This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

VSYS Migartion Query From DC5220 to ISP 5050

Spoiler

Hi Team,

I have below network Architecture

Upstream Internet Firewalls PA 5050 Active/Standby

Downstream Datacenter Deployment 5220 Active/Standby

Now We have 2 VYS in DC 1 is Normal 2nd DMZ Vsys.

Now i have to remove DMZ vsys to ISP can some guide

...

CLI/API command to verify Panorama push diff

Do you know of a CLI command or  a rest API call to push and  to show the changes of configuration to be pushed to a firewall from Panorama? I am trying to automate the process, but could not find any references. 

batd2 by L4 Transporter
  • 1964 Views
  • 1 replies
  • 0 Likes

Resolved! MDM Integration Service Cannot Be Started

I'm getting the following start error message on Windows Server 2019 running ID-Agent.

 

 

 

The MADebug file shows the following as well.

------------MDM Service is being started------------
11/10/20 15:52:06:552[ Info 1414]: Os version is 6.2.0.
11/10/20

...

Screen Shot 2020-11-10 at 16.01.40.png
Screen Shot 2020-11-10 at 16.02.52.png

Resolved! Route path monitoring and tunnel monitoring together?

I'm switching to route path monitoring for VPN backup failover and would like to keep my tunnel monitoring active for down/up tunnel email notifications.  I can set the tunnel monitoring to wait to recover.  Can I use both of these at the same time a

...

treese by L3 Networker
  • 2434 Views
  • 2 replies
  • 0 Likes

Resolved! Aggregate vs Zone protection profiles

We have separate zone protection profiles for each zone. And the definition of aggregate says that "all thresholds apply to the entire group of devices specified in a DoS Protection policy rule". So if we are trying to protect servers in DMZ, unless

...

raji_toor by L4 Transporter
  • 2295 Views
  • 3 replies
  • 0 Likes

Temporary disable Miner / Malwaredomainlist offline

Hello!

 

Does anybody know how to temporary disabel a miner without deleting it from config ?

 

Problem is, that currently www.malwaredomainlist.com gets resolved to 127.0.0.1 and the miner alerts in the log files with

basepoller._poll ERROR: Excepti

...

HA sync option not showing in Panorama

Hi Team,

 

I import the configurations from managed device to panorama then export to managed devices of our A/P firewalls. everything went well. but when I see the summary on panorama passive device template showing as in sync but active device templa

...

Resolved! Managing Windows Services

Ok, so this may be a stupid question, but I have a server that has a web service running under a domain\webservice account.  I want to define a security policy for the service, but the firewall does not consistently get the correct user.  After a reb

...

bschaper by L2 Linker
  • 2113 Views
  • 2 replies
  • 0 Likes

Pre-Logon Issue

Hi Team,

 

I have configure the Pre-Logon but it's not working 

 

(T5208) 10/26/20 14:04:11:874 Debug(9110): SSO password is empty
(T5208) 10/26/20 14:04:11:874 Debug(2462): m_preUsername pre-logon
(T5208) 10/26/20 14:04:11:874 Debug(9070): Password is emp

...

Split tunneling issue for office 365 applications

Recently enabled split tunneling for our Global protect VPN, and have added some domains into the split tunnel.
 
For some users domain split tunneling doesn't work.
 
The domains configured to be included in the split tunnel are as follows
 
*autologon.mi
...

Resolved! Upgrading heavily used PaloAlto Firewalls

Hi,

 

I am about upgrade some PaloAlto firewalls with 10s of Vsys but wondering what would be a good report to generate to identify traffic flows for pre and post checks as well as identifying impact to services.

 

any help will be appreciated.

 

Regards,

 

qasim02 by L2 Linker
  • 4608 Views
  • 6 replies
  • 0 Likes

Resolved! GlobalProtect Max tunnel count ?

Hi

I'm doing a global protection test.

And we created the External Gateway and the Internal Gateway.

And for the Internal Gateway, we didn't set up the Tunnel.

If so, wouldn't it count to the Globalprotect Max tunnel provided by the equipment?

In case of

...

  • 23583 Posts
  • 103 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks