General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 289 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 966 Views
  • 0 replies
  • 0 Likes

Resolved! LAN users cannot reach GP users

Hi All,

 

I've one inquiry where the client used to have an issue where the GP users can reach the LAN users but not vice versa.

Users in LAN and GP are on the same zone (Trust) but only GP can ping the LAN.

 

The tunnel of the GP doesn't have an IP addre

...

How to disconnect remote users at a specific hour

Goodmorning,

I need to disconnect one or more users from Global Protect VPN at a specific hour.

I try to explain, I don't want that after 7pm the remote suppliers can work on my net. I can't use the scheduled policy rules becouse the sessions started b

...

FassaSRL by L1 Bithead
  • 7129 Views
  • 5 replies
  • 0 Likes

Resolved! URL Filtering Issue

Hi,

 

Without URL Filtering in the Security Profile of the policy, we can access vimeo.com but with URL filtering profile, getting error message below in IE, Chrome and also on the phone. No proxy used, no SSL decryption. This is happening to the categ

...

Error.png
DetailedLogView.png
Farzana by L4 Transporter
  • 3758 Views
  • 4 replies
  • 1 Likes

Source zone - source address

If you enter a specific source zone but any for the source address what traffic is really allowed? Does is only allow addresses that are listed in the specified zone or is it truly any IP address?

jdprovine by L4 Transporter
  • 5737 Views
  • 11 replies
  • 0 Likes

Feature Request - Security Profile policy

Hi,

 

One thing about configuring security profiles is that when I like to change a security profile, there are so many security rules to update with the correct profile. I know I can change the profile itself and all policies using that profile will b

...

mgusta by L2 Linker
  • 3786 Views
  • 3 replies
  • 0 Likes

Problem Global Protect Behind NAT

Hello I have the following scenario:

 

-PA-3020 Edge Firewall who provide as internet access

-PA-200 LAN Firewall behind PA-3020

 

We are triying to configure Global Protect access for GP-200.

 

-I have a fqdn for the portal and gateway access which resolve

...

AitorGD by L1 Bithead
  • 3722 Views
  • 1 replies
  • 0 Likes

Resolved! VPN Timeout

Anyone know if there is a way to setup GP VPN to notify the end user before their VPN connection times out? Any feedback will be greatly appreciated.

 

Thanks

tbpowers by L0 Member
  • 2184 Views
  • 1 replies
  • 0 Likes

Strange Behavior with SIP traffic related to ALG

I'm running into an issue where specific NAT and Security policy names or numbers change then the SIP traffic stops working. I found that if I clear the sessions post change then everything starts working again. I believe this is related to ALG, lik

...

Packet Capture filters not correct

I have a problem once in a while where packet capture filters are not working.  I set up the filters at one point and if I delete the filters and set up a new filter.  Turn packet capture back on and it still gives me captures of the old filter.  I c

...

Getting old PA-200 back in IT life

Hello

i inherited on PA-200 on my new job and want to get it back on IT life. While booting i observed the CLI and this is what i got. Needless to say i have no responces to any command entered.

Is anyone abel to provide some info how to set it up agai

...

Traffic Logs - Multiple IP's

Hi,

 

Is there an easy way to monitor traffic logs on say 20 IP's to see if any IOC's are being hit? I'm guessing I could build a filter for each IP but I was hoping there might be a way to do it easier. These are not contiguous IP's so CIDR won't help

...

Resolved! Looking for screenshots of a bare metal restore on a 2050

I'm developing an SOP and require screen shots for the following steps:

  1. On the ‘Device’ tab, choose ‘Setup’ and configure the following:
    • On the ‘Management’ tab under ‘Management Interface Settings’, enter the firewall’s IP address, netmask, and defaul
...

PAN-OS 8.0.2 URL logs not showing up

Hi guys,

 

I'm running a new PA-VM-50 on 8.0.2 within Esxi.  The VM is fully licensed and has all the latest dynamic updates and URL filtering db.

 

VM License - VM-50
VM Mode - VMWare ESXi
Software Version- 8.0.2
GlobalProtect Agent - 0.0.0
Application Vers

...

  • 24034 Posts
  • 115 Subscriptions
Top Liked Authors
Labels