General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone, Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June. This event will cover the following points related to the newly unveiled Zero Trust Network Security: Secure access to the right applicat...

seattle-launch-live-community-r2b-1100x120.jpg
jdelio by Community Team Member
  • 486 Views
  • 1 replies
  • 4 Likes

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 18201 Views
  • 41 replies
  • 32 Likes

Timeout value of user-ID log

We are using ldap authentication and globalprotect.In the above picture, the timeout value continues to be 2592000 and 0 time out 2952000 and 0 , what does that mean? Why does it look like above? Please let me know.

image.png
jskang by L1 Bithead
  • 1458 Views
  • 1 replies
  • 0 Likes

ICMP gets dropped by DEFAULT DENY ANY ANY

Source IP: x.x.172.230Source Zone: int-fw Destination IP: x.x.20.50Destination Zone: DMZ Requirements: SRC and DST IPs should be pinged bi-directionally. Scenario:- I've allowed the traffic using ICMP, ICMP-0, ICMP-8, PING bi-directionally but still ...

mcjyrnn by L1 Bithead
  • 1529 Views
  • 11 replies
  • 0 Likes

OIDs session id with CPU most intensive using

Hi. all.Can someone say if there is possibility to check via snmp active session, which mostly intensive using CPU for dataplane I mean to get session id for this output "show running resource-monitor ingress-backlogs", this shows us in real time mos...

Resolved! HA Active/Passive upgrade question

Hey PA Guru's! I have a question I haven't really seen on the KB's and documentation on HA upgrades, and wanted to get some insight. I currently have a pair of PA-3050's we're looking to upgrade, and i've reviewed the docs on the recommended procedur...

Traffic in interface tunnel

Hi, I have enabled QoS in order to limit a tunnel interface to maximum badwith to 50Mbps. QoS is well-applied but the current BW value is not being showed in QoS statistics. What ways are there to know the amount of traffic that goes in a moment thro...

Redistribute Nat Range in OSPF

Hi, I am new to PA and i need some help to redistribute a Nat range in OSPF. I am woundering if by advertising my Nat Range in the OSPF Route Summarization would be enough for the traffic to return to its origin or is there anyother way to advertise ...

gngogh by L0 Member
  • 217 Views
  • 0 replies
  • 0 Likes

GlobalProtect on new MAC pc

Hello, We have installed the Global Protect software (version 4.0.5-8) on a new MAC computer (High Sierra version 10.13.3). However the Connect button is greyed out along with a number of other buttons. The only available buttons are Show Panel / Abo...

Farzana by L4 Transporter
  • 347 Views
  • 2 replies
  • 0 Likes

Power failure on PA-7000

The PA-7000 Hardware Guide specifies they minimum number of active PS to provide enough power for a chassis depending on the type of power and number of NPCs installed.For example, if the PA-7050 chassis is powered via 120V AC and has 6 NPCs installe...

Resolved! syslog forwarding

how can i forward exact below information to Syslog server ? > show log userid1,2013/03/28 12:53:05,001701000225,USERID,login,12,2013/03/28 12:53:05,vsys1,172.17.128.92,plano2008r2\administrator,test,0,1,2700,0,0,active-directory,unknown,1,0x01,2013/...

Resolved! suspend passive

If you suspend a passive firewall in an active/passive HA configuration does it just mean that you have turned off HA and the active cannot fail over to the passive?

jdprovine by L4 Transporter
  • 783 Views
  • 5 replies
  • 0 Likes