General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 191 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 873 Views
  • 0 replies
  • 0 Likes

Resolved! Maximum number of OSPF routes supported

what is the maximum number of OSPF routes supported on PA3020 and PA3220.

I have checked the maximum number of routes using the command show system state | match cfg.general.max-route.

Is there any specific limit for OSPF routes in the routing table ?

@

...

APPLICATION INCOMPLETE

Good day All

 

i had read all the possible solution to this issue, but still presenting the same symphtom, i have applied all solutions mentioned on all posts.

 

does anyone had or did something different?

 

thanks in advance.

kind regards.

 

Capture.PNG

Direct web traffic to internal proxy

For some reason oun of our MS GPO's is failign to apply ( or rather is wiping ) proxy server settings for our users. 

 

The users shoudl be hitting the proxy before going through the PA, but it's broken.

USER-Website:80:443 --> PROXY:8080  --80:443--> -

...

fw1.jpg

Caveats for changing interface netmask?

I've got a client that wants to expand the network range on one of their interfaces for additional DHCP scope space, moving from a /24 to a /23.  I wanted to check if there are any caveats to this on the PAN side?  Will the update take effect as soon

...

URL Filtering Issue

Hello Community,

 

I want to block one specific https URL (without applying decryption rule) but the traffic is being allowed by the lower policy. I have applied many combinations with the wildcards but none of them works.

Can someone please help me wit

...

JAIDEEP by L0 Member
  • 2165 Views
  • 1 replies
  • 0 Likes

Asymmetric Routing and TCP Syn Check

Hello All,

 

I have a scenario where I will be having two ISP's (ISP-A and ISP-B) connected to the PA Firewalls via eth1/1 and eth1/2 interfaces. Both these Interfaces will be in the same untrust-zone. ISP-A will be the primary one and ISP-B the backup

...

Anjush by L0 Member
  • 4876 Views
  • 2 replies
  • 0 Likes

Global Protect and google play traffic from mobile

Hi all ,

 

I am running PAN OS 8.0.19 and GP 4.1.12 and users cannot access google play store while they are connected to the VPN from androids  .

 

I have tried with spli tunneling including 63 subnets from google and I have tried full tunnel defining i

...

Resolved! SSL Exclude Option Missing in 8.1

Hi Community,

 

I noticed, that in 8.1.x (7,8,9, 9h4) the "SSL Exclude Option" in Device > Certificate  Management > Certificates is missing.

The PAN-OS 8.1 guide mentions this option on page 198, and you can see it in a screenshot in this KB point 7:

ht

...

Chacko42 by L4 Transporter
  • 4692 Views
  • 2 replies
  • 0 Likes

Resolved! LSVPN Satellite Deny specific subnet to Publish to gateway

In LSVPN VPN setup how can we deny specific subnet to not advertise to gateway.

 

I have selected Publish all static and connected routes and I want to deny some of static routes of them , how can we do that ?

 

I know we can disable public option manual

...

Multicast with Chromecasts confusion

Background:

 

I have a trust zone on ethernet1/2 192..168.1.0/24 and an iot zone on ehternet1/4 10.10.10.0/24 and I want to be able to cast things from endpoints (mobile phones and laptops) to the chromecasts on the iot zone.

 

It seems like multicas

...

multicast1.jpg
multicast2.jpg
secpol.jpg
hshawn by L4 Transporter
  • 8965 Views
  • 2 replies
  • 0 Likes
  • 24007 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Posts
Top Liked Authors
Labels