This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 646 Views
  • 0 replies
  • 0 Likes

Resolved! Policy Export

Hello,

Is there way to export a policy from a PAN device in a read-able format? We are in the process of cutting over a new PAN internet firewall and all the rules had to be created by hand (from the previous vendor model). I'm looking for the ability

...

CRHC by L4 Transporter
  • 6341 Views
  • 5 replies
  • 0 Likes

VPN Issue Between PA and WATCHGUARD

Dear All 

I'm facing one issue relate to VPN between PA and WG.
I am using 3DES/SHA1/PFS2, it is not working till i disable PFS-2 on Phase-2.

2018-05-10 10:44:10.483 +0700 [DEBG]: { : 40}: keyacquire received: x.x.x.x[0] => y.y.y.y[0]
2018-05-10 10:44:10

...

Resolved! Server Log Monitor Frequency and User-ID

 

What recommended value for Server Log Monitor Frequency if we increase the from 2 Sec to 10 Sec ?

 

 

What is the relation between this queries and User Identification Timeout of 600 minutes and Server Log Monitor Freq?

 

 

 

 

 

 

NavidAlam by L3 Networker
  • 4968 Views
  • 1 replies
  • 0 Likes

Transparent Proxy

Hello,

 

I am new with PA family and currently evaluating PA-3220 / PA-3060 appliance

I would like to know if i can implement transparent proxy feature with the above applaince for all my users including branch office without making major changes to net

...

Resolved! Migrating from sub-interface to L3 interface

Hi,

 

We have pair of PA in HA mode, we are going to move one of the sub-interface to a L3 interface. is it possible to do this without any downtime? I am considering below steps

 

  • take out sub-interface from monitored interface (to prevent failover)
  • conf
...

CHACHA20_POLY1305 Support?

Anyone know or heard when we might get CHACHA20_POLY1305 cipher support for Inbound Decryption?

 

I finally came across a server using it... my Enterprise Services team is setting up a Papercut on-prem server and it seems to be running multiple web ser

...

jsalmans by L4 Transporter
  • 2814 Views
  • 1 replies
  • 0 Likes

MineMeld-engine FATAL

Hello Folks,

 

I recenlty ran through the MineMeld installation onto Ubuntu 14.0.4. I noticed during the installation of MineMeld a few errors or notifications showed up regarding pip and sudo as seen below:

 

The directory '/home/eddie/.cache/pip/ht

...

PA-5000 series - big hit?

Among our user base ( Indeni ), the majority of PANW devices deployed globally are the PA-5000 series, mostly PA-5060, PA-5050 and some PA-5220. Anyone knows why?

YoniLeit by L0 Member
  • 2676 Views
  • 4 replies
  • 0 Likes

Resolved! Best way to allow ALL traffic for troubleshooting

Hi people, 

 

I want to troubleshoot a connectvity issue.... typical problem where server guy says "it's a firewall issue". Can anyone suggest what's the best way to allow all traffic? I was thinking of traffic from my source (10.0.0.0/8) to destinatio

...

Jedi_D by L2 Linker
  • 3412 Views
  • 2 replies
  • 0 Likes

URL report top 100 with browsing time

Hi All,

 

i was trying to get as close as possible to bluecoat report that able to provide

1.URL visited

2.URL category

3.Browse time

4.User

 

So the closest i can get is URL report with counts, but not browse time,

 

secondly i can get Traffic logs with elaps

...

MineMeld install failing on Ubuntu Server 16.04.4

Having a devil of a time installing MM. I got to the 37th task in the install but got this error:


TASK [minemeld : create extensions frigidaire] **********************************************************************************************************

...

Abruner by L1 Bithead
  • 6256 Views
  • 6 replies
  • 0 Likes

Resolved! Management Interface not sending a frame.

I have two PaloAlto 850's in HA. I am unable to ping or reach the secondary/standby webgui. Both are connected to the same switch, when looking at the switch CAM table the secondary MGMT interface is not getting populated with the FW MAC address. Bei

...

  • 23945 Posts
  • 113 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks