This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 776 Views
  • 0 replies
  • 0 Likes

DMZ network redesign

Hi all, I'm hoping someone can help me avoid a huge overhaul and outage window of our DMZ network...

 

Our DMZ gateway is currently a Palo interface with GlobalProtect enabled on it. Servers on the DMZ are at a remote site connected via a Layer 2 spann

...

dmz.jpg

Problem with File blocking

Hi all

 

i need to prevent all downloads on a network using Palo alto without affecting browsing

i created a file blocking profile , denied all extentions in the download direction and applied it in a policy

but iam still able to download many  exe and j

...

AKabary by L2 Linker
  • 3579 Views
  • 2 replies
  • 0 Likes

PBF and cisco vpn client

Hi everyone

 

i have two ISPsinterfaces connected to my palo alto

 

i need to make a pbf  forcisco vpn client app traffic to cross through the second isp

 

in the pbf section in policies , i set the application to cisco vpn and ipsec-udb and IKE  and set t

...

AKabary by L2 Linker
  • 4225 Views
  • 6 replies
  • 0 Likes

Resolved! Redistribute Global protect mappings to another FW

Hi,

 

We can not identify GP users in a remote FW. We can see all AD mappings but not GP. I explain the scenario:

 

INTERNET  ---------------> FW Central (gateway GP) -----> MPLS --------------> Remote FW PALO ALTO

 

both PA are integrated with LDAP, but n

...

BigPalo by L4 Transporter
  • 4682 Views
  • 6 replies
  • 0 Likes

Minemeld: Custom IP list, miner etc for EDL.

I apologize if this has been answered in previous posts, I've tried searching and it seems that I'm getting bit and pieces but not the whole picture.  

 

How would I go about creating my own list of IPs and then customizing Minemeld to mine \ gather

...

rkoenig by L3 Networker
  • 5830 Views
  • 4 replies
  • 0 Likes

Understanding Panorama Log Ingenstion & Sizing

I am new to PA & I'm trying to understand the necessity of log collection to a Panorama VM.  My company is about to deploy PA-3220's in HA pairs in several data centers.  We have a single Panorama VM getting deployed for 6 firewalls (3 HA clusters). 

...

QOS for multiple user addresses

Hi

 

i need to create a qos policy to limit downloads and uploads of user addresses objects created on palo alto device

 

i know that i will ceate a qos profile for down and up  , choose a class , priority and type guaranteed and max BW

 

then create a qos

...

AKabary by L2 Linker
  • 6313 Views
  • 8 replies
  • 0 Likes

Resolved! netflow behavior

Is the session is long live ( some applications like nfs,panorama) will start and last till 1 month.

As we have configured log at session end, the log entry will be created once the session is ended.

However we have configured netflow as well.

Netflow i

...

Resolved! Help understand TAP mode

Hello,

sorry for a dumb question but I am new to PaloAlto and I would like to understand the TAP mode on a physical PA firewall. We have Cisco Catalyst 6509 switch running in 1 of the offices as a core. PA firewall is used for users' internet traffic

...

Resolved! PAN-89471 userid causes firewall to reboot ?

I am considering upgrading from 8.0.x to 8.1.x, but this issue seems like it might be a show stopper.

 

In 8.1.x known issue PAN-89471 

"Firewalls reboot because the userid process restarts too often due to a socket binding failure that causes a memory

...

mike406 by L2 Linker
  • 2979 Views
  • 3 replies
  • 0 Likes
  • 23985 Posts
  • 115 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks