This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4118 Views
  • 0 replies
  • 0 Likes

Exclude YouTube from Safesearch

Hi All, I have an issue with getting my PA to work in conjunction with Google Apps ( or G Suite) as it is now known. A little about the enviroment: Two group of users: Group 1SSL decryption enabledSafe Search disabledAllowed to approve videos in YouTube (see https://support.google.com/a/answer/6245597?hl=en) Group 2SSL decryption enablesSafe Sea...

stuart.l by L2 Linker
  • 2872 Views
  • 1 replies
  • 0 Likes

Resolved! PA200 - Configuring a static internet address

Hi there, This may seem like a stupid question, but we are switching ISP and they have given us a static IP because we use VPN etc. I'm configuring a PA200 and for the life of me cant figure out how to add the ISP gateway. Ive added the IP address and subnet to the interface socket (1/4) and DNS address (DNS PROXY) but i cant find where to add t...

can not install and not remove globalprotect

I work on a Vista machine and after using it succesfully for a long time, I had a problem with my GlobalProtect (it did not connect). I read somewhere it might help to uninstall it and then re-installing again, which I did. The uninstall was succesfull but something went wrong when I then tried to install it. Now I have a situation in which I ca...

Mister34 by L0 Member
  • 7457 Views
  • 3 replies
  • 0 Likes

Resolved! Configure NAT with multiple ports

Hello ocmmunity, Do you know if it is possible to do this in the firewall ?Name: NAT 1Source Zone: INTERNETDestination Zone: INTERNETSource Address: IP_PublicDestination Address: 1.1.1.1Service: icmp, tcp/5551, tcp/22, tcp/4443, udp/500, udp/4500Destination Translation:Device (10.140.2.1)+++++++++++++++++++++++++++++++++++++++++++++++++++++++++...

Apadilla by L3 Networker
  • 7861 Views
  • 3 replies
  • 0 Likes

Using AWS Bundle 2 as an Ironport replacement

I have a Bundle 2 in trail at the moment as a POC. At first glance, the interface is overwhelming, so navigating it is cumbersome at first. What I am trying to accomplish is a viable replacement for Ironport WSA. I have a Bluecoat POC in place and it can replace the Ironport, as well as TMG for Citrix, two of our criteria. My goal is to proof...

ACD-II by L1 Bithead
  • 2430 Views
  • 2 replies
  • 0 Likes

Weird Malware URL Reporting

Has anybody else noticed that their botnet report is triggering on weird URLs that couldn't actually exist. I've listed some examples but I can't figure out why some of the URLs being reported are so clearly 'wrong'. Visited malware URL 8M{zy!ces{~yeo{au?qfg.>Kcf~%7fwze%7fm%20}crzfeg!~znbe?mk%7fi%20}%7feca$lbkez|5#T82<:59<#%207;L-`bm2x...

BPry by Cyber Elite
  • 5151 Views
  • 9 replies
  • 0 Likes

Resolved! Block vs block ip

Hello all, what is difference between Block and Block ip ? Block for this current packet only ? Block ip for specific ip for certain time is it correct ? so Block IP is better

TeamViewer restrict unsupervised access

Hey everyone, i got a question from one of our customers, described below:Constellation:PC1 (At home, with internet-access) <--> PA-firewall <--> PC2 (at office, TeamViewer-controllable) Now, to the question. The costumer wants to restrict the access on PC2, so that PC1 can only connect when PC2 explicitely granted access (from a...

Weird routing problem from mgmt interface. Icmp-redirects? If so, how to turn it off?

I have a problem on a PA500. When it attempts to send traffic to one particular subnet via the management interface, the packets are sent to the wrong place. Instead of going to the default gateway, they go to an ASA. All other subnets route correctly. The PA500 has a very simple config. The management interface is connected directly to a switch...

Resolved! HA sessions synchronization initiated by or to the Active.

Hi Guys, Got a random question regarding the sessions synchronisation when running HA :0 If l understood correctly only the sessions that are not initiated by the Active device will be synchronised to the Passive device. Does it mean that all OSPF, BGP and l believe VPN tunnels will be re-established? So only traversing sessions are synchronise...

panorama server specifications

Hello all, can you please [provide me with panorma server specification to buy it this week .. what is implementaion method ? we must have esxi ? or windows server or what ? i`m new here

DHCP

We've used Palo alto as DHCP server for all our wireless infrastructure, we notice that after one hour the IP has to expire and be release, however it keep the expired session on the DHCP and we have to manually clear out this from cli. Once the pool is full no dhcp ip is released. Anyone does know the issue? Secondly can we automate the command...

Denis by L2 Linker
  • 4438 Views
  • 5 replies
  • 0 Likes

Block Facebook App

We are using a Palo Alto Firewall and have facebook blocked on the browser, but the mobile app still works on Android and iPhone. What is the catch all way to block the facebook app?

External Dynamic Lists requires "google-app-engine" ??

Greetings On PAN-OS 7.1.8 configuring EDL is giving some unexpected results - I have an application based security policie set for my PA management IP addresses to fetch the updates i.e. "paloalto-updates, widlfire, pan-db-cloud, ssl and web-browsing" with service set to application default. No profile actions set to block. After populating the...

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks