General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

VPN Status

hey all

i have a 2 sites and we have between them 2 VPN tunnels (different ISPs) and on top of the VPN i am running OSPF

for some reason i see a lot of times that the IKE Gateway status is RED , but on the SSH i do see that i have an IKE-SA.

what i noti

...

vpn status.png
minow by L4 Transporter
  • 1733 Views
  • 2 replies
  • 0 Likes

Problems Removing Commit Locks

Our Panorama is running PANOS v7.1.6 and is configured to "Automatically Acquire Commit Lock". We have several firewall system administrators. If anyone of us makes a change, a commit lock is automatically taken for the user who makes the change. Two

...

Proper SNMP v3 Configuration

Hello,

 

One of our customer is having "Palo Alto Networks PA-500 Series Firewall".

For SNMP v2 all ok, but customer wants to start using SNMP v3.

Please, advice with setting proper SNMP v3 to monitor from Zabbix.

 

I`m not familiar with Palo Alto devices.

...

FSC_DS by L0 Member
  • 3024 Views
  • 2 replies
  • 0 Likes

Apply new evaluation license to exiting VM

I have a VM where evaluation license has expired .when try to download software complains not registered.

We have new eval license. a team member has gone and register uuid and cpu id from the exisiting vm and has got new serial number. but the vm sti

...

What is an advantage of purchasing VM-200?

https://www.paloaltonetworks.com/content/pan/en_US/products/product-comparison.html?chosen=vm-200,vm-100

 

If I compare these two model, specification is same, but the price is different between both two. (VM-100 is cheaper)

What is an advantage of VM-2

...

emr_1 by L5 Sessionator
  • 1917 Views
  • 2 replies
  • 0 Likes

Resolved! Clientless Remote Access VPN

Hello,

We've just purchased a PA-3020 in order to replace an old Checkpoint. We have a few site-to-site VPN, and some other VPNs using a Checkpoint client. I would like to get rid of the clients and use some king of clientless VPN, so I won't be bothe

...

Resolved! Securing YUM

Currently there is a requirement for all our remote linux servers (Which have static IPs and numbers around 250) to have access to various public YUM servers. The public YUM servers (I am told) cannot be defined statically because they constantly cha

...

Feature Request experience

Hello,

 

How many of the community members have submitted feature request(s) and implemented ?  How long did it take for the FR to get implemented ?

 

Thanks for sharing,

 

panos_syslog IP indicator - withdraw

 

I am trying to create an IPv4 indicator list based on PAN-OS threat logs.

Below is the rule code attached to the syslogminer class stdlib.syslogMiner.

 

 

RULE:

age_out:
   default: last_seen+30d
   interval: 1800
   sudden_death: false
attributes:
   c

...

MineMeld real-world usage to reduce threats?

So far I'm using MineMeld to pull Dshield and Spamhaus feeds to use to block inbound connections to our internet facing servers.

 

Whilst there are loads of miners I'd love to know which ones people have found "safe" enough to use on production inbou

...

Global Protect Windows 10

Hey experts!

I have a new Windows 10 notebook and Global Protect Client 2.3.4-4 installed.

However, the connect button is greyed out.

I read on the Palo Alto site that the recommended minimum agent version is 3.0.3.

So is the problem my 2.3.4 version? Do

...

MPI-AE by L4 Transporter
  • 3908 Views
  • 7 replies
  • 0 Likes
  • 23556 Posts
  • 106 Subscriptions
Top Liked Authors
Labels