General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 192 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 874 Views
  • 0 replies
  • 0 Likes

Adding L3 to vWire PAN

I currently have a PAN 3220 sitting in serial behind a Cisco ASA. The PAN's doing the higher level inspection, geo, correlation warnings, content filtering. I had written earlier on the forum about wanting to implement layer 3 on new interfaces and i

...

palomed by L3 Networker
  • 2512 Views
  • 2 replies
  • 0 Likes

Resolved! Certificate ca status from the CLI

I have successfully loaded my device certificate and a CA certificate from the CLI - took some seraching for format of the certificate strings, but they're in there now. 

One problem. 

In a firewall I have previously set up I show (in set format) the c

...

Palo Alto OSPF routing./wild card mask configuration.

Folks,

For OSPF configuration on the Cisco router, we normally define a wild card mask. 

 

e.g. network 1.1.1.0 0.0.0.255 area 0.

What this configuration tells the Cisco router is to form OSPF neighbor with all IP address that being with 1.1.1.x IP addre

...

nson2139 by L3 Networker
  • 2261 Views
  • 1 replies
  • 0 Likes

Trouble with multiple IPsec VPN Tunnel

Hi all,

I'm a fresh man to paloalto devices and I'm facing a problem.

Site A has a subnet 192.168.100.0/24. Site B has 192.168.40.0/21. Both sites use PA820.

Site A has a IPsec tunnel to Site B. This tunnel is running good.

Now we have a new Site C, 192.

...

mercurr by L1 Bithead
  • 5030 Views
  • 6 replies
  • 0 Likes

want to create two region in same country.

Hi,

 

I am facing an issue regarding the region configuration.

 

I want to create two custom regions.

 

I have tried, in the name, I added India and checked geolocation and added the coordinates of a city. This scenario is working.

 

When we keep the city na

...

LSVPN versus Cisco DMVPN

Looking for some feedback on anyone's experience with both/either.

 

In the Cisco realm say a mesh of 50 some sites each router has a tunnel between each site and a connection can go direct to the other location because routing is shared across the ent

...

view the urls hitting default interzon policy

Hi team,

 

We have a url filtering profile created for monitoring with action of all category as alert. And this profile has been called on default interzone policy (action deny). But nothing is gets logged, we have many traffic hitting default interzo

...

Resolved! LACP PROBLEM

Hi all,

 

I have some problems with LACP. Sometimes, randomly, the interfaces move out of AE-group.

I can see from log this error message: "receive PDU partner does not match local actor ".

Below the file l2ctrld.log .

 

 

 

 

2019-09-17 23:19:54.588 +0200 et...

Chango by L1 Bithead
  • 40197 Views
  • 10 replies
  • 1 Likes

License expiry

We're waiting for our new licenses to come through and getting a little nervous, of particular concern is our PAN-DB license which has the expiry date as 11/2/2020. 

 

It is my understanding that custom categories will work and it's just PAN-DB look up

...

kradmin by L0 Member
  • 2076 Views
  • 1 replies
  • 0 Likes

Resolved! How to access to linux mode in PA ?

Hello community,

 

Can you help me with this?

 

I need to know if its possible to instal Nagios Package into Palo Alto, hence how do I get access to the Linux Based Commands on the platform, I understand that PA is build upon Fedora.

 

Any guidance will be

...

Apadilla by L3 Networker
  • 20915 Views
  • 5 replies
  • 0 Likes

How to configure IpSec-Vpn Load balancing

Hi Team,

 

I have 2 Firewall ,Firewall A and B,I have 2 Ispon both the firewalls,I have configured ipsec-vpn on both the isp.

need to achieve Load-balancing on both the ipsec vpn.

What is the method that we can apply to achieve this.

 

 

 

  • 24009 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Posts
Top Liked Authors
Labels