General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 264 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 940 Views
  • 0 replies
  • 0 Likes

Resolved! Configuring the Proxy-ID for phase 2 IPSec using PAN 6 CLI

there's this great example below for setting up an IPSec tunnel using the CLI. BUT it's missing how to add in the proxy IDs.

 

I have some clues that it's like..

 

set network tunnel ipsec IPSEC-Tuna-TUNNEL proxy-id tuna1 protocol any Local xxxx Remote y

...

palomed by L3 Networker
  • 11267 Views
  • 3 replies
  • 0 Likes

Application Incomplete For One Site But OK at Another

I have an IPSec tunnel with source address NATting to a partner. 443 web traffic from site A triggers the IKE and the IPSEC-SA session. In PAN monitoring the application is correctly identified as SSL and in my browser I pull up the site from the par

...

palomed by L3 Networker
  • 6749 Views
  • 9 replies
  • 0 Likes

VPN Access

How do you configure the globalprotect VPN's so they won't route on the internal network but will only let users access it from outside the internal network

jdprovine by L4 Transporter
  • 2619 Views
  • 5 replies
  • 0 Likes

Upgrading 7.1.5 HA Pair

My HA 3050 pair is currently running 7.1.5 and I am planning an upgrade spree.

 

The upgrade process that I read seems straight-forward. My main concerns are with IPSEC tunnels and GP clients.

 

My options right now are upgrading to 7.1.9 or just going t

...

HA PANs

Hello,

 

I am trying to design a new solution in our network infrastructure. Here's are the requirements:

 

-  Single ISP -- Two active Internet circutis --- (Corrected from Two ISPs to a single ISP)
-  Current topology: Two Internet circutis connected to

...

Resolved! PAN-200 upgrade to 7.0

For some reason, I had to RMA my PAN-200 which is used to demonstrate PAN-OS features. My previous box was 7.0.3 but before the upgrade between 7.0.2 to 7.0.3, I noticed that 7.0.0 was no longer available in the Software list in the Device tab.

 

The

...

CharlesP by L0 Member
  • 3668 Views
  • 5 replies
  • 0 Likes

PAN-DB URL Filtering activation problem

Hi All!

 

i am trying to activate URL Filtering from PAN-DB, but i have problems.

I upload the license manually and i haven't error, but when i try to download the database this error appear:"URL database download: not available."

Then i do the "Retrieve

...

DKanta by L2 Linker
  • 5810 Views
  • 9 replies
  • 0 Likes

A/A Cluster Routing problem

Hi,

 

I´ve a A/A Cluster Setup, where the firewall 0 is primary and the most traffic goes that way.
We use OSPF for the routing over the VPN tunnel and some tunnel are configured with a better metric over

the secondary firewall. We want to make some load

...

mschwab by L1 Bithead
  • 3080 Views
  • 6 replies
  • 0 Likes

Log Field

where have the document that  explain the each log field in traffic log and threat log?

Security Policy Listing

Hello, 

 

What’s the best way to generate security policy report to only show the listing of all the Security Policy rules  on a PAN?

 

I used the custom report and selected Source Zone, Destination Zone, Rule, and Application(also, played with  adding o

...

Resolved! Selection of the GlobalProtect portal by users

Hi !

 

We would like to install 2 GlobalProtect portals:

- one for the connection to the internal network since the outside with a VPN by using the GlobalProtect client ;

- one for the connection to the internal network with the GlobalProtect client, in

...

  • 24032 Posts
  • 115 Subscriptions
Top Liked Authors
Labels