General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 373 Views
  • 0 replies
  • 2 Likes

Resolved! Can't browse web pages

Hello all, 

I'm new in Paloalto firewalls, i'm doing a migration from Fortigate to PA220. i configured all interfaces, router... but I'm struggling with Policies

attached the basic policy i created to allow my LAN users to access internet:

After testing

...

dns config.PNG
NAT config.PNG
policy.PNG
wzahri by L1 Bithead
  • 5136 Views
  • 8 replies
  • 0 Likes

Self-Signed Certificate expiry warning

Our GlobalProtect VPN was using a self-signed certificate which got expired caused end users not being able to connect to the VPN.

This raises the question that what are the ways to get alerted for these sort of incidents. Is there any in-build mechan

...

PaloAlto FW RDP Across multiple AD domains

I'm part of a cloud team that does not manage the FW but am not getting clear answers from them.

My operations counterparts have the following issue:

 

Support person logs into IP address x.x.x.x into production domain. As part of their function, they m

...

Resolved! Panorama Template/Template-Stack Variables Override

Is it best practice to override template variable settings at the template-stack or at the device level? It looks like template stack would be sufficient unless you have multiple firewalls and only a select number with different settings.

Firewall Palo can advertise aggregate route...

Hello,

 

In our lab, we made a set up about peering BGP between Palo and a third part device.

According to this kb from Palo : "The Palo Alto Networks firewall does not advertise an aggregated route to its peer when it receives a prefix falling within t

...

Palo Dual Action on Same Malicious Domain

We have found in the logs, Malicious DNS queries are being blocked but few of them are in Alert State. however the Domain is marked as a malicious in DNS signature at Threat Vault.

Can you please elaborate why paloalto having dual action on same malic

...

Joshan_Lakhani_0-1610996825658.png

Resolved! Layer 3 Subinterfaces VM-Series Firewalls VLAN 4095

When it comes to vm series firewalls, Layer 3 subinterfaces, trunks and port groups, are there any downsides/catches/cautions to setting the ESXI port group to use vlan 4095 (trunk), and then simply utilize layer 3 subinterfaces on the vmseries firew

...

Sec101 by L4 Transporter
  • 4233 Views
  • 2 replies
  • 0 Likes

PA-220 lab licensing

Hi,

 

I'm looking to purchase a PA-220 lab unit (lab license) for home.  Basically, using it for labbing with my personal internet/internal traffic.  Are there limitations with that device/license,  such as bandwidth limits

ce1028 by L4 Transporter
  • 10510 Views
  • 3 replies
  • 0 Likes

Resolved! Global Protect DHCP Pool utilisation

Hiho,

 

I´d like to know how to see how much ipv4 adresses of the pool are in use or free so I need to know when to enlarge the pool.

That dhcp redirect doesn´t work I unfortunately recognized while searching the forum regarding dhcp and gp.

We are using

...

  • 23680 Posts
  • 108 Subscriptions
Labels