General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 329 Views
  • 0 replies
  • 2 Likes

Resolved! PBF conflict with "ip strict option" in zoon protection

Hi All

i have a scenario where the traffic works fine if it's forwarded by the routing table (and nat is applied)

when i used pbf, it didn't work, checking global counters i found oacket are dropped and the reason is "strict ip" option in the zone prot

...

Resolved! Routing between overlapping networks

Hello,

I want to replace our existing firewall with a PA-850. Thereby I have a problem, which I cannot get solved.

I have to route to an external network, which unfortunately uses the same subnet as ours.

Until now, I have used a small Linux VM, which u

...

problem.PNG

Resolved! SCCM management of remote GP Windows clients

We just deployed and started using GlobalProtect 5.1.1 to support the work-from-home COVID-19 initiative for thousands of remote workers.  Everything is working well but my SCCM guys can't manage any of the remote clients to push patches or software

...

pnelson by L2 Linker
  • 19182 Views
  • 15 replies
  • 0 Likes

Dynamic update for trial license

Hi all,

 

I received PA-200 that was stored on storage for years.  The box was unopend so I registered device and requested trial license (according to the portal site, it seemd that the device only had expired Software Warranty Support).  After execut

...

starplat by L1 Bithead
  • 5851 Views
  • 7 replies
  • 0 Likes

What's the latest recommended version for PA-820 ?

Hi everyone,

 

My company i've been working outsource informed me about a vulnerability which is recently announced.So it seems i should update PA-820 which is working as cluster with Passive (HA).Current version is 9.0.8.Is there anyone who's been run

...

Onrcan91 by L0 Member
  • 4286 Views
  • 1 replies
  • 0 Likes

Is there an option to store a file crossing PA?

I would like to block certain file types using File Blocking profile (which works fine), but instead of just discarding files which were blocked I would like to store them for later. Or in other words is it possible to get hold of files which PA bloc

...

Resolved! Help with routing decision

Hi

 

Got BGP providing DGW and I have a static 0.0.0.0/0 with metric 240 so its last resort route

 

but

VIRTUAL ROUTER: vr_default (id 2)
==========
destination nexthop metric flags age interface next-AS
0.0.0.0/0 0.0.0.0 19 ~
0.0.0.0/0 202.74.32.69 ?B 612028

...

Resolved! Query About To Increase VM-Firewall Disk Storage Size

Hi Team,

 

We deployed a VM series firewall in azure and it's in production now. 
Presently the VM-Firewall OS disk storage size is 60GB and there is no Data Disk used. 

Since the customer is need a 6 months of log retention period. 
As customer isn't rea

...

Resolved! multi lan multi wan best practice

situation is this :

 

currently i have :

multiple lans/vlans

1 p2p line (single subnet static route0

1 internet line

1 virtual router

 

now, i need to add another wan

 

my best practice should be

a : to do another virtual router and separate relevant networks t

...

Resolved! Vulnerability protection ip exception

We have our regular penetration tests coming up and we need to allow the IP addresses that are doing the testing to scan our network. Is there a way to create an IP based vulnerability protection exception? I know how to create an exception for a spe

...

  • 23670 Posts
  • 108 Subscriptions
Top Liked Authors
Labels