General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2884 Views
  • 2 replies
  • 14 Likes

setting counter thresholds with snmp monitoring

Any one have a good handling on where to set dos counter thresholds for alerting via SNMP?

 

Also trying to figure out what are the best ~50 sensors to monitor for the firewall via SNMP.

 

pan tcp drop packet, pan flow dos pf strict ip, and pan flow dos

...

Resolved! Destination NAT issue or routing change

Hi All,

 

I have had a destination nat running for months without issue.

 

NAT: Source VPN Interface to Inside Interface: Destination Address: 192.168.90.231 Destination Translation: 10.0.8.82

 

Rule: Source VPN to Inside : Source IP to 192.168.90.231

 

It h

...

a.jones by L3 Networker
  • 2195 Views
  • 2 replies
  • 0 Likes

Iphone MAC won't connect Global Protect

Hello All,

We have Global Protect License for mobile we upgraded recently to 5.0.8 and i see my iphones will not connect.

did any one face this issue ? Works fine with windows and desktops only with iphone i face the similar issue.

Any help will be much

...

Possible bug in 'load config partial' command

Hello

 

Yesterday I was setting up a new PA-220. As always I cloned template and used load config partial command to clone device-group:

 

load config partial mode replace from-xpath /config/devices/entry[@name='localhost.localdomain']/device-group/entry

...

WildFire for the new guys

When I started using Palo Alto firewalls about a year ago, I heard the term 'wildfire', but didn't know what it was.

 

So, for anyone else who may be new, here's wildfire in under 5 minutes:

https://youtu.be/bj9Scj-QKEY

 

Luke_R by L2 Linker
  • 2083 Views
  • 1 replies
  • 0 Likes

DHCP Lease Time

Hi
We are distributing dhcp with mac reserve on paloalto. rental period is 10 minutes. is this time too short? Does the system get tired because the time is short?

Aykut1 by L1 Bithead
  • 3445 Views
  • 4 replies
  • 0 Likes

FQDN Addresses

I need your help on this please.

 

Is it possible to have a wildcard FQDN as a source or destination address (example *.microsoft.com)

 

Is is possible to mix wildcard FQDN with a non wildcard FQDN in an address group (example add in *.microsoft.com with

...

rockfort by L1 Bithead
  • 2205 Views
  • 2 replies
  • 0 Likes

Dual ISPs and PBF

Hi

 

I have 2 ISPs on my PA  3220. I need to set it up in a way so our core traffic passes through ISP1 and guest WIFi and other non-critical traffic passes through ISP2. Also I need to make ISP2 as my backup ISP if ISP1 goes down. I have read about cr

...

m_virk by L0 Member
  • 2469 Views
  • 3 replies
  • 0 Likes

Early License expiry

Hello Everyone.

 

I am running into a license expiry problem with couple of PA firewall deployed in a customer site. There are several subscription based licenses based on the portal that are gonna expire around 29th of July this year. However the lice

...

Udupi by L1 Bithead
  • 2083 Views
  • 1 replies
  • 0 Likes

Enable Global Protect from Linux

We have a problem in being able to enable Global Protect from Linux, see detailed information about the problem to guide us about it. I am writing to ask for help with a situation that I have been trying to solve for a while. I know that the Windows

...

Resolved! Moriagent malware

Dear Team,

 

I don't have much idea about Moriagent malware, i got an instruction i need to create a rule or block this malware

 

 How to stop MortiAgent Malware using snort rule?

 

I want to stop the MoriAgent malware by applying /using snort rule.

How to

...

Resolved! Software Upgrade issue 8 > 9

I'm currently running 8.0.6 and trying to upgrade to 9.1.3.

 

I'm trying to install per the recommended stepped upgrade, but having zero luck.

 

When I use the WEB GUI to upload 8.0.13 or 8.0.20 it says "PanOS_800-8.0.13 saved" or "PanOS_800-8.0.20 saved

...

Resolved! Panorama modes

Hello, 

 

I have read about Panorama's modes. But I would like to know if Templates and Group Device's configurations are available without matter what mode is the VM/Physical device. 

 

As I understand the documentation, the Panorama's mode only determi

...

iscott by L2 Linker
  • 3473 Views
  • 4 replies
  • 0 Likes
  • 24016 Posts
  • 99 Subscriptions
Top Solution Authors