General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! COMPATIBILIDAD DE TRANSCEIVER AVAGO AFBR-709SMZ

Hola,Si alguien puede ayudarme, tengo este modelo de transceiver AVAGO AFBR-709SMZ, y en la documentación me figura que está fuera de AVL y que no está disponible. Sin embargo fueron los que llegaron con los FW's. Aún así, ¿puedo usarlos y no me traería ningún inconveniente en su funcionamiento?. Gracias.!!

GariHiroshi_0-1616073617402.png

PAN-OS SDWAN tunnel failover

Hi All, I have recently setup a SD-WAN between 2 PA firewalls. a default route was created automatically to sdwan.1. Though when one of the interface failed, it is not able to failover to the remaining tunnel which mapped to sdwan.2. May I know if I need to manually create a route for sdwan.2 though I could not find the interface under the sta...

Google-meet troubles

Good morning community,I have problems to configure an access policy from the internal user network to the google-meet video conferencing service, users report that they do not listen to or view the video. When leaving the policy to any destination I see a lot of traffic going through the policy which I am not sure corresponds to google-meet.Cur...

google-meet.png

FQDN exclusion Global Protect enforce connection

Is it possible to FQDN exclude your local domain *.localdomain when enforcing network Global Protect connection? Could this be used as a workaround for not having pre-logon configured? How/why is there not a enforce global protect connection only while "outside" of the network?

Sec101 by L4 Transporter
  • 6042 Views
  • 8 replies
  • 0 Likes

Microsoft Exchange Server 0-Day vulnerabilities - Share your thoughts

Hi all, if you haven't lived under a rock for the past week, I'm sure you've heard about the 0-day MSExchange vulnerabilities. We want to let you know that Palo Alto Networks has you covered and wanted to make sure you have all the information you need. Check out the blog to get more information about these vulnerabilities and how PAN can prot...

kiwi by Community Team Member
  • 8622 Views
  • 4 replies
  • 1 Likes

Resolved! palo alto cli scripting mode limitation

Hi All, Is there any specific restriction to use commands or lines in scripting mode (set cli scripting-mode on)? The restriction, I means, how many set or delete lines/commands I can use. Not sure what's the buffer or bus size to handle if I paste 200 lines at the same time, would it crash? Device - PA 5250Os version - 9.0.9-h1 Thank you.

ChiragP by L2 Linker
  • 16477 Views
  • 3 replies
  • 0 Likes

DDNS over PPPOE

I would like to know some details about DDNS over pppoe. That feature was not available in 9.1.x series below is the document i chedked. https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/networking/dynamic-dns-overview.html However, when I check the same docs in 10.0.x series that is available. https://docs.paloaltonetworks.com/pan-os...

Jafar_Hussain_0-1615877557334.jpeg
Jafar_Hussain_1-1615877557336.jpeg

Jitter when making Phone calls

Hi ExpertsThe client is reporting Latency/Jitter when making the phone calls which is traversing through the PA firewalls 5220. We've QOS policy configured for the RTP/SIP applications (User/Zone is set to 'any') with Class 1(real-time) . Also, we've configured a Guaranteed Egress of 5000Mbps for this Class1 traffic under QOS profile which is ap...

Upgrade/Move from Panorama Legacy mode to Panorama mode

Hi,Currently Panorama is in Legacy mode, there 5 devices connected to it, 2 in 2 data centres, one at an office. Templates are configured and synced across devices including device specific templates (like configs and other device management configs). However due to the logging limitations we need to change to Panorama mode. The other temporary ...

M500 Disk Pair Raid status changes between active and clean

If I execute the command 'show system raid detail' on my m500 log servers I see the status of the disk pair toggling between active and clean. I am wondering why it would doe this. Is this normal? admin@LOG01> show system raid detailDisk Pair A AvailableStatus activeDisk id A1 Presentmodel : ST2000NX0253size : 1907729 MBstatus : active syncDi...

How are 'Bytes' counted in ACC and traffic logs?

Hi All,One of our customers has blocked the 'Music' category in URL Filtering but when we filter the 'Music' Category in ACC, it shows total bytes for the last 7 days as 5 GB. So what do bytes really represent? Why does it show 5 GB when the category is blocked? Please explain this in detail.Regards,Hiren

  • 24395 Posts
  • 123 Subscriptions
Top Solution Authors
Labels