General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Multiple URL Global Protect Multiple FQDN

We would like to use multiple URL's to access our Palo with Multiple LDAP authentication.

 

portal.company1.com 

LDAP1

 

portal.company2.com

LDAP2

 

portal.company3.com

LDAP3

 

We could also do like 

 

C1.company.com

LDAP1

C2company.com

LDAP2

C3company.com

LDAP3

 

Can a

...

GlobalProtect - Windows 10 - Client Won't display

I have a fresh install of Windows 10.  When I right click on the GlobalProtect icon in the tray no menu ever shows up.  I see the GlobalProtect icon in the taskbar but any click on it will make icon dissappear.  Any ideas or workarounds?

 

I have re-in

...

egv12wQ

GlobalPotect initial login

 

I have deployed the GlobalProtect Always-On VPN via the MSI.exe, where the external gateway is specified. The GP client installs fine on the Windows endpoints.

 

The remote user logs into the Win 10 endpoint with their Windows domain credentials as no

...

rchung54 by L2 Linker
  • 1958 Views
  • 3 replies
  • 0 Likes

Resolved! PA5050 | PSU | two failed power supplies

Hi All,


We have a dead PA5050 device due to double failure of PSU.
One day failed first power supply and PA5050 worked fine on remaining only. A day after failed second power supply and PA5050 died.
As soon as our support contract ended  we can not ask

...

pa5050PSU.jpg
IHEP by L1 Bithead
  • 3282 Views
  • 5 replies
  • 0 Likes

Different log retention periods

Hi,

 

for privacy reasons our customer has different log retention periods. He want's to delete all personally identifiable traffic log for traffic from internal to external to delete after 7 days. Also traffic logs for blocked traffic from externel to

...

Resolved! Panorama Floating IP?

Does anyone happen to know if it is possible to create a floating IP that will direct you to the active Panorama in an HA pair? So the floating IP would be 10.10.10.1 while the actual device IPs would be 10.10.10.2 and 10.10.10.3. This way the admini

...

VPN goes down each 8 hours

HI,

 

We have a VPN from PA to Oracle cloud. We realised that this VPN goes down each 8 hours and it takes so long to renegotiate. From Oracle side tells this: "

 early November, OCI implemented enhancements to IKE, including support for additional DH g

...

BigPalo by L4 Transporter
  • 3519 Views
  • 3 replies
  • 0 Likes

Resolved! security policy between layer 2 zones

Hi, I am new to Palo Alto, so this might be a dumb question, below is the setup I have been trying to get it to work -

  1. two layer2 zones; Zone1 and Zone2
  2. three PCs, PC1; PC2 and PC3
  3. PC1 in Zone1
  4. PC2 and PC3 are in Zone2
  5. all three PCs are on the same subnet

...

VPN and NAT query

Hi All,

 

Can someone help me with a NAT over VPN. What I thought was correct isn't working and I have tried a number of combinations that all fail.

 

The encryption domains are (based on Palo) Remote 85.90.253.239, local 192.168.90.228, to reach a serve

...

a.jones by L3 Networker
  • 2691 Views
  • 3 replies
  • 0 Likes

Firewall bidirectional nat

I configured the bidirectional nat. After the configuration is complete, it can be accessed from the outside, but it cannot be accessed from the internal network. The link I visited is https://anyshare.positecgroup.com/#/
The public address is 218.4.7

...

image001(12-11-16-50-48).png
image002(12-11-16-50-48).png