General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 88 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3331 Views
  • 2 replies
  • 14 Likes

Cisco router to PA 220

I am working on a migration/upgrade project to take a Cisco 2901 router and repalce with a PA-220. I'm not sure how to configure some items. Here are some of the existing Cisco router config that I need help with on how to replicate in the 220:

 

ip na

...

GIT_Sean by L1 Bithead
  • 1735 Views
  • 0 replies
  • 1 Likes

Resolved! Dual Firewall pair-True DMZ design

Hello All,

 

I am looking for any helpful suggestions,recommendations,critics etc for my new firewall design implementation project.

currently, we have a pair of 5020s facing the internet and having DMZs,Internet and Internal networks on them. My manage

...

Resolved! Two question HA

Good Morning

 

I have two questions regarding the HA Fault conditions

When I configure Link Monitoring and Path Monitoring in the Active Firewall Should I also configure these conditions in the same way in the passive Firewall?

 

The "Heartbeats Backup

...

Resolved! O365 URL rewrite

I'm using minemeld to pull the O365 urls into my PAN. I get a list that has entries like
*.domain.com
sub.domain1.com

 

I need to import those entries and rewrite them so they look like
*.domain.com/
domain.com/
*.sub.domain1.com/
sub.domain1.com/

 

Any po

...

ckemp by L2 Linker
  • 11827 Views
  • 25 replies
  • 0 Likes

Resolved! Dropbox Client not working

I have a policy rule to allow dropbox.  I am performing SSL Decryption.  The users are using the dropbox client (not web). I came across this article that mentions this will not work when decrpytion is on

 

https://knowledgebase.paloaltonetworks.com/KC

...

MikeC by L3 Networker
  • 2865 Views
  • 1 replies
  • 0 Likes

Strange behaviour web-server through PA

Hi,

 

We are having strange behaviour going to a web server behind PA. Several clients report that they can not access to this web server. In the pcap we can see that the tcp-rst is sent from client. We suspect that the issue could be in PA or any ISP

...

Router.JPG
PaloAlto.JPG
BigPalo by L4 Transporter
  • 1217 Views
  • 0 replies
  • 0 Likes

Resolved! URL Filter Test A Site page is broken

For about the last week https://urlfiltering.paloaltonetworks.com/ has been broken in way that makes it impossible to submit reclassification requests.

 

I have several sites that I'd like to reclassify, but I have been unable to do so.

When will this b

...

as-mg by L3 Networker
  • 4094 Views
  • 3 replies
  • 0 Likes

PCAP with only source IP Filter and Global counters

 

Hi Everyone,

 

For certian cloud apps we do not know specific destination IP as users have given is list of urls and multiple subnets.

My question is if we do PCAP with only source IP as filter and then do the PCAP and check the global counters for err

...

MP18 by Cyber Elite
  • 1363 Views
  • 1 replies
  • 0 Likes

PA custom response page

 

I was wondering if this is possible; can we implement a custom response page for a certain URL with an option to redirect to the originally requested site?  

MP18 by Cyber Elite
  • 1157 Views
  • 0 replies
  • 0 Likes

Resolved! App-ID Issues with Dropbox traffic

Hello,

 

We've got QoS setup on a PA-220 that classes any traffic marked with the dropbox App-ID. This class is then restricted to 2mbps. However we find that not all traffic generated by the Dropbox Sync client is marked as dropbox. Sometimes it's jus

...

Unable to get multiple global protect working.

PA3020 ,8.0.12.

I have working GP with a public ip.

I am trying to setup 2nd GP with 2nd public ip.

This 2nd ip is used as destination nat for rdp as well.

When I configure the loopback interface with 2nd ip and use it in portal and gateway ,rdp gets bro

...

How will threat functionality work with asymmetric routing

Posted this on threat discussions but havent had any responses. Please help me understand what will happen in this case.

 

I would like to understand what will happen to Threat Protection and AntiVirus(TPAV) in the following case.  Both firewalls have

...

question.PNG
SuryaR by L3 Networker
  • 1760 Views
  • 1 replies
  • 0 Likes

Seeson end reason aged out

HI friends,

 

We have created interzone rule looks like below

 

<entry name="Rule1>
<profile-setting>
<profiles>
<url-filtering>
<member>default</member>
</url-filtering>
<virus>
<member>default</member>
</virus>
<spyware>
<member>Sinkhole</member>
<

...

  • 24125 Posts
  • 100 Subscriptions
Top Solution Authors
Labels