Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
jforsythe by Community Team Member
  • 27 Views
  • 0 replies
  • 0 Likes

VPN Issue Between PA and WATCHGUARD

Dear All 

I'm facing one issue relate to VPN between PA and WG.
I am using 3DES/SHA1/PFS2, it is not working till i disable PFS-2 on Phase-2.

2018-05-10 10:44:10.483 +0700 [DEBG]: { : 40}: keyacquire received: x.x.x.x[0] => y.y.y.y[0]
2018-05-10 10:44:10

...

Resolved! Server Log Monitor Frequency and User-ID

 

What recommended value for Server Log Monitor Frequency if we increase the from 2 Sec to 10 Sec ?

 

 

What is the relation between this queries and User Identification Timeout of 600 minutes and Server Log Monitor Freq?

 

 

 

 

 

 

NavidAlam by L3 Networker
  • 4588 Views
  • 1 replies
  • 0 Likes

Transparent Proxy

Hello,

 

I am new with PA family and currently evaluating PA-3220 / PA-3060 appliance

I would like to know if i can implement transparent proxy feature with the above applaince for all my users including branch office without making major changes to net

...

Resolved! Migrating from sub-interface to L3 interface

Hi,

 

We have pair of PA in HA mode, we are going to move one of the sub-interface to a L3 interface. is it possible to do this without any downtime? I am considering below steps

 

  • take out sub-interface from monitored interface (to prevent failover)
  • conf
...

CHACHA20_POLY1305 Support?

Anyone know or heard when we might get CHACHA20_POLY1305 cipher support for Inbound Decryption?

 

I finally came across a server using it... my Enterprise Services team is setting up a Papercut on-prem server and it seems to be running multiple web ser

...

jsalmans by L4 Transporter
  • 2563 Views
  • 1 replies
  • 0 Likes

MineMeld-engine FATAL

Hello Folks,

 

I recenlty ran through the MineMeld installation onto Ubuntu 14.0.4. I noticed during the installation of MineMeld a few errors or notifications showed up regarding pip and sudo as seen below:

 

The directory '/home/eddie/.cache/pip/ht

...

PA-5000 series - big hit?

Among our user base ( Indeni ), the majority of PANW devices deployed globally are the PA-5000 series, mostly PA-5060, PA-5050 and some PA-5220. Anyone knows why?

YoniLeit by L0 Member
  • 2334 Views
  • 4 replies
  • 0 Likes

Resolved! Best way to allow ALL traffic for troubleshooting

Hi people, 

 

I want to troubleshoot a connectvity issue.... typical problem where server guy says "it's a firewall issue". Can anyone suggest what's the best way to allow all traffic? I was thinking of traffic from my source (10.0.0.0/8) to destinatio

...

Jedi_D by L2 Linker
  • 2989 Views
  • 2 replies
  • 0 Likes

URL report top 100 with browsing time

Hi All,

 

i was trying to get as close as possible to bluecoat report that able to provide

1.URL visited

2.URL category

3.Browse time

4.User

 

So the closest i can get is URL report with counts, but not browse time,

 

secondly i can get Traffic logs with elaps

...

MineMeld install failing on Ubuntu Server 16.04.4

Having a devil of a time installing MM. I got to the 37th task in the install but got this error:


TASK [minemeld : create extensions frigidaire] **********************************************************************************************************

...

Abruner by L1 Bithead
  • 5865 Views
  • 6 replies
  • 0 Likes

Resolved! Management Interface not sending a frame.

I have two PaloAlto 850's in HA. I am unable to ping or reach the secondary/standby webgui. Both are connected to the same switch, when looking at the switch CAM table the secondary MGMT interface is not getting populated with the FW MAC address. Bei

...

PA-220 WAN link "not configured but up"

 

Hello,

I need to add a fiber internet line on a PA-220 router but I have an error message:

: Not configured but up

Link speed: 100 Mbps

Link Duplex: half

 

The physical link, the IP configuration and the fiber box are OK

 

I suspect the "HALF" setting shoul

...

paloalto.jpg
  • 23584 Posts
  • 107 Subscriptions
Labels