Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
jforsythe by Community Team Member
  • 27 Views
  • 0 replies
  • 0 Likes

Resolved! Bootsrap Image Error

Hi All

 

I am seeing the following in the system log of a PA-200 on reboot:

 

 critical hw             bootstr 0  No bootstrap media detected

 

 

I can't find any reference to this message anywhere and indeed all the errors that can be ebcountered while boo

...

Export Configuration

Hi,

 

It is probably very simple thing.. I wish to retrieve full configuration of Palo Alto firewall to build new firewall which will NOT be managed by Panorama.

 

Could someone please suggest me procedure or command on how to retrieve (via web or cli -

...

session QoS rule

Hi,

i have created a qos rule for skype and assign class which is real time ,

When I look in to the session details I could not find the session qos rule .

 

 

 

How to interpret the details ? 

for example like flow1 c2s and flow 2 c2s and PRED

any related d

...

skyp.jpg
simsim by L4 Transporter
  • 1889 Views
  • 3 replies
  • 0 Likes

Resolved! Policy application question

Hi

 

So I created an application 

 

TEST HTTPS tcp/443

TEST HTTP tcp/443

 

and a policy from any where to 10.10.10.10/24 application TEST HTTPS & TEST HTTP allow

and then deny everything else

 

if I go to my test box say 10.20.20.20/24 (different network), pre

...

Migrate from Check Point to PaloAlto step by step

Hi guys

I have some document that I made about migration from CP to PA,

Please feel free to contact me if you had some issue with that migration.

If you want the PDF file, please check the following link:

http://zwerd.com/2017/09/05/paloalto-migration.ht

...

Document-page-001.jpg
page2.PNG
Document-page-003.jpg
Document-page-004.jpg
guyzwe by L0 Member
  • 3209 Views
  • 1 replies
  • 3 Likes

7.1 default behavior changes

So I was reading about OS 7.1 because I am planning on upgrading from 7.0.12 to 7.1 and found some information of the default behavior of app-id

 

 

appid.PNG
jdprovine by L4 Transporter
  • 4155 Views
  • 12 replies
  • 0 Likes

Resolved! Path Monitoring question?

Hi folks,

 

Preparing for my HA configuration this weekend.  

 

I have a question about creating a Path monitoring group on the Passive device.

 

While I go through the procedures to configure HA on the Active device, I plan to set a Path monitoring group

...

OMatlock by L4 Transporter
  • 2322 Views
  • 3 replies
  • 1 Likes

Finally IPv6 over GlobalProtect, or should i say v6IP?

About 2 months ago I was thrilled to hear that PANOS 8 was coming out and that it would bring us IPv6 inside a Globalprotect VPN. After fixing the "licence issue", i finally came arround to doing the upgrade and eagerly started to configure a tunnel

...

P.Braat by L1 Bithead
  • 3832 Views
  • 6 replies
  • 0 Likes

Log Card Interface Issues

We have configured a log card interface on one of our 7050 devices for submission to wildfire. This is not working. 

Our testing shows we cannot ping the default gateway conifgured on the interface. If we ping from the router, then no response is reci

...

HTTP OPTIONS Method

Hi,

I am getting contionous 'HTTP OPTIONS Method' - alert
What is the reason for this

If I have multiple vulnerabilty profile ,I want to exclude this from one of the profile or one of the ip
(I want to ignore this vulnerabilty checking in a profile or ag

...

simsim by L4 Transporter
  • 2459 Views
  • 3 replies
  • 0 Likes

cookie size

Hi,

 

Is there something  settings related to 'cookie size' in pa

 

Thanks

simsim by L4 Transporter
  • 1536 Views
  • 2 replies
  • 0 Likes

Resolved! Path Monitoring Group Name field will not save?

Hi folks,

 

Another HA question, but seems like could be an easy one.

 

I have one test PA-200 OS 6.1.4, enabled HA (for practice), created a Link Group, and now trying to create a Path Group.

However, when I type in a name and click off of it, press ente

...

PathAny1.jpg
OMatlock by L4 Transporter
  • 1799 Views
  • 2 replies
  • 0 Likes

IPSec Tunnel PAN to Cisco ASA - matching for phase 2

Do the proxy ID's on the pan side have to match the ACL defined crypto domain on the ASA? That is - suppose on the PAN side you had for phase II of the tunnel 192.168.1.0, 192.168.2.0 and 192.168.3.0 while the ASA side had only 192.168.1.0 and 192.16

...

palomed by L3 Networker
  • 1939 Views
  • 3 replies
  • 0 Likes
  • 23584 Posts
  • 107 Subscriptions
Labels