This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! PBF conflict with "ip strict option" in zoon protection

Hi All

i have a scenario where the traffic works fine if it's forwarded by the routing table (and nat is applied)

when i used pbf, it didn't work, checking global counters i found oacket are dropped and the reason is "strict ip" option in the zone prot

...

Resolved! Routing between overlapping networks

Hello,

I want to replace our existing firewall with a PA-850. Thereby I have a problem, which I cannot get solved.

I have to route to an external network, which unfortunately uses the same subnet as ours.

Until now, I have used a small Linux VM, which u

...

problem.PNG

Resolved! SCCM management of remote GP Windows clients

We just deployed and started using GlobalProtect 5.1.1 to support the work-from-home COVID-19 initiative for thousands of remote workers.  Everything is working well but my SCCM guys can't manage any of the remote clients to push patches or software

...

pnelson by L2 Linker
  • 17579 Views
  • 15 replies
  • 0 Likes

Dynamic update for trial license

Hi all,

 

I received PA-200 that was stored on storage for years.  The box was unopend so I registered device and requested trial license (according to the portal site, it seemd that the device only had expired Software Warranty Support).  After execut

...

starplat by L1 Bithead
  • 5549 Views
  • 7 replies
  • 0 Likes

What's the latest recommended version for PA-820 ?

Hi everyone,

 

My company i've been working outsource informed me about a vulnerability which is recently announced.So it seems i should update PA-820 which is working as cluster with Passive (HA).Current version is 9.0.8.Is there anyone who's been run

...

Onrcan91 by L0 Member
  • 3768 Views
  • 1 replies
  • 0 Likes

Is there an option to store a file crossing PA?

I would like to block certain file types using File Blocking profile (which works fine), but instead of just discarding files which were blocked I would like to store them for later. Or in other words is it possible to get hold of files which PA bloc

...

Resolved! Help with routing decision

Hi

 

Got BGP providing DGW and I have a static 0.0.0.0/0 with metric 240 so its last resort route

 

but

VIRTUAL ROUTER: vr_default (id 2)
==========
destination nexthop metric flags age interface next-AS
0.0.0.0/0 0.0.0.0 19 ~
0.0.0.0/0 202.74.32.69 ?B 612028

...

Resolved! Query About To Increase VM-Firewall Disk Storage Size

Hi Team,

 

We deployed a VM series firewall in azure and it's in production now. 
Presently the VM-Firewall OS disk storage size is 60GB and there is no Data Disk used. 

Since the customer is need a 6 months of log retention period. 
As customer isn't rea

...

Resolved! multi lan multi wan best practice

situation is this :

 

currently i have :

multiple lans/vlans

1 p2p line (single subnet static route0

1 internet line

1 virtual router

 

now, i need to add another wan

 

my best practice should be

a : to do another virtual router and separate relevant networks t

...

Resolved! Vulnerability protection ip exception

We have our regular penetration tests coming up and we need to allow the IP addresses that are doing the testing to scan our network. Is there a way to create an IP based vulnerability protection exception? I know how to create an exception for a spe

...

  • 23662 Posts
  • 104 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks