This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! website slowness with DHCP Cable Modem

I recently installed a PA-200 and many websites are either very slow to load or have to be refreshed multiple times in the browser.  Tried multiple browsers so not browser specific.  Running a PA-200 with DHCP to Time Warner on the Untrusted interfac

...

danlukas by Not applicable
  • 5286 Views
  • 16 replies
  • 0 Likes

Resolved! vsys cpu

Hi,

Can we see how much cpu is used by vsys's ?

Thanks

panos by L6 Presenter
  • 2301 Views
  • 2 replies
  • 0 Likes

Resolved! Virtual Systems Shared Gateways

Is it possible to have multiple shared gateways when running virtual systems.

I'm essentially trying to have 1 physical interface, shared among virtual systems, with an IKE gateway configured on it, so I can have multiple IPSec VPN tunnels established

...

Resolved! no nat

hello

i'am configuring a paloalto firwall wish is the backward firewall,

i'm facing problem with nat , users must be integrated in the frontal firewall

users passes by paloalto firewall first then the frontal firewall, when it pass by pan their

...

atelcom by L3 Networker
  • 5721 Views
  • 10 replies
  • 0 Likes

RPC Service

hello everybody,

I need to write a rule that allows RPC Service activity for SUN SNMP to DMI mapper daemon.

any idea?

thanks in advance.

Resolved! no certificates in the webui but still everything is working

we get the error:

Warning: cannot find complete certficate chain for certificate ****

we get this error since upgraded, i cannot see any certificate in the webui but everything (global protect and webui) is working.

int the export xml i can see those c

...

minow by L4 Transporter
  • 2588 Views
  • 4 replies
  • 0 Likes

Permit related/inherited applications

Hello,

I am looking to build a particular security policy where *all* web browsing is permitted, including any applications that the session gets transitioned to as a a result of App-ID figuring it out.  For example, a session may start out as a "web-

...

krhayes by L0 Member
  • 2034 Views
  • 2 replies
  • 1 Likes

Resolved! Timeout for SSL Decryption Session

Hopefully an easy one, but I can;t seem to find the answer.

What is the default timeout for SSL decryption i.e. how long before a user is required to re-accept an opt-out page?

And, what is the CLI command to change this?

Many Thanks

apackard by L4 Transporter
  • 2598 Views
  • 3 replies
  • 0 Likes

GlobalProtect 1.2.4 issue with Mac pre-OSX 10.8

We are having a strange issue with GlobalProtect and all Mac OSX that predate 10.8.  Clients can connect just fine, but when they try to connect to our NAS, the client's connection to the NAS locks up and then gets terminated, but the GlobalProtect c

...

mcw015 by Not applicable
  • 1735 Views
  • 1 replies
  • 0 Likes

Redundant Site-to-Site VPNs?

I am looking to put in redundant or active/active VPNs.

2 of our sites both have 2 ISPs.

Currently the VPN works from 1 ISP on each side.

Questions:

1. Can I have redundant VPNs?

2. Can I load share over those?

3. Any tips or docs to configure?

Other relate

...

Resolved! HA configuration & License Expired

Hi,

Given a scenario when both HA configured firewalls' license have expired, will my active firewall still fails over to passive firewall in the event of primary firewall failure?

thanks,

cwong.

cl_wong by Not applicable
  • 3294 Views
  • 3 replies
  • 0 Likes

Resolved! GlobalProtect Client Startup

After installing the Global Protect Client on our Windows 7 laptops, every time our users start their machines once they login to our network on the LAN the Global Protect Client pops up and wants to connect. Is there a way to supress that popup when

...

Resolved! VPN SSL traffic

We have a SSL VPN setup through the Global Protect Gateway. The SSL-VPN tunnel is in its own zone and I have an any - any rule for this zone to my trusted zone. I am able to pass traffic to one interface in a trusted zone but I am not able to pass tr

...

God by Not applicable
  • 3652 Views
  • 9 replies
  • 0 Likes

SSL Inbound decryption woes

Hi there,

we just configured our first SSL Inbound decryption, but we have some trouble and need help troubleshooting it.

Very simple setup:

Webserver in DMZ zone

Firewall policy: from:untrust to:dmz; src:any; dst:webserver; app:ssl,web-browsing; servic

...

Loss of connectivity when trasfering log to syslog server

Hello Everybody!

Our PAN firewallls send their log to a central syslog server; in case there is a gap in the connectivity (e.g. satellite link down) what happens to the corresponding log entries?

Shall the remote firewall store them till the connection

...

Bucche by L2 Linker
  • 3872 Views
  • 7 replies
  • 0 Likes
  • 24205 Posts
  • 100 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks