General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Now Open: Papers for the Ignite'21 Conference

Hi everyone, I wanted to let you all know that Palo Alto Networks is now accepting Papers for the Ignite'21 Conference! Palo Alto Networks is looking for speakers and presenters with highly technical backgrounds who can share their experience and exp...

jdelio by Community Team Member
  • 320 Views
  • 1 replies
  • 1 Likes

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 21151 Views
  • 43 replies
  • 32 Likes

Destination NAT on a Vwire?

Is there documentation on how to do this? All I have found is incomplete. Is the Destination Zone the same or different than the Source Zone? Do the addresses have to include the subnet mask? Are there any complete examples available?

kentjday by L1 Bithead
  • 1562 Views
  • 10 replies
  • 0 Likes

Resolved! Help with custom vulnerability signature

Can someone provide documentation and insight in regards to creating custom IPS signatures based on the follow scenario?Consider you have an FTP server. The USER command is vulnerable to buffer overflow. How does one create a custom signature to iden...

SDorsey by L4 Transporter
  • 1045 Views
  • 4 replies
  • 0 Likes

EDNS Support

In the recent code releases has support for EDNS been added...If so, what release and can you point me in the direction of a good EDNS tech doc?!!Thank you in advanced, -jc

jclimer by L0 Member
  • 2441 Views
  • 5 replies
  • 0 Likes

Security Policy-by Computer Name in domain

Hi,I have a requirement from a customer, that he doesn't want user based security policy for a certain location.He want that only specific computer names which are in domain should be blocked for certain application. Is this possible using global pro...

NiteshS by L2 Linker
  • 694 Views
  • 2 replies
  • 0 Likes

Redundant Ports

Hi,the customer is looking for a redundant ports as there looking for a cross connection between two different switches.is this possible? etherchannel/aggregate port configuration doesn't solve that issue as aggregate port goes in the same switch onl...

NiteshS by L2 Linker
  • 1191 Views
  • 4 replies
  • 0 Likes

List of custom risks

Hi,Just started out configuring a new PA3020 and decided to block all risk level 5... there are a couple of apps that I wanted to allow through so re-graded them risk 4.In the future I want to ensure this is manageable, is there somewhere on the syst...

Resolved! Panorama Botnet View

Hi All,Where do you find the Botnet monitor and reports for firewalls running 4.x from a Panorama interface running 4.x? And minimum level permission is required in order to see these Botnet reports?Appreciate the assistance.

apc050 by Not applicable
  • 2614 Views
  • 6 replies
  • 0 Likes

Active Directory Users not Authenticating to GP

Hi,We configured agentless User-ID with our PAN OS 5.0.2. We created policies using the AD usernames and it is working fine.However, We are trying to configure our GP to authenticate using the AD users. This is not working and we are getting the foll...

rsaber by L1 Bithead
  • 1082 Views
  • 3 replies
  • 0 Likes

Resolved! Using Local DB and LDAP for Global Protect

Hi All,Is it possible to have Local and LDAP users authenticate to the Global Protect Client.In the GP configuration, I can only choose one Authentication Profile, which is chosen for Local DB.I tried to configure another GP Portal but I could not us...

rsaber by L1 Bithead
  • 1345 Views
  • 3 replies
  • 0 Likes

Best practices for HA PANs and switch stack

For this scenario, assume a simple setup. Two firewalls in HA and two switches in a stack. Also assume the firewalls are in active/passive. Consider the below setup, each firewall has one physical link to separate switch members of the stack.In this ...

SDorsey by L4 Transporter
  • 2592 Views
  • 14 replies
  • 0 Likes

Resolved! Mask MAC on interface

Does the PAN allow you to clone or mask the MAC address on an interface to one of your choosing?

SDorsey by L4 Transporter
  • 574 Views
  • 2 replies
  • 0 Likes

Voip external server

I'm experiencing an issue with a connection to an external voip server.Directly attached to a PA-500 ethernet port there is a patton (fxo voip appliance).Now, I'm allowing any traffic to outside, any application.When I surf from that interface I can ...

Top Liked Authors