General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 14570 Views
  • 1 replies
  • 4 Likes

Resolved! Higher Management CPU post upgrade to 7.0.4

I've got a 5060 A/P pair that was running 6.1.4.

 

We are/were doing :

 

SSL forward Intercept

SSL Mirror

7 AD Group Mappings

Transparent Captive Portal

4 UIA

 

Pre-upgrade our MGMT CPU was around 20%.  Post upgrade to 7.0.4 we're 70%.  There have be

...

Failed to find PANPG virtual adapter interface

Hi all,

 

I am experiencing this issue with Global Protect : "Failed to find PANPG virtual adapter interface".

The version of GP is the latest released 2.3.3.

Version of client is Windows 8.1.

I have already tried:

 

- Uninstalled Anti-Virus

- Disabl

...

Failed to find pan PG.JPG

Configure Backup ISP

 

 

 

 

 

Not sure this is the right venue or forum to post this, but I’m looking to set up an automated failover to a backup ISP line per the attached network diagram of my environment.

 

I’m new to PAN and the PAN way of doing things so thought I’

...

PANBackupISP.png

PAN HA P/A with GLBP on core

Hi Everyone,

 

Is it possible to setup a passive/active HA setup when the core switch pair are using GLBP to load balance end-user traffic ? Essentially, I will have two cores in A/A and the PANs in P/A. I am using PA-500s.

Panorama connectivity issue

Hi everybody,

 

When I configured my new firewalls to register with my panorama, they didn't appear.

I checked the following points:
- Connectivity between my firewalls and my Panorama : OK => I do some packet captures on both side
- TCP bidirectional t

...

MT 3.1 and CheckPoint VSX

We're running a really old version of CP 71.40 running VSX with multiple virtual firewalls.

 

This document describes where to get a config file from, but this does't account for a virtualized enviornment and the file nor directory exists for these v

...

Resource-unavailable for http traffics

Hi All,

 

Some of the sessions are ended with Resource-unavailable reasons. Almost all traffics in these sessions are web-browsing and some updates traffics on port-80.

 

All https-443 are working fine. this issue happened for 4 hours on last week. 

...

Javith by L3 Networker
  • 6409 Views
  • 6 replies
  • 1 Likes

Resolved! Agentless USER-ID - rules

Good Day

 

I'm testing user-id in policy-rules and its not working the way I thought it would.

 

Example Rule

src zone/ip - Zone A/any

dst zone/ip - Zone B/any

user - gdc\test.user

application - any

service - application-default

action - allow

 

I st

...

burtond by L2 Linker
  • 2481 Views
  • 12 replies
  • 0 Likes

creating vsys

 

Hi ,

I would like to create , vsys for routing .P resently fw is runnin in virtual wire mode .
How i can copy the same policy which is in another vsys

Thank you

 

sib2017 by L4 Transporter
  • 775 Views
  • 1 replies
  • 0 Likes

what ports updates server is using ?

customer can not update lic through  method of Retrieve license keys from license server, Maybe their ASA stop some ports.

I want to know updates.paloaltonetworks.com is using what ports. Expect someone can help me !!!

 

Yue.Ma by L1 Bithead
  • 1515 Views
  • 3 replies
  • 0 Likes

User ID agent or agent less?

Hello

 

What is recommended approach to configure User-ID, agent or agentless? My scenario is, I have two centralized DC in HQ and there are 22 remote sites having two local DC each.

Also in case of agent approach, what is the best practice, where to

...

Kashif by L2 Linker
  • 2106 Views
  • 1 replies
  • 0 Likes
Top Liked Authors