Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
jforsythe by Community Team Member
  • 27 Views
  • 0 replies
  • 0 Likes

Configuration Migration

Hello to all and sorry if this has been posted before. We are new to Palo Alto Networks Firewall. We are in the process of procurring and installing our first PAN device. With that in mind we do have quite a bit of experience with Cisco ASA FW but no

...

amedley by L0 Member
  • 6796 Views
  • 8 replies
  • 0 Likes

Resolved! Most common design with Cisco Networking?

Hi Folks,

 

We currently use our PA 3020 firewalls with Layer 3 interfaces, Internet plugin directly, and doing all the routing for our network.  Learned routing from L3 interfaces and manual static route entry.  No routing protocols at all.  We have o

...

OMatlock by L4 Transporter
  • 4458 Views
  • 5 replies
  • 0 Likes

Custom Application Signatures

Curious if anyone is successfully using the commvault application within their Palo Alto application policies? We tried it and it is not working at all to detect our CommVault application traffic. The details on the application itself seem quite old.

zthiel by L2 Linker
  • 2822 Views
  • 4 replies
  • 0 Likes

speedtest.net giving different results VM vs. PA-220

after switching from a PA VM on an ESX to a PA-220 i noticed a huge decrease in throughput from speedtest.net - with the VM in vwire or l2 mode i am getting rates consistent with native line speed (around 500Mbit/s down and 250Mbit/s upload). With th

...

stlenger by L1 Bithead
  • 3564 Views
  • 4 replies
  • 0 Likes

Global Protect 4.1 Password Length

Is there a password limit to the new Global Protect client 4.1 for Windows?  It seems to stop at 20 characters.  It made me chuckle to think that PA was limiting the number of characters we can use.

Thanks,

   Steve

Active/Passive PAs Connected To VPC Nexus 7Ks

This was also posted on the Cisco forum because I'm not sure yet what is the problem's root cause. So I'd appreciate insigt from the Palo experts as well. Below is the problem:

 

Each 7K can ping the active-pal. Active-Pal is connected to 7K A, so  Act

...

Traffic_Flow.JPG

Resolved! Panorama and Hyper-V

 

Hello,

 

We’re currently looking at a VMWare to Hyper-V migration. One of our concerns is that it appears our Panorama virtual appliance isn’t supported to run on Hyper-V.

 

Do you know if Palo Alto are adding support for this anytime soon?

 

I notice tha

...

Farzana by L4 Transporter
  • 7706 Views
  • 8 replies
  • 1 Likes

Assigning DNS A-record to GlobalProtect Client?

Hello PA Community!

 

We migrated to laptops and GlobalProtect always-on pre-login VPN solution several months back. We are currently at a point where around 50% of our clients haven't talked to WSUS in quite some time because their DNS records are get

...

ihealey by L1 Bithead
  • 5742 Views
  • 2 replies
  • 0 Likes

Commands to edit BGP AS Number from CLI

How can I edit the AS number on a PA firewall from the CLI?

i need to change it in a production environment without access to the webUI

 

in the gui this would be | Network tab | Virtual Router | Select VR name "MPLS in my case" | BGP tab | and change t

...

USer-ID cache timeout calculation

I am losing user-ip-mapping occasionally. I believe this is because of incorrect timeouts.How to calculate the ideal user-id cache  timeout for 1200 users.? I am using windows based user-id agent.

Global Protect 4.1 remember userid and password

I am testing version 4.1 of the Global Protect client and everytime I reboot, the client prompts me for the userid and password.  It did work fine on 4.0.6, but not this version.  I verified that remember userid and password was set to on in the Port

...

PA-5220 and Netflow

I have a PA-5220 and I am trying to configure a Netflow export out to my solarwinds server which is located at a remote site across a VPN tunnel.

 

I am aware that I cannot use the MGMT interface to export netwflow with this particular device, but I am

...

  • 23584 Posts
  • 107 Subscriptions
Labels