This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4154 Views
  • 0 replies
  • 0 Likes

Anyway to block Webex plugin?

After hearing the news that the Webex extension in Chrome has a serious vulnerability is it possible to block this at the Palo Alto? http://arstechnica.com/security/2017/01/ciscos-webex-chrome-plugin-opens-20-million-users-to-drive-by-attacks/?comments=1 Either through an App policy or even better a threat signature? Thanks

pmc by L2 Linker
  • 5665 Views
  • 4 replies
  • 1 Likes

Use wildcard in user/group based policy

Hi,We have a Splunk Server that sends to your id-agent (on a windows server) the information of guest users.Now on PA We can se user@acme.com in the logs, is possbile for us create a rule for all users from acme, without define each user? So a group policy without LDAP group.We want to set in the field "source user", something like *@acme.com.It...

Resolved! ssh problem on mac os x

Hey guys, I have such a weird problem. A user has to connect to a samba server. He does it on his mac with cyberduck, Port 999 and ssh. in the monitor, the application is "incomplete", the action is "allow", and session end reason is "aged-out". Currently, the concerning firewall policy to this public server is any app and any service. However, ...

MPI-AE by L4 Transporter
  • 8594 Views
  • 12 replies
  • 0 Likes

Netflow bandwidth usage and link-aggregation

We've added a netflow server profile to 4 sub-interfaces on ae1 that connects ISP. The netflow is then reported to Solarwinds where we have poll and collect netflow from these sub-interfaces. But we are also seeing notifications i Solarwinds that all the other sub-interfaces on ae1 (and an additional link-aggregation ae2) sends unmonitored netfl...

one globalprotect client two portals

I have two global protect portals one for staff and one for contractors. I regularly have to test both and the only way I have found to do it so far it to change the portal name on the client. Is there anyway to add both portals and toggle between the two like you can to on the cisco vpn client?

jdprovine by L4 Transporter
  • 3704 Views
  • 5 replies
  • 0 Likes

Virus/OSX.WGeneric.lcwwz

IP address (IP: 4.35.21.146) is pushing out a Google update (url:GoogleSoftwareUpdate-1.2.7.43.dmg) but Palo Alto show it as Virus (Virus/OSX.WGeneris.Icwwz)

shekeba by L0 Member
  • 2120 Views
  • 1 replies
  • 0 Likes

Firewall optimizer

Any one out there using firemon or algosec to optimize your firewall? I am interested in your opinions whether you like it or not and which one is better or if there are other options

jdprovine by L4 Transporter
  • 3594 Views
  • 6 replies
  • 0 Likes

Packet Routed to Different Zone counter incrementing

I"ve been seeing on untrust interface count of Packet Routed to Differenet zone increasing.I've been facing issue with browsing for few minutes. When i browse websites it shows "connecting" n browsing will be slow.After 2 minutes browsin will be fine. I'm not able to trace the issue.When i see count on interface of untrust " packet routed to di...

Does Global Protect check connection quality and switch portals if needed?

Is it possible to make Global Protect check someone's connection quality and if the quality is better to another portal, then switch to that one seamlessly? Say we have users connected to a portal in Los Angeles and the connection becomes less than acceptable, is it possible to make the GP client automatically connect to our NY portal if it has...

abrrymn by L0 Member
  • 2896 Views
  • 3 replies
  • 1 Likes

HA in Virtual Systems

Can high availability be controlled per virtual system?In other words, is it possible to have an active/passive HA pair with 2 virtual systems, where one virtual system has unit 1 active - unit 2 passive and the other virtual system unit 1 passive - unit 2 active ? Albert

Resolved! SSL Inbound Inspection not working with decrypt-error message

Hello, I'm trying to setup, for the first time, our SSL Inbound Inspection, but I've some difficulties to achieve the setup. The configuration seems really simple, and I followed this guide:https://www.paloaltonetworks.com/documentation/71/pan-os/pan-os/decryption/configure-ssl-inbound-inspection#34438 I'd imported the certificate and intermedia...

FTBZ by L1 Bithead
  • 11900 Views
  • 6 replies
  • 0 Likes

Embedded Minemeld UI Logs Issue

Currently using a Docker version of Minemeld, which is embedded in a web application using an iFrame.All works fine except for the Logs page, which times out.Looks like it maybe be a restriction enforced which is not allowing frames.Any tips on where I can start looking for where this restriction maybe enforced? Also, any updates on having an op...

calamari by L1 Bithead
  • 2982 Views
  • 1 replies
  • 0 Likes

Resolved! unable to open SMB share (TSA user mapping issue)

Hi Guys, Within a Poc with a PAN Firewall we ran into the following issue: A terminal server (with TSA) in network a ist connected to a PAN Firewall. Fileserver in network b is also connected to the PAN Firewall. Everything is configured properly and first testing are successfully done. (icmp, http). I were able to reach the Fileserver fro...

Zencon by L1 Bithead
  • 4581 Views
  • 4 replies
  • 0 Likes

Resolved! Miner's not working

Hi, Moving this discussion from another post to hopefully get some Miner node troubleshooting advice. https://live.paloaltonetworks.com/t5/General-Topics/MineMeld-Miner-s-no-worky/m-p/137090/highlight/false#M47741 My Miner's aren't pulling in additional feeds after installing from these instructions: https://live.paloaltonetworks.com/t5/MineMe...

  • 24341 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks