General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics


Join Us for a Tech Deep Dive Miniseries!


Stop Zero-Day Threats in Zero Time with Nebula PAN-OS 10.2.


Join us live for an in-depth look at the latest advancements in cybersecurity, best practices, tips and tricks, demos and
more to protect your business and defend against threats in real


jforsythe by Community Team Member
  • 3 replies

Skype blocking

I have found in testing that with blocking, the application 'skype' and 'skype-probe' if the user is not logged in the policy will block the user from signing into skype, but if the user is already signed into skype and plugs in behind the palo polic


markk96 by L3 Networker
  • 15 replies

Resolved! A/P HA with more than 1 passive unit


We have a customer looking to extend their DR capability to a 2nd physical site (Site B).

Currently they have 2 PAN 3050 firewalls in an A/P cluster at Site A. As the new site will be connected via fibre we will split the cluster across both sites.


Resolved! Block Threat and URL Filtering Stats

I was trying to find how many threats the PA is blocking and how many URLs it is filtering over a set period of time, so show management how much work these devices are doing.

Is there any way to pull this information off the PA?

I have a PA-5050 runni


Reports that make sense to HR

Do any of you have a custom report that you are willing to share for HR requests? The current report I came up with is okay, but when I sort by Date, it's alphabetical, not chronological. Fri Oct 3 shows before Fri Sept 12. Is there a way to get the


Resolved! IP address used for Common Name in SSL Forward Proxy Cert

I'm getting ready to generate a CSR for an SSL Forward Proxy Cert and I wanted to know which IP address should I use for the Common Name.  I would like to inspect SSL traffic that is sourced from both my Trusted zone as well as my DMZ zone.

1) Should


Resolved! inbound NAT server load balancing


I have 2 exchange server in a DMZ, and I would like apply an inbound NAT with a load balancing like a simple round robin.

we need to used a tier load balancer to do that.

My question is some of you are interresting in a feature request, to implem


Gregoux by L4 Transporter
  • 2 replies

Panorama M-100 HA - Adding log collectors in mixed mode


I'm having a problem with adding the log collectors in a Panorama M-100 HA setup.

I have two M-100 appliances, both in mixed mode. HA is configured and is working as expected.

The problem is that I cannot get M-100 #1 to connect to the log collect


torm by L4 Transporter
  • 5 replies

Application Dependency Warnings

We have begun the process of globally allowing some applications for the entire enterprise.  At this point, these are (fairly) innocuous applications which are largely dependent on web-browsing / ssl.  Two questions:

1.  When verifying if a dependent


PAN-200 and Active Directory - Part II

  • PAN-200 Software version: 6.0.1
  • GlobalProtect Agent: 2.0.4
  • New domain, built on Windows Server 2012 R2.

I'm missing _something_.   Setup as below and I cannot login with the domain name account to the VPN.  It's got to be one .. little .... thing.



bdunbar by L3 Networker
  • 9 replies

Resolved! Maximum number of FW admin sessions

Hi Community

I was teaching a class and was asked a simple question:

Is there a max number of FW administrators that can be concurrently logged into the FW at the same time?

I have a large customer (a Managed Service Provider) with a large number of FWs


scantwell by L4 Transporter
  • 6 replies

Paloalto firewall placement


i have customer who bought 2 paloalto firewall, with threat prevention and url filtering licences and i want some advice for the placement of  paloalto in the architecture to ensure the maximum of security and deploy all necessary fonctionnality


atelcom by L3 Networker
  • 13 replies

IPSEC Tunnel Bandwidth Monitoring

Is there a built in function in PANOS to monitor bandwidth across IPSEC tunnels?

I can pull snapshots between IP's using ACC, but does not provide flow history similar to what Network Monitor does. Even setting up QOS only gives me the current snapsh


Top Liked Authors