General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! Registration now open - Interactive Event!

Hi everyone, If you haven’t already seen, registration is now open for our first interactive event all about the Best Practice Assessment (BPA) tool! You will be able to connect with subject matter experts, share best practices, and learn how this to...

jdelio by Community Team Member
  • 283 Views
  • 3 replies
  • 1 Likes

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 17001 Views
  • 45 replies
  • 32 Likes

Resolved! Outlook timeout issues

DescriptionWe are experiencing a timeout problem when using outlook/exchange across the PA firewall.When the RPC connection between Outlook and Exchange is idle, the PA apparently terminates the connection. This causes the Outlook client to hang/stal...

Resolved! LDAP for User Mapping

Hi,Can anyone explain: LDAP profile is needed just for User group mapping or in general for user mapping? Now i'm confuse.

Resolved! Failed to email PDF reports

Hi,Sometimes scheduled PDF reports fails to send. I get the message: "failed to get ip for host." It is email server problem or something wrong with configuration? Is any possibility to send scheduled PDF reports on another time or repeat sending?

Overlapping Vwires - is it possible?

Got a situation where the deployment requires (in very basic terms):VWIRE1 = Ethernet1/1 and Ethernet1/2VWIRE2 = Ethernet1/2 and Ethernet1/3Now this is not exactly 'standard' practice - but is it possible?

cowboy71 by L1 Bithead
  • 1216 Views
  • 9 replies
  • 0 Likes

Turn off Application ID globally?

Can one turn off the application awarenes globally to set up a PAN as a L4 firewall? Trying to get some comparison stats against the old L4 only (non PAN) firewall and the new PAN.thanks.

blarney by Not applicable
  • 844 Views
  • 6 replies
  • 0 Likes

Same traffic traverses the firewall twice.

I will try to draw this out the best I can and then ask my question.Remote Site (zone is trust, vrouter2, tunnel.1) <<>> Core network (zone is trust, Interface 1/10, vrouter2, layer3) Rule for this is any, any in both directions.The above is how all ...

rbit0965 by L1 Bithead
  • 1189 Views
  • 6 replies
  • 0 Likes

IPSEC VPN through PAN comes up but does not pass traffic

What needs to be enabled to allow a VPN that once worked to be allowed through a 3020. I had a Juniper to Juniper IPSEC VPN that worked before the 3020 was placed between the 2 junipers. What needs to be allowed to make sure that the traffic passes.T...

tuckert by L0 Member
  • 612 Views
  • 2 replies
  • 0 Likes

telnet with EBCDIC encoding

We are having some issues with IBM telnet (tn3270) through a PA-200. The telnet sessions are very sluggish. I had to remove the firewall to restore performance. The telnet is using EBCDIC encoding. I had been specifying a security policy using the ap...

oshcomp by Not applicable
  • 1075 Views
  • 5 replies
  • 0 Likes

Resolved! LOG_LOCAL

What is the idea/reason behind the facility setting for syslog? Is LOG_USER, and LOG_LOCAL0-7 just a method of ID, or is there something more to it? When setting up to send to a syslog server should you aviod using LOG_USER and use LOG_LOCAL(0-7)?

craymond by L4 Transporter
  • 3421 Views
  • 5 replies
  • 0 Likes

SSL decryption fails

We are testing SSL decryption on our PA at the moment. We have found a site that could not be decrypted: https://posteo.de/Has anyone of you an idea why the decryption fails for that site?And how could I troubleshoot such problems? Because the normal...

Ipsec vpn from MS ISA 2006 to PaloAlto

Hello,A third party has a isa 2006 server which they use for ipsec vpn. We do not seem to be able to create an ipsec site 2 site vpn. Can this be done? If so, any howto's,

mikeh by Not applicable
  • 695 Views
  • 1 replies
  • 0 Likes

Resolved! Palo Alto Dictionary file for Steel Belted Radius

Hi,We are using Steel Belted Radius Enterprise Edition v6.1.6 for authentication on all the network devices.We have few PA3020 and PA500. Now we would like to authenticate these firewalls via the same Steel Belted Radius Server.I am unable to locate ...

DCN by Not applicable
  • 796 Views
  • 3 replies
  • 0 Likes
Top Liked Authors