General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 483 Views
  • 0 replies
  • 0 Likes

Resolved! VPN remote peer with a LAN address

I need to create a VPN tunnel between my PA firewall with a regular external IP address and a remote non-PA peer that is behind some equipment (no details) and only has a local 172.17.x.x address. Is this possible?

 

If it is possible, do I use the ext

...

mike406 by L2 Linker
  • 4769 Views
  • 4 replies
  • 0 Likes

Resolved! the show interface command

Hello!

I have a question regarding the show interface command.

When you enter for example "show interface ethernet1/3" to see the information of that interface, you can eventually see counters for receive errors or drops. Are these errors counted from ...

Panorama

Hi Everyone,

Is anyone aware of any plans by Palo to introduce a Cloud based version of Panorama?

Devices could be licensed in a similar way to the update subscriptions annually?

 

Ideally if this were integrated into the Customer Portal management of As

...

Resolved! Dynamic Object Sourced from Physical Interface

Is it possible to  create an object in panorama that can be reused in multiple templates that is literally just tied to the ip of an interface on that device?

 

For example, eth1/1 has address 1.1.1.1

Object should just reference eth1/1

Object can be use

...

Rule with Deny action Allowing traffic

Hi,

 

We facing an strange issue regarding filtering to some destinations.

 

We have a rule with 2 kinds of destination address:

1. Static Group Address defined in Palo Alto

2. External dynamic list (2 of them)

Those address are attached to a deny rule beca

...

nanukanu by L2 Linker
  • 8031 Views
  • 10 replies
  • 0 Likes

Resolved! HA A/P Failover - Interfaces not UP

Hi,

 

I am some what confused and reaching out for a little help.

 

We have a pair of 3020s in Active/Passive mode with two interfaces, DMZ (Ethernet1/1) & Public (Ethernet1/3). HA is configured to use dedicated HA Ports and all indicators on the dashboa

...

SPS by L1 Bithead
  • 6117 Views
  • 2 replies
  • 0 Likes

Resolved! Login to Traps Management Service with AD User

Hello,


We are going to migrate from Traps ESM to Traps Management Service.


After this, we want our helpdesk to administrate Traps, but we do not want to create a palo alto account for every user.

 

Now I found some information about the Palo Alto Directo

...

TimNie by L0 Member
  • 3566 Views
  • 2 replies
  • 0 Likes

Resolved! Website: itsalmo.st is not being blocked

I'm trying to block users from going to the site: itsalmo.st

I go to: Objects > Custom Objects > Url Catagory > Blocked Urls and then add *.itsalmo.st/

Then I commit.

I waited a while, can see it inthe list but users can still reach it and use the page.

...

Resolved! Pingdom & Management Profiles

Quick write here.  We currently use Pingdom to monitor external reachability to services and our remote office edge devices.  In some scenarios such as new office deployments, we may need to utilize the WAN interface to setup the device.  The problem

...

IP Directed Broadcast

Hello,

We want to use wake on LAN in a vlan attached to a layer3 interface on the firewall. The magic packets are sent from a server outside the vlan to the broadcast address. I allowed WOL-packets in the firewall policies, and I see them in the logs,

...

  • 24089 Posts
  • 116 Subscriptions
Top Liked Authors
Labels