General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

is Cluster possible?

Hi all,

 

is quick question on above statement. is it possible to configure clusters with Palo Alto?

I do not mean Active/Standby or Active/Active

 

I was not able to find any documentation on this. if this is possible, could someone point me in this dire

...

Aggregate Ethernet (AE) with errors

Hello everybody!


I have an Aggregate Ethernet (AE) with a total of four interfaces to two switches through a port channel, whereby the switches are combined forming a logical switch.

On the switch interfaces I see high "output discard" values, and on t...

Redistribute Static routes into BGP

Hi everyone,

 

I am working on redistributing static routes into BGP routing table on PA 3260. I have few questions and I would like to confirm with you as I am little unsure of all the settings.

 

Scenario:  I have 30 static routes under a virtual route

...

SonicWALL Integration

I read a previous post that specified that you can use MineMeld with SonicWALL's Dynamic Botnet List Server as long as you use the option tr=1. I have attempted to do this by entering the URL https://myserver.com/feeds/inboundfeedhc?tr=1 in the Sonic

...

sdunfee by L0 Member
  • 1543 Views
  • 0 replies
  • 0 Likes

Retrive server list of Screenconnect app

Hi to all, i need to authorize Screenconnect agent on mine endpoints for remote support.

I just have authorized the app screenconnect but seem to work only with the browser version.

Installing the app, it doesn't work. Searching into the log and test

...

New Comer

Hi Im new to working with Palo Alto, and I im process of configuring a new Pa-820, I wanted a lttle infomation and help. 

 

1) Do you have to create a return rule if you want the return traffic back from the destination back to your source address. Or

...

kev91234 by L1 Bithead
  • 2505 Views
  • 6 replies
  • 0 Likes

Cannot add SNMP

Hi,

 

I am trying to add Palo Alto firewalls to our monitoring system but one of our PA-220 is failing to be added.   

We use Panorama and PAN-OS 8.1.3.

 

 

Any idea how to fix this issue?

SNMP.jpg

EDL HTTP response code said error

Hi,

 

I am facing an issue where the External Dynamic List shows an error when tested by cli command "request system External-list show", the error is "HTTP response code said error", but whem the list is tested from any other device it is accessable a

...

Resolved! FTP_Passive_Antivirus_Profile_Performance

Hi Guys,

 

quickDescription => paloAlto networks physical firewall and antivirus profile for FTP.

Task => Using a script to get/put a file (few hundred kilobytes) from/to the FTP server every 100ms (ten times per second or 20 times per second) . The FTP

...

curl prototype

Not sure if this is possible, can minemeld have a prototype do do a curl URL lookup with and API key?

if so any help would be appreciate it.

sami-su by L2 Linker
  • 1076 Views
  • 0 replies
  • 0 Likes

Resolved! phase 1 up phase 2 down

( description contains 'IKE phase-1 negotiation is failed. Peer\'s ID payload 10.175.150.0 (type ipaddr) does not match a configured IKE gateway.' )

 

 

and ( description contains 'IKE phase-1 negotiation is failed as responder, main mode. Failed SA: 19

...

MP18 by Cyber Elite
  • 6039 Views
  • 2 replies
  • 0 Likes

ALB Health Checks -> Palo Alto -> ALB

Trying to get the Palo Altos to register as healthy. Can anyone provide some assistance on NAT policies, or configurations for getting TCP 80 checks from ALB to Palo Altos to ALB which sits in front of two App servers? 

 

ALB (Palo Altos)

   |

Palo Altos

...

Resolved! IpSec VPN between Palo and Vyatta

Hi all,

 

I try to configure an IPSec tunnel between PA-500 (version 7.1.4) and vyatta.

Config seem to be ok, phase 1 is ok but nego for phase 2 is block in "No Proposal chosen". I select in phase 2 all possibility given by the palo.

 

Any body already su

...

VinceM by L5 Sessionator
  • 5343 Views
  • 8 replies
  • 0 Likes

Resolved! Custom URL Filter - Site Definition Format

We started using Custom URL Categories, and it seems when we define a site, we have to add both a wild card to cover any subdomain, and a / to cover all URI/URL of the domain, IE:

*.acme.corp      (To cover subdomains)

acme.corp/       (To cover all UR

...

Top Solution Authors
Top Liked Authors