General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone, Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June. This event will cover the following points related to the newly unveiled Zero Trust Network Security: Secure access to the right applicat...

seattle-launch-live-community-r2b-1100x120.jpg
jdelio by Community Team Member
  • 436 Views
  • 1 replies
  • 4 Likes

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 18096 Views
  • 41 replies
  • 32 Likes

Resolved! APP-ID Doubt

hello community, I have a question that I have not been able to solve with the study material and it keeps breaking my head.Here it goes, when I generate an application-based security policy, for example from "trust" 10.xxx to "untrust" anywith app a...

ServiceRoute

I have configured trust and untrust zone with respect to their interface. I create policy of any any...my firewall internet only work when i configure service route and destination as outgoing interface,if i set it as default and select use managemen...

Swetang by L1 Bithead
  • 450 Views
  • 1 replies
  • 0 Likes

PaloAlto Logs Issues

Having issues regarding the log.cannot see any logs on the Palo alto firewall.The changes: - we downgraded from Panos 10 to Panos 9.1.x since then we cannot see any logs.

Resolved! Changing Master Device - Panorama

We have recently gone through a firewall hardware upgrade, and the device that was replaced was our old "Master" device in Panorama. I would like to make the new device our "Master" device, but I am intimidated by the call-out "When you change the Ma...

Getting Systems Alerts

Hello,I am getting system alerts in my firewall below is the error:- Disabled applications in vsys1: cip-ethernet-ip-disable-io cip-ethernet-ip-disable-sfc cip-ethernet-ip-enable-io cip-ethernet-ip-enable-sfc cip-ethernet-ip-read-mod-write cip-ethern...

Resolved! gp logs sync with the passive but with time difference!

Hello, Logs should only be placed in the active node, however i am keep monitoring the globalprotect logs for 3 days and i am sure that the active node does not change, however the logs is still appears on both nodes each with different time. Did som...

melmokad by L1 Bithead
  • 1134 Views
  • 5 replies
  • 0 Likes

Hyper-V Compatibility issues

Hey,I'm running a 3 Node S2D on Server 2019.Currently migrating from VMware Hypervisors which has the Palo Alto running on it, instead of doing a Migration\Conversion i want to build a new server. I'm trying to setup a Palo Alto VM-300 Series Virtual...

PA Firewalls HA Active-Active Routed design with BGP

Hello Everyone,I'm designing an edge network with Active/Active HA. After reading the PA documentation, I found Active/Active Routed based redundancy design which seems best suited for our environment. However the topology shown in Docs is a square m...

HA-AA-Routed-based-Redundancy-Square.jpg
HA-AA-Routed-based-Redundancy-Full-Mesh.jpg
yham81 by L0 Member
  • 1028 Views
  • 3 replies
  • 0 Likes

System alerts

Hello Team,I am getting system alerts in my firewall below is the error:-PAN OS - 9.0.6Disabled applications in vsys1: cip-ethernet-ip-disable-io cip-ethernet-ip-disable-sfc cip-ethernet-ip-enable-io cip-ethernet-ip-enable-sfc cip-ethernet-ip-read-mo...

DNS Query

Can we configure firewall will allow only one response for one dns request packet. Please suggest