This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 394 Views
  • 0 replies
  • 0 Likes

New to the Training and Community

Hello All,

 

As the title states, I am new to Palo Alto training and the Community. I have started the lab Firewall 7.1: Install, Configure, and Manage (EDU-101) and downloaded the lab guide. I would like to login to a device as it states on step 3:

 

"3

...

plosey68 by L0 Member
  • 1838 Views
  • 2 replies
  • 0 Likes

traffic flow

Hi,

 

I have two zone (trust and trust),

for trust to untrust traffic flow   and untrust to trust , do I need to create two security rules ?

 

Thanks

 

 

simsim by L4 Transporter
  • 3295 Views
  • 7 replies
  • 0 Likes

slowness in traffic

Hi,

Users complain about the office365 outlook connectivity ,slow submission of email . From PA prespecive what need to be verified and make sure there is nothing from the PA side .

 

Thanks

simsim by L4 Transporter
  • 2214 Views
  • 2 replies
  • 0 Likes

Resolved! WannaCry - Kill Switch & DNS sinkholing

Why Palo is not sinkholing DNS queries to the kill switch URLs? Currently if I run a DNS lookup request for the kill switch URL, it come back with the valid DNS response. shouldn't this be sinkholed?

 

When the guy "accidentally" found the kill switch,

...

Fengrui by L2 Linker
  • 10692 Views
  • 5 replies
  • 0 Likes

Resolved! Dshield blocking generic pulls

Saw this notice on the dshield page the other day that they will be blocking generic pulls from agents if they don't have contact info in the script.  Still learning about minemeld but know dshield is one of the default miners and was just wondering

...

Resolved! Security Policies Clarity

What is the difference between pre rules and post rules  ? None of my colleagues could answer this question upto my satisfaction.Can I expect expert comments ?

cmyakal by L1 Bithead
  • 3262 Views
  • 5 replies
  • 0 Likes

Resolved! External feed URL and minemeld update URL

In our environment, there is a PA between Minemeld and the Internet, so PA access control.

 

Would you please tell me the subject URL and port number ?

(A specific external feed becomes O365 is https://paloaltonetworks.box.com/s/gndwe5rzheg1ekwplxb4m

...

qos

Hi,

After egress max set  in the following order ,

If  100 Mb is the internet speed and   through the trust link (1 GB)  traffic is going other than untrust ( internet zone ) , 

the below configuration is ok ? .

 

 

class 1 10

class 2 10

class 3 10

class 4  4

...

simsim by L4 Transporter
  • 2640 Views
  • 6 replies
  • 0 Likes

Best practice for setting up address groups

Hi

 

Newbie to PA.

 

I want to create a address group dynamic (think that might be best.  made up from a group of network addresses in each DC.

 

So for example if I have 3 DC

 

dc1 - 10.1.0.0/16

dc2 - 10.2.0.0/16

dc3 - 10.3.0.0/16

 

I could tag them with "dc_ne

...

IKE Phase 1 Timeout

IKE is failing to negoriate phase 1.  I get this timeout and then a delete. Any thoughts on the possible cause? I'm thinking

the peer is perhaps not permitting the traffic from this device perhaps at a security device in front of their tunneling firew

...

palomed by L3 Networker
  • 10019 Views
  • 8 replies
  • 0 Likes

Adding Multiple Individual IP addresses at one time.

In our environment we use tags on individual IP addresses for a few different things and then have policies in place to take those actions based on those tags.

 

Sometimes we have requests come in with a lot of indivudla IP addresses that we have to ad

...

  • 23842 Posts
  • 112 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks