General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 449 Views
  • 0 replies
  • 0 Likes

Recommended PANOS version

Hi Guys,

 

I would like to know if there's any resources that provide information about what recommended versions of PANOS to be upgraded to or from? Also, what caveats one might face during the upgrade process?

 

Thank you,

Dennis

Layer 2 v. V-Wire

Anybody think of a situation where I would prefer a layer 2 connection over a vwire in a basic setup? i.e. [users]--[core switch]--[PA]--[router]

 

Right now I have:

 

([switch] --VW--[PA]--VW--[router])x4

 

Moving (becuase of lack of PA support for LACP L

...

PeterT by L2 Linker
  • 3827 Views
  • 5 replies
  • 0 Likes

Resolved! SSL decription between firewall and proxy

Hi Guys,

 

We have a palo alto 3020 firewall in peremeter and websense proxy server in internet network acting a explicit proxy. So users are browsing internet through proxy server and the proxy will forward the traffic to internet via PA firwall.

 

We n

...

irshad.n by L1 Bithead
  • 2762 Views
  • 1 replies
  • 0 Likes

Skype on PAN 8.0

Hi 

 

Has anyone had issue with Skype on PAN 8? This week we needed to bypass decryption of *.skype.com to get Skype to work on the Apple iOS Skype app (consumer Skype). Our setup inspects all ssl traffic apart from the finance /banking / health catego

...

Resolved! How to enable Ping on ISP interface with Dynamic IP?

Hi folks,

 

As I continue my baby step learning, I am successfully using a PA-200 to access the internet from my internal clients.

I am now trying to understand how to enable ping (at least temporarily) on my 1/1 Untrust-L3 interface.  I like to be able

...

ping1.jpg
ping2.jpg
ping3.jpg
OMatlock by L4 Transporter
  • 9001 Views
  • 4 replies
  • 0 Likes

Panorama - search and replace?

I'm kind of new to PaloAlto firewalls and I am looking for guidance on how to help with a little situation. As part of our migration, we had to create a bunch of security-zones that parallel what is on the system already. It was a cludgy, but functio

...

Failover (Active, Standby) 2 WAN Tunnel IPSEC

Hi All Expert,

I have a small question to ask you.
I have plan to use PA for this semester and try to find what PA can do.

I have more than 10 Partners dial Site-to-Site VPN with me.
One of 10 Partners have connection issue with my primary link, so PA wi

...

Change PAN Education Email Address

Hi All

 

My current work email address is used to log in to support.paloaltonetworks.com (super user, can add/remove users, see all our assets etc). It is also linked (not sure how) to my PAN Education login/transcript via SSO. 

 

I will be leaving my cu

...

smichie by L0 Member
  • 1674 Views
  • 1 replies
  • 0 Likes

PAN for NSX 6.3 and vSphere 6.5

Does anyone know if NSX 6.3 and vSphere 6.3 are officially supported for PAN yet? I looked at the release notes for 7.0 and 7.1 and they are both stating vsphere 5.5/6.0 and NSX 6.2. I have a POC lab with NSX 6.3 and vSphere 6.5 that i was looking to

...

plesogor by L0 Member
  • 1729 Views
  • 1 replies
  • 0 Likes

GlobalProtect Login Portal Redirect to 443

We're trying to find a way to redirect people trying to hit our Globalprotect login page on straight http to redirect to https seemlessly.  We thought we had this working with an inbound NAT policy with destination translation looking for original se

...

jsalmans by L4 Transporter
  • 9438 Views
  • 4 replies
  • 0 Likes

ikev2 VPN

Is it possbile to set up a VPN using ikev2 and if so is there a document of the steps to create it?

jdprovine by L4 Transporter
  • 2477 Views
  • 2 replies
  • 0 Likes

Issue with traffic over ipsec tunnel.

PA-3020 ,7.1.8. PA  has 3 tunnels with 3 sites.

 

Site1 - PA200 on other side tunnel traffic fine. ping from site1 to subnet behind Pa3020 works with 1472 mtu and fails after

that.

 

Site2- Tried to migrated from ssg140 to PA-3020,other side Cisco 871. Tr

...

Resolved! Palo Alto Mapping problem adding new groups

Hi,

 

we have a PA3050 and we are expecting a problem related to Group mapping. We have added two new groups in LDAP Group mapping profile. We can add these 2 groups using WebUIS "Included groups", we launch a refresh userid group-mapping but when we r

...

  • 24076 Posts
  • 116 Subscriptions
Labels