General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How can I create a report that shows my ISP outages in a given month?

The information I'm trying to see is how often one of my ISP's goes down in a given week/month. I have dual ISP's so I use PBF rules to failover. I currently have a system log setting to email me when a PBF rule is triggered (subtype eq pbf). But I don't see any "system" categories in the scheduled reports. Is there any way to make a report for ...

Maxstr by L3 Networker
  • 4083 Views
  • 2 replies
  • 0 Likes

Active Active Setup PA-500

HelloCould someone direct me or provide me with instructions on setting up twp PA-500's in an Active Active configuration?Much appreciated and Thank You

RyanA. by L0 Member
  • 4562 Views
  • 2 replies
  • 0 Likes

How vulnerability profiles work

Hi Guys,Please need your supprt in understanding how vulnerability profiles work or in general how security profiles work.I have done a lot of studying in this regard and all they say is that it works on the basis of signatures.Below is my understanding. Signatures:Its like any specific pattern or a behaviour in the traffic ,payload etc,please ...

mahmoodm by L3 Networker
  • 4591 Views
  • 6 replies
  • 0 Likes

Resolved! SMB versions

I currently have ms-ds-smbv2 and ms-ds-smbv3 permitted but I am seeing ms-ds-smb-base getting denied. What is ms-ds-smb-base? Is this the same as ms-ds-smbv1? Thanks!

SMB : SMB: User Password Brute-force Attempt

Hi, my customer had a problem with this threat. They have a internal app which was failing when palo alto updates changed the action to reset-both. Customer told me that this problem started last 15/06 but i went to the PA updates mails and i didnt see anything about changing the action for this threat (SMB: User Password Brute-force Attempt ID ...

Resolved! How does link monitoring work in High Availability ?

Hi All, I am working on the following HA design - As you can see above, each firewall will have two interfaces connected to Juniper routers on the inside and outside zones. The firewall peers will also be directly connected to each other for the HA links. The plan is to use Active/Passive deployment and I am trying to figure out if this desi...

(Vendor - PAN) 40 Gig PRD Firewalls Topology (1).jpg

Issue with NAT over Site-2-Site VPN

Hi there, I am reasonably good with Palo Alto Firewall however struggling with the NAT over VPN. I am trying to hide some internal IPs behind 9.9.0.1/32 and 9.9.0.1/32 is configured in Proxy ID as Local host. VPN phase 3 comes up but i think the way i am doing NAT is wrong. NAT policy is created is as follows Source Zone Destination ...

nvirmani by L1 Bithead
  • 5791 Views
  • 7 replies
  • 0 Likes

Panorama Problems!

Any ideas how to fix the following error: Failed to establish SSL connection to Panorama Server: Port:3978? We are unable to view the logs on Panorama or push the firewall policy from there as a result so it's causing a few issues to say the least. Any help would be appreciated. Thanks! Nothing has changed on the firewalls or Panorama. Panorama ...

Multiple Globalprotect Gateway using Same ISP on same firewall

We have to implement a Globalprotect VPN Deployment using 3050 in HA Pair in which we have to use a single Portal and define Multiple External Gateways somewhat we call in Cisco Anyconnect as multiple profiles. Is it possible to define Multiple External Gateways using the same Interface catering to different OS types and using a single Portal co...

dborasi by L0 Member
  • 2510 Views
  • 1 replies
  • 0 Likes

Proxy server for PA services

Hello, We are using a proxy server to control Internet access from internal resources, including the PA firewall. This proxy can only be used to reach external destination.Also, we had to configure the proxy server on the PA device (Setup -> Services -> Global) in order for the PA to perform updates. Now we would like to use External Dynam...

Resolved! BGP filtering question

I am trying to migrate from RouterOS BGP setup. I have filter rule likechain=BGPINFilter-common prefix=10.32.0.0/14 prefix-length=14-32 invert-match=no action=discard set-bgp-prepend-path="" basically it drops all prefixs for 10.32.0.0/14 down to /32's how can I do this on the pa.I have something like thisset template ybopa config network virtu...

Resolved! License/Eula for GlobalProtect Portal client v3.x

We have a client that requires GlobalProtect for connecting to their network. Their site provides the installers which is version 3.1.1.27. We have an internal team that insists on receiving a license description or EULA for using the client binaries. They cannot believe that there is such a thing as a software client that doesnt show or store a...

Panorama standby password expired

Hi, One of my accounts on Panorama standby doesn't let me login. I get "Password expired" message. I tired to change password for active unit and that still did not fix issue. I tired to delete and recreate account from active unit that still did not fix issue. How can I clear this flag on standby unit without making it active and changing passw...

junior_r by L3 Networker
  • 4061 Views
  • 6 replies
  • 0 Likes

xForward for IP

Does the Palo Alto support the xForward for IP in relation to content delivery networks? We have the content delivery network fronting traffic and in some cases we see requests coming back showing the CDN IP, we are more curious about the details around the originating IP address than the CDN IP.

jhenkel by L0 Member
  • 2021 Views
  • 1 replies
  • 0 Likes
  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels