General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 334 Views
  • 0 replies
  • 2 Likes

Power failure on PA-7000

The PA-7000 Hardware Guide specifies they minimum number of active PS to provide enough power for a chassis depending on the type of power and number of NPCs installed.

For example, if the PA-7050 chassis is powered via 120V AC and has 6 NPCs installe

...

MS-ISAC Soltra Feed?

Through MS-ISAC we are able to consume a Taxii feed (I believe it originates as a Soltra Edge feed).  Currently this is going straight into my palo as an EDL.

 

I would like to bring it in through minemeld so I can add other feeds and take advantage

...

kevink by L0 Member
  • 6527 Views
  • 4 replies
  • 1 Likes

Panorama VM in HA and log forwarding via syslog

Panorama VM in HA setup and panorama mode

 

Panorama A: primary-active

Panorama B: secondary-passive

 

Both have a local log collector and both are added to "default" log collector group. In this log collector group, log forwarding via syslog is configure

...

Anon1 by L4 Transporter
  • 1774 Views
  • 1 replies
  • 0 Likes

GlobalProtect on new MAC pc

Hello,

 

We have installed the Global Protect software (version 4.0.5-8) on a new MAC computer (High Sierra version 10.13.3). However the Connect button is greyed out along with a number of other buttons. The only available buttons are Show Panel / Abo

...

Farzana by L4 Transporter
  • 1672 Views
  • 2 replies
  • 0 Likes

OS upgrade rollback from 7

I am currently on version 6.1.10 and when I upgraded to it in March I was told by TAC that is was currently the most stable version. I am looking at what it would take to move up to the most stable version of 7 but first I want to figure out the best

...

jdprovine by L4 Transporter
  • 2855 Views
  • 5 replies
  • 0 Likes

Resolved! How many firewalls justify Panorama

Curious to see if there's some group concensus on how many firewalls an organization needs to have before the cost of Panorama is justified?  Right now we have two H.A. pairs (four total) and im not sure Panorama would make life that much easier.

 

Tha

...

fmurray by L1 Bithead
  • 6006 Views
  • 7 replies
  • 1 Likes

Fiber Connectivity For PA-850

Hello, we are going to connect our PA-850 firewalls with FortiGate-300D firewalls via multi-mode fiber cables and will most likely be using PAN-SFP-SX for the cable connectivity.

 

1) I see that the specification sheet mentions only OM2 multi-mode fibe

...

poolnet by L0 Member
  • 2352 Views
  • 2 replies
  • 0 Likes

PA220 PANOS 8.0.7 Dual ISP

Hello Everyone

 

I know there is a fair amount of information on this topic but I have a few issues/questions

 

I have a PA220 with PANOS 8,0,7. My questions are relating to dual ISP connectivity. I would like to setup my PA with a backup ISP connection.

...

Resolved! VSYS with Shared Gateway and Existing Global Protect

We have a 3050 with one VSYS and is connected to an ISP with one IP address as we also use this VSYS for user VPN (Global Protect). All is working fine but we will be adding another VSYS to segregate another department’s Internet traffic. I would lik

...

Resolved! Windows Based User-ID Agent Setup

Hi Fellas!

 

I have integrated a Windows Based user-ID agent to our VM-300 series firewall and having some issues with some users not having ip-user mapping.

 

Since we are enforcing security policy by AD groups for internet access, these users that does

...

Intermittent username drops

Username-IP mappings intermittently stops and traffic logs show just IP but not username. And mapping happens after sometime automatically. This is limiting me from creating rules based on usernames. What might be the reason?

 

Thanks.

PANOS-8.0 broke IPSec XAuth VPN?

Hi,

 

After I upgraded to our PA-3050 to PANOS-8.0, ios and android native clients (using ipsec xauth) don't work anymore. These clients can  authenticate successfuly and get a valid IP from the gateway ip pool. But after this they can't access anythin

...

  • 23670 Posts
  • 108 Subscriptions
Top Liked Authors
Labels