This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! Interface Monitoring / See if traffic gets send to interface

I am having a weired issue with a PaloAlto and a Telekom Router. I configured a specific client address to always use a second Router (with internet connection) to communicate to the WAN.Everything on the PaloAlto looks good to me but when I plug-in the Telekom Router into the configured interface port of the Paloalto I cannot access the Routers...

husetech by L2 Linker
  • 12637 Views
  • 4 replies
  • 0 Likes

Resolved! Firewall - Interface High availablity

Hi All,In my scenario, i have single PA-220 for guest access. In trusted zone i would like to keep the interface lelvel (active/standby) high availablity.Interface type as L2. I couldn't do aggregate interface since it's connected to two seperate switches. How we can achieve this.?? Thanks in Advance..

pa-220-ha.png
gpsriram by L1 Bithead
  • 2687 Views
  • 2 replies
  • 0 Likes

FQDN TTL shorter than refresh time

I have a problem with some sites that uses DNS round robin as loadballancer.As an examble:vs-ssh.visualstudio.com This has the TTL set to 300 sec, the PA's FQDN refresh is default 30 min.So the firewall won't cache all IP's used in the round robin, because when it does a refresh the old value has timed-outSo the rule where I use the FQDN object ...

Active/Standby network design and usage as network gateway?

I have some questions on the Active/Standby deployment model. Right now I'm on A/A which requires all network config between the two units to be different since they're both active at the same time. From looking at the documentation, it looks like in an A/S model the network config between the two units is identical which includes all of the s...

jsalmans by L4 Transporter
  • 2778 Views
  • 2 replies
  • 0 Likes

Resolved! Azure DC : Creating a MineMeld feed from an XML file

Hello I'm trying to create a mine meld feed that will somehow download and read an XML file (or just read and xml) which contains a list of Azure datacenter IP addresses , which I can use to apply to my PAN firewall. Any help/direction is appreciated. XML file can be downloaded from; https://www.microsoft.com/en-us/download/confirmation.aspx?...

carysoc by L1 Bithead
  • 6030 Views
  • 2 replies
  • 0 Likes

Resolved! Is it possible to skip 8.0 and go straight to 8.1

Good morning everyone we are running 7.1.x right now and are wanting to move to 8.1.x. Does anyone know if it is possible to install 8.0 dont reboot then install 8.1.x then reboot or do you have to reboot after 8.0 and then reboot after 8.1.x install.

Understanding Panorama & Firewall Configurations

Our Panorama server has 3 firewalls connected to it, all 3 are the same model. All 3 firewalls are linked to there own seperate template, template stack & device group. Each template, template stack & device group is linked to only one firewall. None of the 3 firewalls share the same template, template stack or device group. I am won...

Exporting full applipedia list

I was wondering if there was some way to export the full applipedia list to include the standard ports and implicit use/depends on applications also. Or if this information is somewhere else that is easier to pull from than selecting on each individual one in applipedia.

Disabling NetBIOS with DHCP Option 43

All, I am in the process of migrating DHCP services from a Cisco IOS-XE switch to Palo Alto 220 firewalls. DHCP is working flawlessly however I am curious about the implementation of Option 43 for disabling NetBIOS. In the Cisco world it is implemented like this: ip dhcp pool DHCP_USERS option 43 hex 0104.0000.0002I am trying to understand if ...

image.png
  • 24380 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks