General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 436 Views
  • 0 replies
  • 2 Likes

Expressway-E and C and NAT

I am putting in a Jabber system using Expressway-E and C. My Expressway-E server is NAT'd through the PA-3020 and I have a security rule set up to allow the required ports in on the Public address. If I make a call IN from an external Jabber client i

...

Resolved! Firmware Updation A-P

Hi Guys, 

 

We have to upgrade firmware of our PA FWs in Active-passive Cluster (It's first time). Referred some online available documents to get familiar with upgradation process but all of them have difference at certain steps (I mean they are not u

...

Jimmy20 by L2 Linker
  • 4825 Views
  • 7 replies
  • 0 Likes

Resolved! Access Denied to Learning Articles

Hi, 

How do I get access to below link?

https://live.paloaltonetworks.com/t5/learning-articles/packet-flow-sequence-in-pan-os/ta-p/56081

 

I usually get below message when I try to access learning articles on PA. I'm registered as a customer. Any ideas p

...

Active-Passive Cluster Link & Path Monitoring

Hi All, 

 

Referring my prior discussion Subject - "Firmware Updation A-P" , We have below configuration enabled on Link & path monitoring configuration at this moment, have a look on screen shot.

 

Will this be sufficient to trigger auto failover to Pas

...

Link and Path Monitoring Screen Shot.jpg
Jimmy20 by L2 Linker
  • 2517 Views
  • 2 replies
  • 0 Likes

How to allow NTP ONLY to pool.ntp.org

I have a requirement to allow the internal NTP servers to sync with ONLY US.pool.ntp.org.  I have tried creating the rule 2 different ways.

  1. Create a address object using FQDN for us.pool.ntp.org and use that in the rule destination.
    1. This doesn't work a
...

Logon Method for mixed users using certificates

Hello ,

 

I have a requirement ,  Currently both Internal and external users ( both are AD users) connect to GP via their AD user name and Password

 

Requirement is enroll Machine certificate to Internal Users and a Common Certificate issued by Palo Alto

...

Resolved! Mangement interface

Hi,

 

i have distribution , core ,access layer 

data center are connected to core  , Need to setup data center firewall 

In data center we are  following 192.168.0.0 /16 

in distribution 10.0.0.0/8 

So what should be my  managemnt interface ip address . 

I

...

simsim by L4 Transporter
  • 5952 Views
  • 9 replies
  • 0 Likes

Log Forwarding Rule/Object

I have a server that connects every 10 minutes to an SFTP server.  I would ideally like to know when it is done for the day.  So I setup an email server profile and started on a Log Forwarding object.  It does not really have to be a log, just and em

...

DIR_IT by L0 Member
  • 1992 Views
  • 2 replies
  • 0 Likes

Replace 5050 with 5250

Customer is replacing a 2 pair of 5050's multi-vsys with 2 pair of 5250's. All of the configurations are local to the firewall with the exception of objects which are managed by Panorama. The final plan will be to have Panorama manage the firewalls a

...

Aruba AP with PAN, User-ID mapping with IP, Syslog Filters

I'm trying to map User-ID to IP in our intranet so that we could easily identify User in PAN Traffic.

 

We have Aruba APs adn AC authenticating with external Radius Server,  While our PAN is sitting at the gateway.

 

What i'm trying to do is using Aruba

...

ZhenGuo by L1 Bithead
  • 6829 Views
  • 3 replies
  • 0 Likes

First time BGP setup VR question

We are about to implement EBGP for the first time. The EBGP will have two peers. The ISP wants it to be used as a primary/secondary rather than equal split. We currently have two ISPs that will be going away. We are a 24/7 shop so we need a strategy

...

Resolved! Global Protect PreLogon question

Hi All,

 

I am testing a build for Global Protect PreLogon which I have working to a degree.

 

When I log in for the first time I successfully connect to GP using machine cert. When I log out, it switches to the prelogon state.

 

When I reboot or boot the

...

a.jones by L3 Networker
  • 14475 Views
  • 6 replies
  • 1 Likes

Resolved! Port Move - Using Panorama Templates

Hi Folks,

I need to do a port move on a 3220 - RJ45 to an SFP port - part of an ISP upgrade. Everything else remains the same.

 

The trouble i have is that all the config is managed from a Panorama Device group. I don't know of a way of editing the vari

...

GN_ROS by L1 Bithead
  • 2333 Views
  • 2 replies
  • 0 Likes
  • 23699 Posts
  • 110 Subscriptions
Top Solution Authors
Labels