General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Show all address objects in use in policy

Hello

 

Is there a cli command available to search for and view all address objects in use in a firewall's policy? I have a firewall that has hit its maximum address objects limit and need to remove unused addresses.

 

Thanks

 

 

Grahame by L0 Member
  • 1842 Views
  • 2 replies
  • 0 Likes

IPSec VPN tunnel not coming up

I configured IPSec VPN tunnel between my  2 PA FWs. The physical interfaces are up but the tunnel is not up. I am a Cisco guy and new to the PA. I am trying to see ipvpn traffic va the Monitor. But I did not see any traffic. How do I check for my ike

...

jac101 by L2 Linker
  • 9578 Views
  • 5 replies
  • 0 Likes

Resolved! Traps Hash correlation with syslog miner

Hi Luigi, 

 

I have 2 issues that I believe you can address.

 

  1. I am building out the syslog miner and got it working for NGFW traffic logs. I also enabled my Traps ESM to send syslog to Minemeld. I see there is a rulebase for parsing traffic and thre
...

mr_best by L1 Bithead
  • 5205 Views
  • 6 replies
  • 0 Likes

Resolved! Cannot access HTTPS sites using non standard ports

Hello,

 

When we switch the connection to a 4G connection, was able to connect to the URL without any issues:

wget https://www2.medicareaustralia.gov.au:5447/ --no-check-certificate

--2017-12-06 10:39:16--  https://www2.medicareaustralia.gov.au:5447/

Reso

...

ND.jpg
1.jpg
Farzana by L4 Transporter
  • 9061 Views
  • 9 replies
  • 0 Likes

WLC 5760 with iOS XE and user-id problem

Hi, 

Please can anyone guide me how I configure WLC send username and IP for (kiwi server as trap) or syslog direct to PA to help me get username and IP information for my wireless users?

 

Thanks in advance!

Mike

Resolved! Configuration of PA's - Internet Circuits

Folks,

 

I'm new to the PA's, so I wanted to present this question for you.  I have two PA 5020's, in Active/Passive configuration shown above.  On each PA, eth1/4 and eth1/5 is in an aggregate group.  I have two Nexus 9504's as our core switches.  I t

...

2017-12-09_19-34-15.png

Security Zone Site to Site VPN

Hey guys,

 

We do have a headquarter and a branch office.

 

All services are located in the HQ, in the branch office there are just workstations that access the services of the HQ.

 

So I have to set up a site to site vpn connection between the BO and HQ.

 

...

MPI-AE by L4 Transporter
  • 4417 Views
  • 11 replies
  • 0 Likes
  • 23716 Posts
  • 104 Subscriptions
Top Solution Authors
Top Liked Authors
Labels