General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 14527 Views
  • 1 replies
  • 4 Likes

Floating IP and ARP load sharing addresses binding in A/A

Hello All,

I'm curious about spending public IP pool given by my ISP, if I decide to put PAN-s in front edge perimeter. I have seen that in A/A scenario I need 4 IP's (physical and virtual) for Floating IP scenario, or 3 for ARP load sharing (2 physic

...

Tician by L3 Networker
  • 1434 Views
  • 1 replies
  • 0 Likes

Aggregate logs on PA-7050 across NPCs?

Hi,

I'm trying to aggregate logs across all dps in the system – right now only 2x NPC.


Using the procedure here: https://live.paloaltonetworks.com/docs/DOC-3876, the firewall says "packet-diag.log is aggregated” but where is it? Does that aggregated lo

...

Resolved! PANORAMA CHANGE HARDWARE

Hello world,

I must change a cluster  PA2050 by PA5020 (with the same configuration) and this PA are Managed by Panorama. ( all policies objects are created on Panorama but not policies)

Somebody know how to make this change? which steps?

thanks for you

...

alle by L3 Networker
  • 4186 Views
  • 5 replies
  • 0 Likes

Resolved! What really mean logs of dp-log and mp-log?

Hi All.

I want to know really means that logs of dp-log and mp-log as below. I think that logs would be very useful for troubleshoot when problem occur. please give me that logs info in detail.

admin@UQUEST_PANOS40_PA2050> less dp-log
brdagent.log     

...

ttongfly by L3 Networker
  • 8735 Views
  • 3 replies
  • 0 Likes

Aruba ClearPass and User-ID

We use 802.1X on our network for user authentication and assigning VLANs dynamically. Our edge switches (Brocade) and Aruba Controller are configured to use Aruba ClearPass to authenticate each user. ClearPass uses LDAP (freeIPA) to look up users. Cl

...

API & Log IDs

Our security team wrote some scripts to pull various logs from our PAs. I can't speak to the specifics of the scripts because that is outside my expertise, but they pull back information which contains a large "logid" number. What is this logid numbe

...

Panorama and Active/Active Setup

I'm setting up two 7050's in an active/active configuration. What is the best method to handle this with Panorama? Right now I only have one of them in there and it seems like only one of the nodes is getting my config changes even though I have conf

...

Resolved! Block pornographic Google images.

I have URL filtering configured that blocks pornography, but if I search in Google for pornography and then click on images, pornographic images are accessible.  I know that I can block these in Chrome browser, but how do I block them as a policy via

...

JeffC_ by Not applicable
  • 4333 Views
  • 7 replies
  • 0 Likes

Global Protect Problems on a Mac

Running Global Protect version 2.1.0-50 on a Macbook Pro with OS X and Yosemite. Connecting to a PA-500 running PANOS 4.1.8.

When I finish using my Mac for the day, I put it in Sleep mode so that it starts up again instantly. But if the VPN through Gl

...

dehrmann by Not applicable
  • 1834 Views
  • 3 replies
  • 0 Likes

allow single url

Hi,

on URL-filtering how can I allow a single URL (i.e. docs.google.com) and block all the others ?

Thanks.

lauro7 by L0 Member
  • 2361 Views
  • 7 replies
  • 0 Likes

Resolved! AppID Palo Alto SSL

Hi,

im checking my logs about AppID behaviour. i realised that in traffic https (withouth SSLdecypt policy configured) the PA is detecting facebook-base in SSL connection but with youtube for example is not detecting the app and it shows SSL. Why in

...

SOC_CSG by L4 Transporter
  • 1074 Views
  • 1 replies
  • 0 Likes

Export NAT from config.

Hi,

I am new to Palo and I have to export NAT from the config to Excel.

I followed the some of the instructions from the knowledge base but didn't work as I needed.

I just need to have it look identical or similar to what I am seeing from Palo web mana

...

Jeongkyun by Not applicable
  • 642 Views
  • 0 replies
  • 0 Likes

Identifying unknown-tcp in Monitor tab

Hello,

We have a PA-3020 running 6.0.3.  Basically we have iSCSI replication set up between two sites.  When I pull up the traffic in the Monitor tab I see the picture below.  Even though iSCSI traffic is defined in the Applications section I tried cr

...

ClintL by L2 Linker
  • 3194 Views
  • 13 replies
  • 0 Likes
Top Liked Authors