This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Virtual Wire migration

Hi All.

I am in a postion that we would like to migrate our current cconfiguration of multiple trunk 10g links supporting a vlan with subinterfaces and vsys's to virtual wire mode on the existing chassis, (i.e. 7050, or 5060). 

As I understand it, we w

...

dwmaas by L2 Linker
  • 2242 Views
  • 2 replies
  • 0 Likes

Resolved! Multiple routes to a destination-

I think I know the answer for this question but would like to confirm with anyone who actually imoplemented this. I have a static route with destination 10.237.102.143/32 going through tunnel 10 . Now, I would like to have a staic route to 10.224.0.0

...

LACP Pre-Negotiation 3260

Is this supported or not?

It can be configured, but rumors floading around the internet says that there is a part in the panos 9 that says support for pre-negotiation will be added for some models, among those 3200

hbalzac by L3 Networker
  • 2746 Views
  • 2 replies
  • 0 Likes

Palo Alto with Ansible

Hi, I am trying to configure palo alto with ansible. the normal ping and ssh connection is fine but the "ansible -m ping all" command is returning error that the "ssh authentication failed". How is that possible, if the normal ssh is working fine. Pl...

suny211 by L0 Member
  • 3177 Views
  • 2 replies
  • 0 Likes

Resolved! Security policy not working with Group Mapping

I have configured LDAP group under Group Map settings.

I have added the ldap group there.

 

Then under security policy source user is any and under user i added that group name.

 

When i do sh user group list i see the group name and user ids under it.

 

wh

...

MP18 by Cyber Elite
  • 9963 Views
  • 8 replies
  • 0 Likes

Resolved! Active Passive and Active Active PA and Web Gui Cert

 

I have created CSR and exported that to our Server team as they would generate the cert based off of that.

PA is in active passive mode.

 

Do webgui cert of Active PA will syn with Passive PA?

Do I need to create separte CSR for the passive PA?

 

We also

...

MP18 by Cyber Elite
  • 3722 Views
  • 7 replies
  • 0 Likes

ShareFile upload 'blob'

Hi,

 

I was wondering if anyone have been succesful in getting the actual file names of what is being up/downloaded to ShareFile? All I get is file name 'blob'. We do decrypt the traffic but my guess is citrix encapsulates the files making the names

...

mgusta by L2 Linker
  • 2995 Views
  • 2 replies
  • 0 Likes

HA and Device Priority

HA active device

Upon initial configuration the device with the lowest priority, value close to zero, becomes the active unit (default priority is 100). If two devices have the same priority value, the device with the lowest MAC address of the HA1 lin

...

scantwell by L4 Transporter
  • 6752 Views
  • 14 replies
  • 0 Likes

globalprotect stuck at "Retrieving configuration..."

OS info: openSUSE Leap 42.3

 

After installing globalprotect I tried to connect for the first time, but it seems to get stuck.

 

After the inital warning messages, I continued as suggested in the manual:

 

>> connect -p portal.vpn.broadcom.com -u tc912575 

...

ccin1492 by L1 Bithead
  • 11074 Views
  • 5 replies
  • 0 Likes

Upgrade from from 7.1.2 to 7.1.22

I have a question about the upgrade.

If I want to upgrade PAN OS from 7.1.2 to higher version. <such as 7.1.22 or higher>
Do i need to in-place upgrade step by step from 7.1.2 to 7.1.21 then 7.1.22. or

I can upgrade directly from 7.1.2 to 7.1.22?

Resolved! OS-X and GP - Machine Start

Need some feedback. 

 

On Windows 10 this doesn't seem to be a problem but for OS-X (version 10.14.3 Mojave) GP doesn't connect on a reboot.  It's saying the portal isn't available.  I think GP is starting up before the the NIC and that's what's causin

...

20190129_090336.jpg
  • 24034 Posts
  • 102 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks