This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 382 Views
  • 0 replies
  • 0 Likes

Internal traffic is hitting in the isp firewall

Palo alto is perimeter to customer which is connected to isp firewall.

Internal subnet traffics which are not allowed in isp/ untrust interface are hitted in isp firewall.
Routing is proper. ARP is proper in isp interface( only next hop arp is there)

Im...

Resolved! MP utilization high after the HA failover to primary

When Secondary Firewall became active, management plane utilization is not more than 10% for over months.

Last week manual failover made, Primary is active now. MP utilization is above 60% all the time.

 

All the configurations are same as it's in HA. B

...

Resolved! Panorama question

Why is it for 

 

network / interface / <some interface>

 

I can't use a name for a zone.

 

I wanted to have a template that had all of my zones in it, but unlike policies and objects there is no shared attribute.

 

Which means I have recreate my zones for ea

...

PA-220 Aggregate Interface with LACP supported?

Hi,

 

I need to confirm whether the PA-220 is able to aggregate 2 interfaces or more in a LAG (LACP).

 

I was able to find out that the PA-200 does not support aggregating interfaces with LACP, but the PA-220 is rather new and I have not been able to fin

...

Web Filtering and Reporting

I have been tweeking reports on these Palos we purchases (3020) and trying to find a good Web Browsing/Filtering report to provide for senior management that will encompass top xx users with most visited external sites, preferrably with the duration

...

What services are used by the Management port?

We have been tasked to follow the CIS benchmark for our Palo Alto firewalls. One item is to limit access to specific IP addresses for the Management port. That is easy enough if the only thing using the management port was users connecting to manage

...

kjsocher by L0 Member
  • 2457 Views
  • 3 replies
  • 0 Likes

Resolved! Installing Global Protect on Mac not working.

I have downloaded and installed the latest GlobalProtect for Mac.  The install does not show any errors, but the agent does not seem to have started.  Rebooted and installed again, but still no joy.

 

I am running 10.12.5, Sierra on a 2010 Mac Mini wit

...

mdorsey by L0 Member
  • 4853 Views
  • 2 replies
  • 0 Likes

Resolved! Logging levels

Palo Alto is currently logging URLs which includes a path such as webserver.com/code.exe?id=4 but Palo is capable of logging a message that would display just the code.exe filename as well as a content type such as application/x-octet-stream or ms-ex

...

jerm1020 by L0 Member
  • 2360 Views
  • 2 replies
  • 0 Likes

Panorama shared objects

Hi

 

I am about to import my config from a PA into panorama. 

 

Now with shared objects, how do you manage them, can you delete them, I haven't found a way to do it via the web ui

How do change it from shared to non shared or the reverse ?

 

 

native VPN for Iphone on Pan os 8.0.2

Hello everyone, recently, i have access the acces for a palo alto Pa 500 i made the upgrade from 7.1.8 to 8.0.2, but now i need to do the configuration for a native vpn, for conect some iphone´s, but i dont have idea how to do this,  there is anyone

...

Decryption Issue

Hello All,

 

Need help

 

1. Decryption is not working in IOS device

2. Outlook is not working in Android via decryption

 

 

tac.in by L3 Networker
  • 2340 Views
  • 3 replies
  • 0 Likes

Resolved! Global Protect question

Hi

 

So I recently went through a POC with a HA pair of PA-3060. Setup a Portal.

 

Now it seems like my vendor/pa forgot to add the any GP licensing.

 

So by my read, I can do single gateway setup.  

 

Is there some doco on how to setup a client with no port

...

PAN 5050 Migration to PAN 5220

We are planning a migration from hardware 5050 to 5220. The PANOS migration will be from 6.1.16 to 8.0.2 (oe whatever 8.x version installed on the new 5220 hardware).

 

I am looking for advise for the upgrade process. 

 

 

whinkle by L0 Member
  • 1838 Views
  • 1 replies
  • 0 Likes
  • 23837 Posts
  • 112 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks