General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 199 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 881 Views
  • 0 replies
  • 0 Likes

Resolved! SFP Compatibility for PA-820

Hi All,

 

I would like to know please  a compatible Brand of SFP ports 1Gbps MMF  for Firewall Palo Alto PA-820, for this FIrewall  the SFP model in Palo Alto is: PAN-SFP-SX . I have been told that the brand Finisar model: Ftlf8519p3bnl is compatible w

...

PBF rule with src zone 'any'

Does anyone if it is/should be possible to configure a PBF rule with src zone any?
The inline help says "To choose source zones (default is any), click Add and select from the drop-down." but 'any' is not an option when I actually try to create the ru

...

pkaren by L1 Bithead
  • 2318 Views
  • 2 replies
  • 0 Likes

Measure CPS practically

Hi Guys,

We have PAN VM 300. To implement Zone Protection, we want to measure CPS. Now we dont have Panorama and dont do firewall monitoring with any tool.

Now the admin guide suggests that:

  • Use third-party tools such as Wireshark or NetFlow to collect
...

Resolved! Is PAN-OS 9.0 recommended version for PA-3020 device?

Hi,

 

Is PAN-OS 9.0 recommended version for PA-3020 device? I can see the OS 9.0 is supported to PA-3020 but not sure whether is recommended version for PA-3020?

 

Also, I have gone through the known issues about OS 9.0 and looks like no major impact tha

...

ChiragP by L2 Linker
  • 5068 Views
  • 3 replies
  • 0 Likes

Panorama on ESXi resources

Hello community,

 

we would like to build virtual Panorama and log collectors as virtual machines on ESXi.

Does anybody know, if resources like CPU and memory must be dedicated to these machines only or can they be shared?

I cannot find it in any documen

...

Bandwidth limitation per policy

Hello All,

 

I have filled the local database with users because we do not have an Active Directory, i create a captive portal to enforce the users to do authentication. in the polices i have grouped the users depends on what they should go through net

...

diferente Version PAN 3220

Hi
The new PA3220 device (FW2) has PANOS version 9 installed, but the firewall (FW1) that is operative is on PANOS 8.1.3.
What are the steps to update the FW1 to the actual version of PANOS?

Global Protect Authentication Profile

Hi

 

I have setup Global protect and I want to use it with LDAP Authentication profile. It works fine however when in the auth profile I add a specific AD group so only users in the group allow to connect to VPN it doesn't work. Even sometime with spec

...

umar00o by L2 Linker
  • 2378 Views
  • 2 replies
  • 0 Likes

Resolved! Azure Active Directory IP ranges

Hi all, 

 

I'm trying to use Minemeld to create an EDL that includes only the IP address ranges used by Azure AD.

I've tried a few things, but can't seem to get it to work.

 

My current setup is as follows

 

Miner = cloudIPsWithServiceTags

Processor

...

dpurton by L0 Member
  • 12290 Views
  • 4 replies
  • 0 Likes

Wildfire Public Cloud - email

We’ve recently upgraded our PAN from 8.0.4 to the latest version (8.1.13) successfully.

 

Now the issue is that we’ve been getting an email stating that “registering Wildfire Public Cloud has been successfully” every 20 minutes.

 

Is there a way to make

...

SD-WAN - routing with variables

Anyone been trying to setup SD-WAN routing with template variables? Surely that page in admin guide is completely wrong? Variables should be of type IP address. 

santonic by L6 Presenter
  • 3703 Views
  • 2 replies
  • 0 Likes

Resolved! Download the licenses to PA 3220

What options are there to download the license on a PA3220 replacement of a failed  PA 3220 , which cannot connect to the internet, please inform me how to do it thanks

Resolved! Palo Alto Traps Support for SQ1 processor

An error while installing the Palo Alto Traps. The error This installation package is not supported by this processor type, contact your product vendor.

 

As per Palo alto Traps, Agent will support Intel and AMD processor only and I have Processor Micr

...

Resolved! Deny rules with service application-default

It is not clearly described in documentation and I could not find a complete topic related to it. How does application:any, service:application-default behaves when apply to a “Deny” rule?

 

Presumably it will block the application if application is de

...

batd2 by L4 Transporter
  • 6447 Views
  • 3 replies
  • 0 Likes

Resolved! Syslog Custom Log Format

If I use a custom log format for syslog does the new custom format replace the existing default format?

 

So if I want syslog to send before-change-detail and after-change-detail do I have to add every default field to the new custom format so I get de

...

  • 24014 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Authors
Labels