General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 401 Views
  • 0 replies
  • 0 Likes

Schedule Restart of Firewall

Is there any web/gui interface option to schedule a reboot/restart of a PA 3000 series firewall running 8.1.5?  Any command line level option?  We'd like to restart the firewalls middle of the night without IT being awake to do so.

 

Mike

mlarish by L1 Bithead
  • 11733 Views
  • 3 replies
  • 1 Likes

sync panorama config to FW

Hello

 

I have 2 FWs(HA pair) managed by panorama and I 

I followed below instruction and applied on 1 of them(the primary one) now cannot see any configs from panorama on the device.

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g00

...

qd_056 by L2 Linker
  • 3378 Views
  • 1 replies
  • 0 Likes

SSL Decryption

Hi guys,

Nowadays I am playing with a PA-VM (no license) and decryption policy. Basically there are many articles and that explain how Decryption policy works and how to set it up. I have checked and double checked my setting and I cannot make faceboo

...

PaloForum-Decryption.JPG
PaloForum-Security.JPG

Resolved! User Credential Detection- False positive

What method is everyone using to handle false positives for credential phishing? Does everyone just create a custom URL category and drop in the sites where users use corporate email as their user ID? 

Windows 10 Release Cycle and Global Protect Client

Hi All,

 

I'm currently working in an environment which is trying to keep up with the latest Windows 10 release cycles with their Windows as a Service model which brings out releases every 6 months.  We have found that with our AV products, our vendor 

...

NQ1234 by L0 Member
  • 5332 Views
  • 3 replies
  • 0 Likes

Firewall migration, testing rules

Is there a way to test the rules on a new Palo alto vs the existing firewall it will be replacing without affecting traffic? Something like TAP mode but that can block traffic like an in production firewall?

gonzox98 by L0 Member
  • 2294 Views
  • 2 replies
  • 0 Likes

VPN site-2-site configuration and OSPF

Hello forum members,

 

I have been testing the VPN site-2-site configurations on my Palo Alto VM lab, prior to deploying on our production environment. I have successfully set up a VPN connection where both firewalls use static routing. Trouble I'm hav

...

topology.PNG
interfaces.PNG
tunnel.PNG
VR.PNG
rchung54 by L2 Linker
  • 7225 Views
  • 10 replies
  • 0 Likes

Resolved! ping from vr

All, is there an easy way to designate a vr as aq source when pinging ? Like ping host a.b.c.d virtual-router myvr ?

So far I only found a way to specify a source interface but the I need first look up a source interface in the specific VR. Any easier

...

lafrank by L0 Member
  • 7637 Views
  • 5 replies
  • 0 Likes

A few questions

I am planning to install another vsys in the 7080 firewall 

 

my queries 

 

how many max vsys can be created for the 7080 firewall 

How may Site2Site tunnels it supports for each Vsys

How many RAVPNs it supports for each Vsys

How many connections it can han

...

HemanthV by L2 Linker
  • 2020 Views
  • 1 replies
  • 0 Likes

Virtual Wire migration

Hi All.

I am in a postion that we would like to migrate our current cconfiguration of multiple trunk 10g links supporting a vlan with subinterfaces and vsys's to virtual wire mode on the existing chassis, (i.e. 7050, or 5060). 

As I understand it, we w

...

dwmaas by L2 Linker
  • 2513 Views
  • 2 replies
  • 0 Likes

Resolved! Multiple routes to a destination-

I think I know the answer for this question but would like to confirm with anyone who actually imoplemented this. I have a static route with destination 10.237.102.143/32 going through tunnel 10 . Now, I would like to have a staic route to 10.224.0.0

...

LACP Pre-Negotiation 3260

Is this supported or not?

It can be configured, but rumors floading around the internet says that there is a part in the panos 9 that says support for pre-negotiation will be added for some models, among those 3200

hbalzac by L3 Networker
  • 2942 Views
  • 2 replies
  • 0 Likes
  • 23844 Posts
  • 112 Subscriptions
Top Liked Authors
Labels