General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 415 Views
  • 0 replies
  • 2 Likes

Map IP Addresses to Users - Azure-AD Cloud Identity User ID

Map IP Addresses to Users - Azure-AD Cloud Identity User ID

 

Good afternoon, thank you for your time and cooperation.

 

I understand that it is possible to apply the Mapping of groups, etc, but example:

 

If I have Workstations integrated to Azure A

...

Metgatz by L4 Transporter
  • 2621 Views
  • 3 replies
  • 0 Likes

Resolved! frame_ancestors_missing

Hi 
I run a regular scan on our equipment from a public source and I am seeing the following vuln being flagged against the URL that is used for our Palo devices and I was hoping someone would have an answer as there's not much information out there.

...

Destination NAT with multiple server.

Hello Team,

 

I have configured destination NAT in my environment with one server.

Now i can see the number of users increases and too much traffic i am getting in one server, so i want to configure 2 more server with the same services.

For example:-

 

If

...

Jafar_Hussain_0-1587638994562.jpeg

Resolved! Upgrading from 850s to 1410s.

Hello All!  

I am upgrading from 850s managed by Panorama to 1410s, managed by the same Panorama.  No new interface configs, just a simple cable swap.  

Is there a procedure for this?  Is it as simple as plugging in the new 1410s, attaching to panora

...

RonClark by L0 Member
  • 948 Views
  • 1 replies
  • 0 Likes

Resolved! Scheduled Policy not terminating existing session

Hello everybody,

 

I have a PA-220 and setup a rule that my children cannot access the internet after 8pm. This is working but only for new sessions. Existing sessions like TeamSpeak or BattleNet started before 8pm are still open. Can I somehow kill al

...

Dispaying object name in traffic monitoring

Hi,

 

I would like to know if it's possible to display object name associated to each address in traffic logs. I cant find it in any columns but i'm wondering if there is another way to do it. In fact, we want to organise the logs to have a better visi

...

thkarim by L1 Bithead
  • 5006 Views
  • 9 replies
  • 0 Likes

Stats dumps api period time

Does anyone know if there is a way to export the stats dumps with API, with a periid time 30 days? 

I tried in this way:

"/api/?type=export&category=stats-dump&starttime=2024/04/01@00:00:00&endtime=2024/04/30@00:00:00&key="
but retrive the ionly 7-l
...

setting up multiple internet connections

Translator
 
 
 
 

 

Translator
 
 
 
 

Hi everyone. I have a PA-220 firewall. It is currently connected via interface 1/8 to an internet connection that I will soon have to discontinue, and which I will call GW1 here.
At the same time I

...

gnesper by L2 Linker
  • 2549 Views
  • 14 replies
  • 0 Likes

No logs in the monitor > traffic tab?

Hello All,


1.) I have just installed Palo Alto 7.1 in Eve-NG, and  made two interfaces as Vwire with zone Trust and Untrust.

2.) I am able to access access everthing (e.g. internet, ping, etc.) hence policies are working fine  as I have created a polic

...

no logs.png

Update Panorama

Did not found any email to write Palo alto PAN-OS developers that hence writing here on feedback on palo alto Panorama update.

 

After finishing update panorama then against the version we update it gives option of "Re-Install" by clicking on that it

...

Resolved! Port forwarding through ipsec tunnel

Hello,

 

I have two Pa-440's.  One 440 has a public static ip and the other is just dhcp as of right now.     I do a site to site to site vpn working between them.  

 

I setup an original port forward on the public  static ip device to a local host a

...

IPSec IKEv2 multiple events per second

Hello everyone,

 

I see many events per second for a site-to-site IPSec tunnel and am unsure if it's normal. The below events have a severity level of informational but go over and over in a second.

My question is, is it normal? if not, where should

...

BGP Advertising prefix to same AS it was learned from.

I'm working on a VRF-centric DC model that utilizes a PA as the firewall platform between VRFs. One of the snags I'm hitting is that if a route is learned from R1 on an AS (say 65001), and is advertised via eBGP to the PA (AS 65002), the PA won't eve

...

Tyler_C by L1 Bithead
  • 13545 Views
  • 15 replies
  • 0 Likes
  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels