General Topics

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

L2 trunk and subinterfaces to Cisco

I am trying to configure a L2 trunk from a Cisco 3750 to a Palo 5020

I cannot find any info on how to configure the Palo, as the terminology is different to me.

As a side note we are also running two 5020's in an Active/Active configuration

I have tried

...

Resolved! pass on user-id information

Hi All,

Setup

- We got 2 PA clusters with a leased line between them, joining two offices of the same company.

- Both offices have their own AD, servers, ...

- We have GlobalProtect configured on both devices.

- We have PanOS User-Id configured (so no age

...

Re-Generating HA-Keys

I was lazy and just imported a configuration from a a other firewall to create a new firewall.

Now i discovered that the HA-Keys are identical (because) I imported the config.

Is there any trick to re-generate them or do i have to factory reset and sta

...

Removing an Object and All Dependencies

Morning,

I am doing some firewall cleanup on our panorama. We have quite a few devices and I am forced to go through each device group to verify if something exsists locally or shared. Is there any way through the CLI or Panorama to remove an item a

...

one trust two untrust

If I have two DSL connections, and 10 network segments, is possible configure on a PAN firewall one "trust" zone, tow "untrust" zone and send five segments for each one?

Resolved! Has anyone successfully made 'scribd' ReadOnly Access?

Hello,

We would like to allow "ReadOnly" access to Scribd hosted content. I note that there is an application definition called 'scribd-uploading'.

Has anyone successfully done this by blockign the 'scribd-uploading' application?

Thanks

Art

Resolved! Migrating configuration from Panorama VM to a M-100

What would be the required steps for migrating from PAN-VM to a M-100?

Resolved! Managing Local Admin Through Panorama Template

So, we are (slowly) transitioning our devices to 5.x code to fully utilize the templates via Panorama. One of the items I was looking into transitioning is the local admin account. However, from my testing, I don't know that this is possible. We h

...

Resolved! Traffic logged in an interface in down state

This is our scenario:

- A PA-200 with a subinterface tagged with VLAN ID 200.

- Connected to a Cisco Catalyst switch (trunk with VLAN ID 200 allowed).

- It has been working without problems.

Now, we want to divert traffic to a Cisco router with same IP a

...

Panorama Generating Blank Reports

Hey everyone. Has anyone see an issue where Panorama (VM) is generating blank scheduled reports? I came into the office this morning, and found that Panorama generated its normal scheduled reports, but they are all blank with no data. Its not just

...

Is configuration file from 2050 device can be imported and loaded to 5050 device?

Hi All,.

As we are upgrading the device from 2050 to 5050, Is configuration file from 2050 device can be imported and loaded to 5050 device? or from any xxxx series to yyyy series.

regards,

Gururaj

Local user authentication

Hi all,

What does it mean if I create a rule that allows http/https services only for authenticated users from local user database between 2 zones? Will the users have to authenticate to the firewall first? How?

Thanks!

Peter

AD groups will not show up in PA

I have a new AD group that I made that I want to use in a PA rule. Its been 24 hours and it has not shown up.

Firmware: 4.1.7

We use Radius.

Maybe i should reboot the radius servers ...

thanks

Allow Ping to Layer3 Sub-Interfaces by default

Hi,

I have Palo acting as Layer3 gateway and I would like to always allow clients within the VLAN to Ping their default gateway (i.e. Layer3 Sub-Interfaces on Palo firewall) by default (running in Active/Passive mode). In my case multiple Layer3 Sub-I

...

Resolved! PaloAlto firewall platform upgrade?

Hi,

I'm a customer with two PaloAlto firewalls PA-2020 with active / passive config. We have a 100 Mbps simetrical Internet speed bandwith connected

to the PaloAlto firewalls and all is working fine.

Our ISP provider is going to upgrade our Internet sp

...

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

How and Why to Accept a Solution to Your Post

L2 trunk and subinterfaces to Cisco

Resolved! pass on user-id information

Re-Generating HA-Keys

Removing an Object and All Dependencies

one trust two untrust

Resolved! Has anyone successfully made 'scribd' ReadOnly Access?

Resolved! Migrating configuration from Panorama VM to a M-100

Resolved! Managing Local Admin Through Panorama Template

Resolved! Traffic logged in an interface in down state

Panorama Generating Blank Reports

Is configuration file from 2050 device can be imported and loaded to 5050 device?

Local user authentication

AD groups will not show up in PA

Allow Ping to Layer3 Sub-Interfaces by default

Resolved! PaloAlto firewall platform upgrade?

Edit personal information

best practice assessment option is not showing in paloalto customer portal

change default static route

Monitor Logs - filtering with wildcard?

GlobalProtect Automatic Update screenshot?

Re: What is still missing or needs to be improved in PA Next Generation Firewalls ?

Re: Solution for "SSL decryption bypass for Anydesk"

Re: Failed to update content package

Re: Solution for "SSL decryption bypass for Anydesk"

Re: Error installing dynamic update Apps

Unlock your full community experience!

Resolved! pass on user-id information

Resolved! Has anyone successfully made 'scribd' ReadOnly Access?

Resolved! Migrating configuration from Panorama VM to a M-100

Resolved! Managing Local Admin Through Panorama Template

Resolved! Traffic logged in an interface in down state

Resolved! PaloAlto firewall platform upgrade?