Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

Untrust WAN to Untrust WAN

Hello,

 

Could anyone help me understand the purpose of the following firewall ruleset Untrust WAN -any to Untrust WAN -any, Application-any, Service:Application-default, Action-Allow, Profile Group:Outbound.

 

Thanks!

rmarath by L0 Member
  • 47 Views
  • 1 replies
  • 0 Likes

Nat 64 feature PA 460

Hello everyone, one of my customer have a PA 460 and he ask me If he can use NAT64 on it. In Palo Alto docs it seems that it depend on the panorama OS version and not on the compliance. But on the hardware documentation, it doesn't mention NAT64. I o

...

brtkcns by L0 Member
  • 73 Views
  • 2 replies
  • 0 Likes

HA path group

 

I am trying to setup HA path group but as seen below between FW and ISP we have L2 switches. what is the optimum solution for path monitoring since L2 switch hardly goes down ? By the way Panorama manages the FW  

 

 

 

EOdeh_1-1710534820057.png
EOdeh by L0 Member
  • 130 Views
  • 1 replies
  • 0 Likes

Slow Internet upload behind PA-850

Hi,

Background : 

 

We have a pair of a HA PA-850 attached to a 200/200 Mbps Internet line

 

When we do the speedtest direct attach to the service provider's CPE, we can get 179/190

 

Then we gone through another test behind the HA pair , the speed d

...

JT_TBIT by L0 Member
  • 103 Views
  • 1 replies
  • 0 Likes

Resolved! PAN-PA-445

Hello all,

 

Could you please give me correct ECCN for firewall PA-445 or some look up tool list with all products where could I find ECCN?

 

Thank you.

 

Best regards,

smacura by L1 Bithead
  • 181 Views
  • 3 replies
  • 0 Likes

Resolved! LDAP User based policy not working

Essentially, I aim to enable users to access the internet after being prompted with a captive portal and entering their LDAP username and password. Each user should have a separate policy. I have configured the LDAP server, portal, and other settings

...

EDL and FQDN ID Tools

Community,

 

I wanted to provide an announcement of a couple of open source tools that I have written and published for External Dynamic Lists (EDL) manager as well as a method for identifying domains in use for SaaS applications that can be used ind

...

  • 843 Posts
  • 32 Subscriptions