General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 249 Views
  • 0 replies
  • 1 Likes

Log traffic on Panorama is less than firewall device

Hi everyone,

iam using the monitor > traffic on panorama and saw the period logs more smaller than the firewall device, in panorama we have log until 02/14/2020, while in firewall device the log starts on 01/31/2020, i used the command show system log

...

bmacedo by L0 Member
  • 2403 Views
  • 1 replies
  • 0 Likes

Resolved! SFP Compatibility for PA-820

Hi All,

 

I would like to know please  a compatible Brand of SFP ports 1Gbps MMF  for Firewall Palo Alto PA-820, for this FIrewall  the SFP model in Palo Alto is: PAN-SFP-SX . I have been told that the brand Finisar model: Ftlf8519p3bnl is compatible w

...

PBF rule with src zone 'any'

Does anyone if it is/should be possible to configure a PBF rule with src zone any?
The inline help says "To choose source zones (default is any), click Add and select from the drop-down." but 'any' is not an option when I actually try to create the ru

...

pkaren by L1 Bithead
  • 2106 Views
  • 2 replies
  • 0 Likes

Measure CPS practically

Hi Guys,

We have PAN VM 300. To implement Zone Protection, we want to measure CPS. Now we dont have Panorama and dont do firewall monitoring with any tool.

Now the admin guide suggests that:

  • Use third-party tools such as Wireshark or NetFlow to collect
...

Resolved! Is PAN-OS 9.0 recommended version for PA-3020 device?

Hi,

 

Is PAN-OS 9.0 recommended version for PA-3020 device? I can see the OS 9.0 is supported to PA-3020 but not sure whether is recommended version for PA-3020?

 

Also, I have gone through the known issues about OS 9.0 and looks like no major impact tha

...

ChiragP by L2 Linker
  • 4788 Views
  • 3 replies
  • 0 Likes

Panorama on ESXi resources

Hello community,

 

we would like to build virtual Panorama and log collectors as virtual machines on ESXi.

Does anybody know, if resources like CPU and memory must be dedicated to these machines only or can they be shared?

I cannot find it in any documen

...

Bandwidth limitation per policy

Hello All,

 

I have filled the local database with users because we do not have an Active Directory, i create a captive portal to enforce the users to do authentication. in the polices i have grouped the users depends on what they should go through net

...

diferente Version PAN 3220

Hi
The new PA3220 device (FW2) has PANOS version 9 installed, but the firewall (FW1) that is operative is on PANOS 8.1.3.
What are the steps to update the FW1 to the actual version of PANOS?

Global Protect Authentication Profile

Hi

 

I have setup Global protect and I want to use it with LDAP Authentication profile. It works fine however when in the auth profile I add a specific AD group so only users in the group allow to connect to VPN it doesn't work. Even sometime with spec

...

umar00o by L2 Linker
  • 2206 Views
  • 2 replies
  • 0 Likes

Resolved! Azure Active Directory IP ranges

Hi all, 

 

I'm trying to use Minemeld to create an EDL that includes only the IP address ranges used by Azure AD.

I've tried a few things, but can't seem to get it to work.

 

My current setup is as follows

 

Miner = cloudIPsWithServiceTags

Processor

...

dpurton by L0 Member
  • 10976 Views
  • 4 replies
  • 0 Likes

Wildfire Public Cloud - email

We’ve recently upgraded our PAN from 8.0.4 to the latest version (8.1.13) successfully.

 

Now the issue is that we’ve been getting an email stating that “registering Wildfire Public Cloud has been successfully” every 20 minutes.

 

Is there a way to make

...

SD-WAN - routing with variables

Anyone been trying to setup SD-WAN routing with template variables? Surely that page in admin guide is completely wrong? Variables should be of type IP address. 

santonic by L6 Presenter
  • 3477 Views
  • 2 replies
  • 0 Likes

Resolved! Download the licenses to PA 3220

What options are there to download the license on a PA3220 replacement of a failed  PA 3220 , which cannot connect to the internet, please inform me how to do it thanks

Resolved! Palo Alto Traps Support for SQ1 processor

An error while installing the Palo Alto Traps. The error This installation package is not supported by this processor type, contact your product vendor.

 

As per Palo alto Traps, Agent will support Intel and AMD processor only and I have Processor Micr

...

Resolved! Deny rules with service application-default

It is not clearly described in documentation and I could not find a complete topic related to it. How does application:any, service:application-default behaves when apply to a “Deny” rule?

 

Presumably it will block the application if application is de

...

batd2 by L4 Transporter
  • 5846 Views
  • 3 replies
  • 0 Likes
  • 23627 Posts
  • 107 Subscriptions
Top Liked Authors
Labels