Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

PA-VM HA Failover Procedure

hello dear forum members, 

 

i have a question regarding 

the cluster configuration. 

 

wer'e currently

running a PA-VM in cluster (A/P Mode) 

in the organization within an 

azure enviornment, both

are configured with different External

ip address. 

...

v-wire security newbie

we have a v-wire setup where we are controlling traffic to a secondary firewall w our 820. as its sitting between ISP and the site secondary firewall (sonicwall) we created a rule that negates all but some countries we do business with and that negat

...

JGaitan by L0 Member
  • 1481 Views
  • 1 replies
  • 0 Likes

Resolved! Create Security Policy Allowing Access to Sharefile based on User while URL filtering is blocking "Online-storage-and-Backup".

We currently block access to Online storage using URL Filtering and make exemptions to online-storage sites like Sharefile using custom URL Category with list of URLs that we want to exempt.  However, this setup lets everyone in the company have acce

...

NormGala by L0 Member
  • 3586 Views
  • 2 replies
  • 0 Likes

Bypass the url filtering

Hi everyone

Can bypass the url filtering by changing the URL in HTTP get request ?
For example
Firewall rule deny connect to url deny.com and allow url allow.com
User try to connect to deny.com with IP adress a.b.c.d, user add item the host file or usin

...

kiennn by L0 Member
  • 2998 Views
  • 2 replies
  • 0 Likes

sometimes the policy matched the multicast packets and sometimes it didn’t when each packet had the exact same source/dest IP and source/dest port?

 sometimes the policy matched the multicast packets and sometimes it didn’t when each packet had the exact same source/dest IP and source/dest port?

 

Some multicast traffic is allowed but other packets are denied. We need to understand why there is

...

site to site ipsec vpn issue

PA 3260 and VM 300 set site to site  ipsec vpn, The Ipsec vpn had been working.But from two days ago ,

it wasn't working ,can you help me to check it ?

 

admin@tfw001> tail follow yes mp-log ikemgr.log

tail follow yes mp-log ikemgr.log
2022-10-08 19:1

...

  • 1637 Posts
  • 53 Subscriptions
Top Solution Authors
Top Liked Authors