General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 337 Views
  • 0 replies
  • 2 Likes

Minemeld High Availability

MineMeld needs to be deployed in a high availability model, so if one goes down firewall will not start blocking allowed traffic from the rule base. What is the recommendation here?

Evaluation License

Hi guys, 

 

How do i get or buy evaluation license here? I do not see a link that suggest where to get or what process is needed. I'm running a PA lab on EVE-NG and wanted to be able to run Panorama. Now, i know to do that, i need to get a eval license

...

Resolved! Recommended Software release

Hi PAN Community!

 

I'm just wondering if there's a dedicated page/link I can refer to if I want to confirm if a certain release is recommended or not. I don't want to raise a TAC case everytime. Thanks!

Rules check by logs with expedition

Hello,

 

For one of our client , using PA 850 in cluster,

 

They have 8 zones for voip , printer , camera etc

 

And all the security policies are wide open.

 

Now we want to restrict the policy by looking at logs from each zone towars other.

 

Can we export lo

...

Microsoft IP ranges and FQDN-s in outgoing rules

Hi all,

must be someone had similar thoughts too,

we have a customer who'd like to secure outgoing traffic, by specifying not only applications, but also restrict destination FQDN-s and/or IP ranges.

Issue with Microsoft is that their FQDN-s, and moreov

...

Goran_A by L0 Member
  • 3126 Views
  • 1 replies
  • 0 Likes

Palo DHCP Server

I have been having issues with DHCP server reservations on the panOS 10.x 

 

I make reservations and I have found some devices i made reservations for get other IP addresses at times and botches my policies. 

 

Anyone else have this issue?

Resolved! HIP profile for external Partners

Hello ;

We have to setup HIP profile check for  Corp users and external partners

 

Currently we have a common Loopback Interface having a Private IP and we have a tunnel interafce 

 

Both loopback and Tunnel are part of same zone called GP

 

This is same Cl

...

session disconnect during A-P failover

Hi,

 

Can anyone suggest, if we failover from Active to Passive unit on PA firewall. will this maintains the established sessions by default. 

 

Or we have to additionally enable some other setting to make this enable (should maintain session during clus

...

Jimmy20 by L2 Linker
  • 3337 Views
  • 2 replies
  • 0 Likes

LSVPN - Contingency

Hi guys,

    I have one snario that have some satellites connecting each with Global Protect Portal (Large Scale VPN) and I need implement contingency. I was trying to create other portal, other gateway , PBF in the satellites to control default route

...

Password protected internal site

Hi everyone,

 

I'm trying to migrate a rule of an ancient firewall (Microsoft ISA server) that was "publishing" an internal resource using regular HTTP - just a web page - but protected by an RSA SecurID login page. The ISA / RSA implementation was jus

...

Rievax by L2 Linker
  • 2773 Views
  • 4 replies
  • 0 Likes

Resolved! Only 0.0.0.0/32 Obtained from MindMeld Query

I have been using MeldMeld for several months in a lab environment with great success. Recently I setup a new server for our production firewalls but I have encountered a problem that I have not been able to solve.

I can query MindMeld using a regula

...

jnye by L1 Bithead
  • 10004 Views
  • 6 replies
  • 0 Likes
  • 23670 Posts
  • 108 Subscriptions
Top Liked Authors
Labels