General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! LDAP authentication failover

Hi Community,

I have 2 Domain controllers serving user information. I have configured these 2 under same LDAP server profile. I am using this profile in authentication profile for GP.
I configured 4s each for search and bind timeout under LDAP server p...

BGP deafault route

Hi All,

 

I have a VSYS with two BGP sessions established - one eBGP internal and one eBGP external. Both are established to seperate peers.

 

My issue is when I look at the runtime stats in the virtual router the default route (0.0.0.0/0) is pointing (n

...

a.jones by L3 Networker
  • 1672 Views
  • 0 replies
  • 0 Likes

Resolved! Multiple vpns to the same peer

Hi,

 

We have a requirement where-in we need to configure 2 vpn tunnels to the same remote peer.

Also the remote end local ip address ranges are the same. Below is a quick explanation

 

Tunnel 1

MyPeerPublicIp = 1.1.1.1

RemotePeerPublicIp = 2.2.2.2

MylocalSu

...

adil.bgz by L1 Bithead
  • 17975 Views
  • 7 replies
  • 0 Likes

Resolved! how long phase 1 will show as red in web gui?

We have ipsec tunnel to vendor.

 

web gui shows phase 1 as down and phase 2 as up.

i can ping across the vendor network.

traffic is passing via tunnel

 

show vpn flow shows  active.

 

need to know how long web gui will show phase 1 is red?

when web gui will s

...

MP18 by Cyber Elite
  • 2310 Views
  • 2 replies
  • 0 Likes

PA 5220 vsys HA Support

Hi,

 

we have a pair of PA 5220 appliances currently running only the default vsys (vsys 0) in an HA (Active / Active) Setup.

 

We would like to add additional vsys instances and also have each of the new instances running in a HA A/A Setup.

 

Would the HS

...

CarloMun by L0 Member
  • 3622 Views
  • 3 replies
  • 0 Likes

Problems installing on Ubuntu 16.04

I am trying to follow the directions found here:

https://live.paloaltonetworks.com/t5/MineMeld-Articles/Manually-install-MineMeld-on-Ubuntu-Server-16-04/ta-p/253336

I get to this step

  1. Adding the repo GPG key

Add the MineMeld repo GPG key to the APT t

...

Capture.PNG
Mattk by L2 Linker
  • 4556 Views
  • 3 replies
  • 1 Likes

Packet Buffer OID VM-Series

Hi,

 

Anyone know what is the OID used in the VM-Series to extract the packet buffer (hardware/software) values?

 

In the MIB of  Palo Alto Products I only find this one, but I don´t know what it exactly extracts:

 

PA-VM: 1.3.6.1.4.1.25461.2.3.29

 

Any idea

...

Resolved! unable to download or view the pa-500 specs sheet

i know this sounds like a silly question but I need to get the specs on our pa-500 firewalls. When I go to this page, https://www.paloaltonetworks.com/resources/datasheets/pa-500-specsheet nothing happens when I click the download button. Either the

...

youngi by L0 Member
  • 2738 Views
  • 2 replies
  • 0 Likes

Resolved! BGP Routing Question

Hi All,

 

I have BGP routing advertising from the Palo with eBGP advertising internally and externally for 4 vSYSs.

 

How do I advertise a particular vSYS with public IP a.a.a.a to advertise it as a route for public IP b.b.b.b/27.

 

Regards

 

Adrian

a.jones by L3 Networker
  • 4364 Views
  • 2 replies
  • 0 Likes

Subscription signatures off-line updates

Good afternoon, colleagues, I have three subscriptions: url filtering, threat prevention and wf500 signatures. How to update them off-line and is it possible to distribute these updates for the firewall and wf through Panorama?

ColaNet by L1 Bithead
  • 3674 Views
  • 3 replies
  • 0 Likes

Resolved! Run 'script' from CLI

Hi,

I wonder if it is possible to create a run a user defined script from our VM-100's CLI.

 

The script should switch Policies / Authentication / <my CP profile> to 'web-form'

 

- and do 'clear session all filter from ClassNet '

 

If this is possible how d

...

WildFire WF-500 Offline Registration

Hi All,

Can we register WildFire Physical Appliance WF-500 offline by uploading registration file like in case of VM-Series Firewalls and Panorama? WF-500 documents mentions only one way of registering WF-500 i-e. by running command "test wildfire reg

...

Resolved! Captive Portal and computers in hibernation

Hi,

We use VM-100 at a high school and frequently we switch on captive portal to impose access restrictions for certain classes.  We use AD group names in policies to target users.

 

However, despite enabling CP it appears that quite a few students who

...

  • 24028 Posts
  • 102 Subscriptions
Top Liked Authors
Labels