General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 197 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 879 Views
  • 0 replies
  • 0 Likes

DMZ network redesign

Hi all, I'm hoping someone can help me avoid a huge overhaul and outage window of our DMZ network...

 

Our DMZ gateway is currently a Palo interface with GlobalProtect enabled on it. Servers on the DMZ are at a remote site connected via a Layer 2 spann

...

dmz.jpg

Problem with File blocking

Hi all

 

i need to prevent all downloads on a network using Palo alto without affecting browsing

i created a file blocking profile , denied all extentions in the download direction and applied it in a policy

but iam still able to download many  exe and j

...

AKabary by L2 Linker
  • 3610 Views
  • 2 replies
  • 0 Likes

PBF and cisco vpn client

Hi everyone

 

i have two ISPsinterfaces connected to my palo alto

 

i need to make a pbf  forcisco vpn client app traffic to cross through the second isp

 

in the pbf section in policies , i set the application to cisco vpn and ipsec-udb and IKE  and set t

...

AKabary by L2 Linker
  • 4286 Views
  • 6 replies
  • 0 Likes

Resolved! Redistribute Global protect mappings to another FW

Hi,

 

We can not identify GP users in a remote FW. We can see all AD mappings but not GP. I explain the scenario:

 

INTERNET  ---------------> FW Central (gateway GP) -----> MPLS --------------> Remote FW PALO ALTO

 

both PA are integrated with LDAP, but n

...

BigPalo by L4 Transporter
  • 4749 Views
  • 6 replies
  • 0 Likes

Minemeld: Custom IP list, miner etc for EDL.

I apologize if this has been answered in previous posts, I've tried searching and it seems that I'm getting bit and pieces but not the whole picture.  

 

How would I go about creating my own list of IPs and then customizing Minemeld to mine \ gather

...

rkoenig by L3 Networker
  • 5896 Views
  • 4 replies
  • 0 Likes

Understanding Panorama Log Ingenstion & Sizing

I am new to PA & I'm trying to understand the necessity of log collection to a Panorama VM.  My company is about to deploy PA-3220's in HA pairs in several data centers.  We have a single Panorama VM getting deployed for 6 firewalls (3 HA clusters). 

...

QOS for multiple user addresses

Hi

 

i need to create a qos policy to limit downloads and uploads of user addresses objects created on palo alto device

 

i know that i will ceate a qos profile for down and up  , choose a class , priority and type guaranteed and max BW

 

then create a qos

...

AKabary by L2 Linker
  • 6369 Views
  • 8 replies
  • 0 Likes

Resolved! netflow behavior

Is the session is long live ( some applications like nfs,panorama) will start and last till 1 month.

As we have configured log at session end, the log entry will be created once the session is ended.

However we have configured netflow as well.

Netflow i

...

Resolved! Help understand TAP mode

Hello,

sorry for a dumb question but I am new to PaloAlto and I would like to understand the TAP mode on a physical PA firewall. We have Cisco Catalyst 6509 switch running in 1 of the offices as a core. PA firewall is used for users' internet traffic

...

Resolved! PAN-89471 userid causes firewall to reboot ?

I am considering upgrading from 8.0.x to 8.1.x, but this issue seems like it might be a show stopper.

 

In 8.1.x known issue PAN-89471 

"Firewalls reboot because the userid process restarts too often due to a socket binding failure that causes a memory

...

mike406 by L2 Linker
  • 3037 Views
  • 3 replies
  • 0 Likes
  • 24013 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Authors
Labels