbolt to Github. In this we are doind decryption in PA.  If we add a SSL exception *.github.com is working fine or "no decrypt" policy is working fine.  any idea?

 

Here our health check:

 

passbolt]# su -s /bin/bash

...

BigPalo by L4 Transporter
  • 576 Views
  • 2 replies
  • 0 Likes

Resolved! Panorama logs per second

Does upgrading the CPU and memory for panorama increase the logs per second that a single virtual panorama in panorama mode can handle?   Link below appears to show that as the case.  I always thought that the limits were around 10k per second regard

...

Sec101 by L4 Transporter
  • 483 Views
  • 3 replies
  • 0 Likes
Top Liked Authors