General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 999 Views
  • 1 replies
  • 9 Likes

Output limit?

 

Hi,


I run minemeld (standalone) in a virtual machine with 2 cpu, 6GB RAM and 40GB hd. My config has 63 miners (mainly youtube miners and ransomware trackers), 13 aggregators and 30 output nodes. The miners start the job, but when it reach the band "8

...

Android 8 (GP 4.1.0)

Hello,

Are someone aware of problems related to incompatibilities between PanOS 7.1.7 and GlobalProtect client v4.1.0 running on Android v8?

thank you

Marivi by L3 Networker
  • 1054 Views
  • 0 replies
  • 0 Likes

Matching Dynamic IP

I hope the brilliant minds here can answer my question

 

I have a situation where I need to change NAT to translate in a specific way, I am looking at how the PA's behavior specific to how it selects IP address in a NAT pool based on the mask.

 

Here is

...

Bhattman by L1 Bithead
  • 3990 Views
  • 10 replies
  • 0 Likes

Resolved! External Dynamic List & URL Filtering

Hello all, I want to use an EDL to try to whitelist a group of approved sites for users and block all other sites. In URL Filtering, I have all other categories set to block, and just allowing the EDL. However, when a user tries to go to one of those...

Resolved! GP 4.1.0 released and....

I have not seen any chatter or mention of this but I tried the 4.1.0 GP client in a lab environment yesterday.

 

The good:

* The app is redesigned and looks really nice

* You can now select from/add/remove multiple gateways!

 

The bad:

* It would not connec

...

hshawn by L4 Transporter
  • 7593 Views
  • 33 replies
  • 0 Likes

Resolved! Web server publishing error

Hi!

 

Help, please, with an Internal Web server publication.

 

I have a PaloAltor PA-200, PanOS 7.0.19.

 

I have ext. Internet on Eth1/1 (L3-Untrust zone) and LAN on Eth1/2 (L3-Trust zone). In my LAN I have a Server with Web publication (WebServer), which

...

nat.png
policy.png
SPB99RO by L1 Bithead
  • 4344 Views
  • 14 replies
  • 0 Likes

Palo Alto not loading certain valid sites, why?

Having another issue with these things (ready to throw them out the window in all honesty). 

 

Seems as though a couple sites simply won't load when routed through a pair of HA-3020s.  Of course Palo Alto support does a packet capture and sees no drops

...

drewdown by L4 Transporter
  • 4804 Views
  • 12 replies
  • 0 Likes

Resolved! Are Application Filters in Groups an AND or an OR?

Hi all,

 

If there are multiple application filters in an application group, do they work with AND or OR logic?

 

For instance, someone configured an application group which contains five filters.  All of the filters have "Subcategory = file-sharing."  T

...

HA Active/active vwire different location

Dear All,

 

We want to deploy 2 firewall PAN in 2 different location (Building) but same area/complex. Is there any ideal distance for HA link for both firewall? Is it need to directly or i can use via switch?

 

Can i deploy this topology? is there any s

...

topology.png

Resolved! Traffic showing from wrong zone

Hello all, I have a (hopefully) simple problem I can't seem to figure out.

I have recently created a new DMZ zone on my PA for guest users, but when a guest tries to access the internet, the traffic is showing as sourcing from the trust zone instead o

...

Resolved! Windows and User-Mappings

I have a user group in Active Directory where we place users who should not reach the internet. This user group is then tied to a Palo Alto rule to Deny access.

I've noticed (Windows PC) this week, that if a user who is in the Deny group logs in to a

...

Response Page: GlobalProtect Portal Login Page

greetings!

 

up until panos 8.0.7, i could reference logos and background pictures for my custom portal login page on secondary https servers. the web client would load them and display them.

 

now with panos 8.0.8, these externally hosted pictures do no

...

Panorama Logs FAQs

How to configure archive the logs on Panorama before to send the external syslog server,  Just want to give you an overview of Panorama topology.. Firewalls forwards all logs to Panorama and Panorama sends logs to the external server. 

But we are loo

...

Top Liked Authors