This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4254 Views
  • 0 replies
  • 0 Likes

Palo Alto deny All policy reason non-syn-tcp

Hi, We realised our PA in version 7.0.6 is having any issue with the traffic. We see many traffic being dropped by DENY all rule (the last rule in the rule set). Looking in application we see "non-syn-tcp" in all the connections. These denies connections always ocurrs each 30 minutes. For example: 4.01pm, 4.31pm, 5.01pm, 5.31pm. we have disab...

logs.JPG

Resolved! Multiple VLANs through Network Interface

Hopefully this is a very simple question, but I wanted to make sure I was actually researching the correct thing. I am planning on connecting a hypervisor (Hyper-V 2012), directly to one of my Network Interfaces on my PA. The hypervisor has multiple VLANs, and I need them all to go through the PA. I incorrectly thought if I just set the VLAN/...

Exceeding IPs in one list

Hi, The miner Ransomware IP has > 10000 so I'am wondering how I could solve this issue. Should have some output feed that you can define to take a certain amount of IP's so you can map that on your hardware. And then create a second output that is skippen a defined amount of IPs an creating output feed with next range of IPs Something like:...

Forwarding streaming traffic to a second Palo

Hi all. We have two Palo 3020s, each connected to a different ISP. At the moment the 1st firewall handles all our LAN internet based traffic, whereas the second firewall is mainly used for our VPN connections. We're looking at forwarding streaming traffic from the 1st firewall to the second firewall, to reduce the bandwidth usage on our primary ...

Router or Firewall for S2S VPN

We are standing up a new data center and there is some disagreement about whether the Firewall or the Router should host the IPSec VPN. The Security Team suggests the Firewall for a few reasons (Logging being the biggest)while the Networking Team would like to use the Cisco Router (Speed and ease being their reasoning.) Has anyone run into a s...

jsanford by L0 Member
  • 4246 Views
  • 3 replies
  • 0 Likes

Captive Portal with Radius and groups of users

HelloI'd like to consult with You one problem. My users authenticate with Radius on Captive Portal web page.Problem that comes to me is how to assign access according to groups of users. My FreeRadius has only one group of users, I can add more but how to use it in PAN?I read How to Configure RADIUS Authentication and there is "Retrieve user gro...

_slv_ by L4 Transporter
  • 8971 Views
  • 6 replies
  • 1 Likes

GlobalProtect with multiple sites

Hello all, At my location we have 3 internet connections each at a different building. We have private and leased fiber inbetween so our entire organization is one internal network. At the internet connection points I have been replacing the Cisco ASA's we had with PA-3020's. I just finished the second one and will most likely get the 3rd one w...

why do we update wf-content-version on WF-500 appliance

Dear Experts, I was wondering that why do we update wf-content-version on WF-500 appliance, what is the reason for it. As I have configured WF-500 to generate the signature locally, what additional value will be added by downloading why do we update wf-content-version on WF-500 appliance. Best Regards, Fozail

fozail by L3 Networker
  • 4807 Views
  • 6 replies
  • 0 Likes

Resolved! Output does not work

I have created a miner with prototype ransomwaretracker.RW_IPBL., and processor and outputs. Miner shows 11497 indicators but processor and outpus shows 0 indicators. It cloned the model with default. I have attached a pdf with setup. I would appreciate help. Thank you.

Screenshot_1.png
Screenshot_2.png
Screenshot_3.png
Screenshot_4.png

Palo Alto firewall as Default Gateway at Branch location

Hi all, I am working on redesigning my branch location network and there is a requirement where we will need to move the Default Gateway to the Palo Alto firewall at the branch which the Palo Alto will be handle inter-vlan routing at the branch. Currently my Cisco router is handling this function today. I wonder if this can be done with Palo Alt...

datran by L0 Member
  • 2922 Views
  • 2 replies
  • 0 Likes

HA fail-over if Root partition is Full

Hi Team Should HA fail-over occur if the root partition is full on Active firewall, causing the outage ? Case 00590455PA-5050-----------Root partition was 100% full and firewall was not allowing new Global Protect connections. PA Engineer helped him in deleting files from Roor partition that fixed the issue. Now the firewall was allowing new GP ...

tkhan by L2 Linker
  • 3453 Views
  • 2 replies
  • 0 Likes

Resolved! PAN-OS 7.1 change to query interpretation

I have a report which has been working fine for ages then it has just stopped, possibly when we upgraded from 6.1.14 to 7.1.6The report has just stopped returning any data, so I looked into the query string and found that one element of the query seems to be causing the problem The original query was:((filename contains DVD) or (filename contain...

djr by L4 Transporter
  • 5201 Views
  • 8 replies
  • 0 Likes

Is it safe to enable IP Spoof Protection on Untrust Zone

Dear Experts, I was wondering that shall I enable IP Spoof Protection on Untrust Zone, as it identify the source IP address as per routing table. Any request coming from Internet will have some public IP address (Normally) and PA will not have those network learnt as connected and it could be that PA drop that traffic by considering it an spoofe...

fozail by L3 Networker
  • 5946 Views
  • 2 replies
  • 0 Likes

Google Play Store Problem

Hey guys,I have a strange problem:I have a security rule that allows google-base and google-play.However, in the logs the google-base app is denied with the imlicit-deny rule at the end.The firewall doesn't find my allow rule?What is wrong?

MPI-AE by L4 Transporter
  • 2964 Views
  • 3 replies
  • 0 Likes
  • 24362 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks