General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

firewall configuration

1. What source IP address/es are configured to successfully connect to the exchange destination IP address:2. If one or more source IP addresses will not be able to successfully establish a connection please explain why:3. What destination IP address will the source servers target to establish a connection?4. What is the remote exchange destinat...

Capture.JPG

Integration of Palo alto to panaroma

Hello All, I have two palo alto in high availiabilty running as Active-Passive mode. Basically i have to add these firewalls now in Panaroma which i will configure in High avalibility. Need to know what are the precautions i have to do to add these firewalls in panaroma with less impact or no impact on production environment. Please share if an...

PA and VPC

Hi, Hi, Please advise on the above design . Is there any pros and cons ? Thanks

pa.png
simsim by L4 Transporter
  • 8733 Views
  • 6 replies
  • 0 Likes

Routes between VPN tunnels

Currently on the Palo Alto firewall, there are 4 IPSEC VPN Tunnels.The issue is the following, a sub network of a Tunnel, tunnel that we will call TUNEL-A01, must be able to reach a destination that its destination is in another tunnel, we will call TUNEL-B01, that has the Palo Alto and at the same time be able to USE/apply NAT, when arriving fr...

Metgatz by L4 Transporter
  • 7024 Views
  • 8 replies
  • 0 Likes

Resolved! FS-ISAC New STIX/TAXII Feeds

Good Morning All,I am trying to configure our minemeld system to use the new FS-ISAC STIX/TAXII feed but its giving me issues. Has anyone successfully configured Minemeld to pull information from FS-ISAC recently? I added a sample of the config settings that I am using and a screenshot of the error message. Config Settingsage_out:default: last_s...

Pedro2020_0-1592489704011.png

Support for newer OS for Minemeld

Hey, we just started our journey with paloaltonetworks and installed the first 2 clusters. To automate our IP Adress lists, we wanted to install minemeld, but the only supported OS seems to be Ubuntu 16.04. which is out of support sind 30.04.2021, so like 10 days and i am not allowed to install Out of Support Operating Systems in our environme...

GP: Internal Host Detection Two Questions

In the PAN video I located on Internal Host Detection (see below), it shows where to enable this feature. But it doesn't mention what is expected of the IP Address and Host Name. Should one use the internal IP/name of the PAN? Or something else? And if an internal gateway is not set - the client will just not form a tunnel nor do HIP checks etc...

Serial number does not exist when registering PA-820 FW

Hi, Anyone encounter a problem of getting a "serial number does not exist" error message when trying to register a PA-820 FW? We originally had the tac decommission one of our previously purchased 820 fw's as it was misplaced when relocating buildings. After several weeks we relocated the unit and need to re-activate, re-commission the unit. Thi...

smelias by L1 Bithead
  • 5966 Views
  • 2 replies
  • 0 Likes

Lost sessions with Wildfire active

Hello everyone,Currently, I have 2 FW model 5220 active/active version 9.0.12.When I have Wildifire activated I have seen that I have session losses and incomplete sessions.Can anyone help me? I have not seen any known BUGsRegards.

BigPalo by L4 Transporter
  • 2989 Views
  • 3 replies
  • 0 Likes

Resolved! GlobalProtect Clients Not downloading

Hi, I want to ask we have new firewall we configure all the things Dynamic update / License all ok . But when we try to get all the Latest GlobalPortect Clients from Server . It is only showing the list no other ?We try from CLI , Rebooted three time. Is this is Error or issue can some one help us.

2021-05-19_14-33-25.png
NavidAlam by L3 Networker
  • 13803 Views
  • 14 replies
  • 0 Likes

How to configure SNMP v3 in firewalls for Solarwinds

Hi, Wish to configure SNMP v3 for Solarwinds in our firewalls. So we have a Solarwinds devices and Palo Alto firewalls. Wanted to know what all information(Data) required if solarwinds to be added in palo alto firewalls, how to set up a communication between Solarwinds and Palo alto firewalls. How to configure these, wish to get helped. Please h...

User format not consistent

We have a strange inconsistency with our users traffic sometimes showing in our FW logs sometimes as organizationdomain.com\username and sometimes as orgdom\username. Every now and then they also just register as no user at all. I haven't really been able to track this one down. Has anyone had anything like this happen?

bjhughes by L0 Member
  • 3461 Views
  • 3 replies
  • 1 Likes
  • 24397 Posts
  • 123 Subscriptions
Top Solution Authors
Labels