General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 193 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 875 Views
  • 0 replies
  • 0 Likes

Log Forwarding Rule/Object

I have a server that connects every 10 minutes to an SFTP server.  I would ideally like to know when it is done for the day.  So I setup an email server profile and started on a Log Forwarding object.  It does not really have to be a log, just and em

...

DIR_IT by L0 Member
  • 2179 Views
  • 2 replies
  • 0 Likes

Replace 5050 with 5250

Customer is replacing a 2 pair of 5050's multi-vsys with 2 pair of 5250's. All of the configurations are local to the firewall with the exception of objects which are managed by Panorama. The final plan will be to have Panorama manage the firewalls a

...

Aruba AP with PAN, User-ID mapping with IP, Syslog Filters

I'm trying to map User-ID to IP in our intranet so that we could easily identify User in PAN Traffic.

 

We have Aruba APs adn AC authenticating with external Radius Server,  While our PAN is sitting at the gateway.

 

What i'm trying to do is using Aruba

...

ZhenGuo by L1 Bithead
  • 7474 Views
  • 3 replies
  • 0 Likes

First time BGP setup VR question

We are about to implement EBGP for the first time. The EBGP will have two peers. The ISP wants it to be used as a primary/secondary rather than equal split. We currently have two ISPs that will be going away. We are a 24/7 shop so we need a strategy

...

Resolved! Global Protect PreLogon question

Hi All,

 

I am testing a build for Global Protect PreLogon which I have working to a degree.

 

When I log in for the first time I successfully connect to GP using machine cert. When I log out, it switches to the prelogon state.

 

When I reboot or boot the

...

a.jones by L3 Networker
  • 15285 Views
  • 6 replies
  • 1 Likes

Resolved! Port Move - Using Panorama Templates

Hi Folks,

I need to do a port move on a 3220 - RJ45 to an SFP port - part of an ISP upgrade. Everything else remains the same.

 

The trouble i have is that all the config is managed from a Panorama Device group. I don't know of a way of editing the vari

...

GN_ROS by L1 Bithead
  • 2596 Views
  • 2 replies
  • 0 Likes

Resolved! QoS either on Sub Interface or Vsys

I have 24 VSYS on the Firewall,

All of them are using the same physical interfaces for incoming and outgoing traffic but different sub-interfaces.

 

I have decided to apply the QoS profile for egress traffic. As I know I can apply the QoS on the physica

...

Access GUI port.

 There are two locations where the only dedicated link is (X) access to the management of the security teams is through publication (https: // xxxx: port) All security teams have a management IP and are published with the same public ip 200.15.21.1 A

...

Global Protect, Win 10 drive mapping issues

Hello all,

 

Just throwing this out there to see if anyone has seen similar issues.  Over the last 6 months we have been having intermittent drive mapping issues on clients that have Global Protect installed.

 

All the clients have Win 10 on them and we

...

Resolved! Firewall log storage quota related

Hi
I have a question regarding log quota.

You have set the firewall's configuration related log quota to a minimum.

Immediately the logs were reduced to a minimum. (Approximately 500 lines)

After that, the logs are stacked, but the previous logs are not

...

jskang by L1 Bithead
  • 2527 Views
  • 1 replies
  • 0 Likes

Resolved! PBF conflict with "ip strict option" in zoon protection

Hi All

i have a scenario where the traffic works fine if it's forwarded by the routing table (and nat is applied)

when i used pbf, it didn't work, checking global counters i found oacket are dropped and the reason is "strict ip" option in the zone prot

...

Resolved! Routing between overlapping networks

Hello,

I want to replace our existing firewall with a PA-850. Thereby I have a problem, which I cannot get solved.

I have to route to an external network, which unfortunately uses the same subnet as ours.

Until now, I have used a small Linux VM, which u

...

problem.PNG
  • 24009 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Posts
Top Liked Authors
Labels