Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
jforsythe by Community Team Member
  • 27 Views
  • 0 replies
  • 0 Likes

Resolved! ECMP Weighted Round Roubin

Hi,

 

I have a case where we have to PA FWs and there is 3 connections between them,

1- Two Microwave Links (Up to 100mbps)

2- One DSP Link (Up to 10mbps)

 

There is a total of 3 IPSec Tunnels and i'm using weighted round robin, however, i don't know how t

...

Resolved! What to do when IPSec VPN proxy IDs are the same?

Hi folks,

 

We have several IPSec VPN connections and luckily so far all with unique Proxy IDs.

I am trying to prepare when I create a new one and has the same Proxy ID as another.

I see this article and talks about creating a NAT both ways.

https://live.

...

OMatlock by L4 Transporter
  • 4726 Views
  • 5 replies
  • 0 Likes

User-ID

When enabling user-id where does it check against to get the information to identify  the users? I have it turned on for serveral zones and it only seems to work on the VPN user-id's.

jdprovine by L4 Transporter
  • 9140 Views
  • 42 replies
  • 0 Likes

PAN DB URL Filtering - HA

Has anyone in an active/passive HA cluster experienced all urls logs being catergorized as 'not-resolved' after failing over to the passive box? We have had this happen multiple times now, to fix the issue we have re-download the seed database under

...

clewis1 by L3 Networker
  • 1930 Views
  • 2 replies
  • 0 Likes

Decryption problem

We have such a problem with Microsoft Exchange OWA which we have recently published through Palo Alto.We have installed certificates with private keys,created necessary rules for PBF and NAT.

Everything is working fine except decryption.We can see in

...

CC.png
Radmin_85 by L4 Transporter
  • 4186 Views
  • 6 replies
  • 0 Likes

SSL Decryption Session Limit

Hello 

 

We are planning to implement the SSL Decryption in our Enviornment. We would like to know how the session limit is counted in the firewall. 

 

Also is there any session limit for the PAN OS 7.1.3 and if yes what is it.

 

Also if we upgrade to vers

...

mdamani by L0 Member
  • 4215 Views
  • 1 replies
  • 0 Likes

Resolved! Global protect and virtual MAC address

HI.

 

We run global protect for a reasonable number of remote users on our PA3050's without much in the way of issues.

 

One thing which pops up, though, is that our Virus management server (McAfee) gets hugely confused about which machines are on which

...

darren_g by L4 Transporter
  • 4383 Views
  • 2 replies
  • 0 Likes

Palo Alto MPLS failover

Please give me a best Solution

 

I have one Palo alto firewall and Branch end Cyberoam 

 

I need to do MPLS VPN Failover between both device any suggetion it will work or not

palo alto MPLS supported or not ?

 

Thanks regrards

Hiroli Mohsin

Mohsin91 by L0 Member
  • 2475 Views
  • 1 replies
  • 0 Likes

Skype audio and video problem

hello

 

We have some problem with skype.Inside the company we can use skype application.But when we try to call by skype outside the company call and video dont work onle chat.But inside network we can use all features.

When we test the skype without Pa

...

Radmin_85 by L4 Transporter
  • 1952 Views
  • 3 replies
  • 0 Likes

Resolved! Wildfire & Brightcloud URL filtering

Hi All.

 

So when Wildfire creates a signate for a piece of malware and assoicated URLs are added to the malware category of URL filtering. Is this added to the brightcloud URL database or only the PAN-DB database?

 

Thanks

 

Chris

Talos Blacklist

I am trying to create a miner/processor/output nodes for the talos black list ( https://talosintelligence.com/documents/ip-blacklist ) and am failing. Has anyone got this to work?

Hal_Blum by L0 Member
  • 6293 Views
  • 2 replies
  • 1 Likes
  • 23584 Posts
  • 107 Subscriptions
Labels