General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

IPsec VPN throughput on 3220

Hi Everyone, As per PA-3220 datasheet IPsec throughput can be 2.5Gps.https://www.paloguard.com.au/datasheets/pa-3200-series.pdf The palo in my environment got 1 Gig interface (internet facing) and multiple ipsec tunnels are configured to communicate to different cloud providers without any rate limiting....so question is how to figure out what...

how to create virtual system in gns3

Hello Experts,I am new to palo alto. I have installed palo alto (8.0.0) in gns3 but there is no option of creating virtual system. May i know how to create ? Also could you please let me know from where can i learn palo alto. Is there any document/website ? ThanksNitesh

Resolved! Query on how to to use filtering or search scope

We are using PA-850. We are constantly getting alert: Error for user group count exceeds 1000 threshold. We understand the error is due to hardware limitation of the PA model and it is restricted to 1,000 AD groups. We would like to know how to use filtering or search scope so the Palo Alto device is no looking at the entire AD.

URL filtering does not work with Firefox

I am applying URL Filtering but I notice that with chronium type browsers it applies the blocking, making tests I see that the filters are not being applied when you surf with Firefox.You can even enter XXX pages.What's wrong?I am bringing user groups from AD.

VPN Palo Alto<->Cisco router issue

Hi, We have a VPN between PA and cisco router. THE VPN is UP but we are having a strange behaviour with Phase1 lifetime.WHen the lifetime phase1 expired (24hour), the phase1 goes down in CISCO side, and we need to renegotiate pahse1 in order to get up again. These are the events: 2020-03-02 12:05:13 [INFO]: ====&gt; PHASE-1 SA LIFETIME EXPIRED &...

BigPalo by L4 Transporter
  • 2365 Views
  • 1 replies
  • 0 Likes

Resolved! Minimum supported GlobalProtect version and compatibility

Greetings all, This morning I moved our GlobalProtect from a 4.0.x release to 5.0.7. We're planning on a maintenance tonight to upgrade our firewalls to 9.0.6 and I noticed that there is a minimum supported GlobalProtect version of 4.1 for the 9.0 platform. If I upgrade the firewalls tonight and there are users who still have the older 4.0.x Glo...

jsalmans by L4 Transporter
  • 3666 Views
  • 1 replies
  • 0 Likes

XFF Value 1.1.1.1 when "Strip X-Forwarded-For Header" enabled

Hello, Looking for some help if possible? Trying to set up XFF (PA-3250, 8.1.12), I have tried to set it up following this tutorial:https://live.paloaltonetworks.com/t5/General-Topics/Configuring-XFF-logging-without-a-URL-Filtering-License/td-p/239987 The only part I have not configured is pushing the URL logs to the syslog server.The problem is...

remove disk fromPAN 3220

I need the process of how to remove the hard drive from a PAN 3220 since I cannot enter maintenance mode and before doing the RMA for the firewall, I must clean the disk

Panorama: config output on CLI

Hi,I would like to backup and restore a panorama like I can with the firewall, on the firewall i set "set cli op-command-xml-output on" and get the config via the console, then bootstrap the firewall to restore the config...now i am wondering how I can do the same with panorama...it seems that i can neither set operational output to xml, nor res...

CLIq by L3 Networker
  • 13086 Views
  • 11 replies
  • 1 Likes

Resolved! PA-220 Strange IP Spoofing Behaviour

Hi,My colleague and myself are complete Palo newbies so apologies as this is probably covered elsewhere but I don't know what to search for as I've never seen a firewall do this. We bought a PA-220 for evaluation intending to possibly move away from Cisco.My colleague configured it in a basic way and the box has completely disrupted the test su...

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels