General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Multi Rule Edit

Is there a tool out there to perform multiple rule edits? OR am I forced to do a "find & replace" method by copying CLI? In this case, I'm trying to enable log session at end for all rules.

nicford by L2 Linker
  • 2740 Views
  • 2 replies
  • 0 Likes

Resolved! failed to load: Internal memory error

Hi All, GP gateway was working fine and suddenly stopped working. Any changes to the certificate or tls profile give the following errors: 2017-07-30 09:56:06.456 +0100 Warning: pan_cfg_sysd_parse_response_msg(pan_cfg_sysd.c:859): got error response from cfgpush.s1.comm.cfg: Error: Certificate'GlobalProtect-GW' failed to load: Internal memory e...

Log-collector on 8.0 and panorama/FW's on 7.1 - Compatibility?

Anyone tested this or know if it is documented on the compatability or not with 8.0 on the log-collectors but everything else on 7.1.I know the rule of thumb that your manager (panorama) is to be your highest code version, however with the log-collector I could see this not applying.I plan on labing this but wanted to reach out to the community ...

AD trouble after installing content version 729

We had problems with AD after installing content version 729 this morning. Users were authenticated, but the logon process (group policy, drive mapping) was painfully slow. After we reverted to version 727 everything was OK again. The strange thing is that I see no traffic to our AD controllers being stopped by the firewall. Anybody else seen th...

Resolved! Can you throttle logs forwarded to Panorama?

I want to know if there is a way to throttle the bandwidth logs forwarded to Panorama from a PA-3020. I have several PA-3020 firewalls that I want to connect to Panorama and they have several hundred MB of logs each. They have never previously been managed by a Panorama before. I am afraid once I add them to Panorama, the firewalls will attempt ...

PAN-OS 8.0.4 - Sporadic Success on Content & Anti-Virus upgrades (PA-200)

All, I opened a ticket on this with Palo Alto but I thought I would reach out here as well. Even since upgrading from 7.1.x to 8.0.4 on PAN-200 firewalls I am getting inconsistant success in upgrading Content or Anti-Virus packages. It's so inconsistant that I have two of our firewalls working without issue, but several others failing to upgra...

image.png

Same Version Differnt Results

I have two instances of MineMeld, both built off the instructions at https://live.paloaltonetworks.com/t5/MineMeld-Articles/Manually-install-MineMeld-on-Ubuntu-Server-14-04/ta-p/98454 My dev instance built in June and reporting version 0.9.40 appears to be functioning correctlyMy prod instance built in Aug and reporting version 0.9.40 appears to...

0isac0 by L1 Bithead
  • 4440 Views
  • 3 replies
  • 0 Likes

Resolved! Duplicate IP issue on dual WAN config

I hope I'm in the correct forum and someone can help me. I suspect this is an easier problem than I'm making it out to be but here's the issue. We used to have two physically segregated networks. Let's call them Network A and Network B. Each have statically assigned Public IPs, dedicated gateways, etc. I recently moved both A and B to our ne...

User mapping problem

There is some problem with automatic user mapping promlem.In the mornings in some users there are problems with user mappings.We have to open the browser and make authorization through captive portalAlso internet dissapearing.As you see from attachment the user mapping is not working correctly.two different comps

image002.png
image003.png
Radmin_85 by L4 Transporter
  • 6049 Views
  • 7 replies
  • 0 Likes

Slow internet performance behind PA-500

I recently upgraded to a 250Mbps internet speed.When I plug my laptop directly into the ISP router I am getting close to 300Mbps.But behind the PA-500 firewall, I am getting around 80-90Mbps.Firmware is 7.1.10 running in HA What would cause this?

Looking for some rule guidance

Hello all, I'm trying to get some access restricted to a few subnets that fall into our /16 range that we currently have in our Palo. The way it would look is we would have 2 subnets smack in the middle of the /16 that we only want to allow access to a handful of hosts in that subnet, yet block everything else in that range. To explain it cleare...

  • 24394 Posts
  • 123 Subscriptions
Top Solution Authors
Labels