This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 776 Views
  • 0 replies
  • 0 Likes

Resolved! OSPF LSA Threshold: Security Finding

Wondering if there's a way to configure a threshold for OSPF LSA updates/messages?
Or if such a threshold is already in place by default on Palo Alto firewalls.  

Something that can maybe drop anything more than say 7 LSA messages in 5 minutes.
Apparent

...

How to get a historical graph of Qos Statistics

I have PAN 8.0.2 and  I would like to get a historical graph  of  the  diferents class in the interfaces  where I have applied QoS .

 

I do not if  I can  do that  with  PA3020 o I need  a syslog server to do it. 

 

what do you suggest me ?

QoS.JPG

Resolved! Exposing Videoconference - "Incomplete" traffic allowed

Hi all

I have tried to expose Videoconference system behind Palo Alto.
Unfortunately using App ID in security policy I have seen Palo Alto allows a lot of "incomplete" traffic.

That's really an issue: When enabling h.323 in security Policy App id engine...

BFD Dropping During Firewall Failover

Having an issue with BFD. I have BFD configured between the Palo Alto and a couple of routers (BFD Single Hop). When a firewall failover occurs, this causes the BFD peering to drop and come back. I would not anticipate this to happen. This causes a u

...

Resolved! Management Interface traffic logs

Hi guys,

Is there a way to see traffic logs of management traffic? I'm trying to troubleshoot user-id redistribution source from the management interface.

Thanks

NetWorkZeus

Resolved! Customizing Prototypes in Office365

I note that Office 365 recently updated the URL definitions to include microsoft Teams etc.

Has anyone customized the prototypes to support this change ?

 

https://support.office.com/en-gb/article/Office-365-URLs-and-IP-address-ranges-8548a211-3fe7-4

...

Resolved! DNAT issues into servers with teamed nic's ?

DNAT issues into servers with teamed nic's ?

Anyone seen issues with this before ?

 

I literally can't DNAT into servers with teamed nic's..

 

I'm going to run a wireshark capture on the server to see what is going on..

mpgioia by L3 Networker
  • 8602 Views
  • 18 replies
  • 0 Likes

PA upgrade problems

Hi, we have a cluster with PANOS 7.0.6, we want to upgrade to 7.1.8. In a similiar upgrading path we were affected for a bug related to VPN, which was applying when you jump to 7.1.0 an then 7.1.8. So we would need to jump directly to 7.1.8.

 

On the a

...

Qos question

Hi,

Let's say user wathing youtube , to limit the user's traffic ,
do we need to create qos profile for upload and download ?
Thanks

simsim by L4 Transporter
  • 5406 Views
  • 10 replies
  • 0 Likes

PA-200 FYI

I haven't seen this mentioned so I thought I would put it out there quick. Palo Alto has identified an issue with PA-200 units with the serial numbers ange 001606044723 to 001606075266 that have SSDs that do not meet their standards. If you have an e

...

BPry by Cyber Elite
  • 6142 Views
  • 1 replies
  • 2 Likes

Forward segments exceeding TCP content inspection queue

Hi,

 

On a new PA-3020 Firewallcluster I decided to disable the default setting "Forward segments exceeding TCP content inspection queue". Practically everything was working as it should. But onfortunately the devil is in the details. I had very few co

...

Remo by L7 Applicator
  • 14736 Views
  • 7 replies
  • 0 Likes

Resolved! Virtual Firewall

Dear All,

is it possible to make a Local Virtual Firewall using Hyper V or Vmware for the purpose of learning the functionalities of the Virtual Firewall ?

  • 23985 Posts
  • 115 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks