This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4244 Views
  • 0 replies
  • 0 Likes

Data pattern to check 2 conditions on Credit Cards

Hi, Let's say I want to create a Data Pattern to check 2 conditions on DLP: 1) Check Luhn number. This can easily be done by setting a weight in the "CC" field on a DLP Data Pattern.2) Once the Luhn number checked, check if the first 7 numbers of the credit card matches some BIN codes of an specific Bank. is that possible? I mean, the "2 condit...

MarcelST by L3 Networker
  • 3115 Views
  • 2 replies
  • 0 Likes

Resolved! Bandwidth limit AD group

We have a need to limit download and upload to 50 Mb/50 Mb for a specific AD group in our company. I have followed the steps in this article https://www.paloaltonetworks.com/documentation/70/pan-os/pan-os/quality-of-service/use-case-qos-for-a-single-user#36469 When I apply the qos profile to interfaces it then applies to 50 Mb limit to everyone ...

Resolved! More than one Radius Connection Profile for GlobalProtect on PAN-OS 7.1.0 and Windows 2012 R2 NPS

We are hosting 4 clients with each having their own server. I have setup 4 separate GlobalProtect Gateways and Portals for each client with access only to their server. I have configured Radius and tested it. I want to be able have one different Active Directory group for each client and have the users that are in the respective groups only ha...

Resolved! ACC report on Sunday

Hi Guys, ACC issue. Don't know what could be the reason for the URL block report to show some activities when nobody was using a network on Sunday. NTP? And also question to why all users got 2 digits in the end of their username, Is it normal? Thx,Myky

Latimer issue.PNG

Any known issues with PAN OS 5.0 for user-ID and IP mapping not working?

I have a lab setup with two palo alto firewalls (PA-200). I am running it with the code it came with the device (PAN OS 5.0.6).I configured User-ID as per the guidelines on this link (https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Configure-Agentless-User-ID/ta-p/62122). However, i was unable to get it work. So i followed thi...

BlackNurse Testing Causes issues on Egress Firewall

FYI It doesn't appear to require an attack to be an IP address bound to the PA. It also appears that testing a remote firewall while egressing through a PA firewall causes your local firewall to experience DOS effects. It is not just inbound to an IP address of a PA's interface or NAT to that interface. I did an hping3 of type 3 to a remote PA-3...

bspilde by L4 Transporter
  • 3530 Views
  • 3 replies
  • 0 Likes

Resolved! TLS secured SMTP inbound inspection?

Hi,I've recently had a client who's PAN appliance failed to pick up a Zero-Day piece of malware that found it's way into their network via email.We have wildfire configured correctly and it transpires they are using opportunistic TLS on their mail relay, the spammer had send the infected attachement using TLS so the Palo Alto had no hope of actu...

Dpeters1 by L2 Linker
  • 18392 Views
  • 11 replies
  • 0 Likes

Resolved! show routing resource

When using show routing resource command. Why is there a overlimit value when we are under the 2500 limit count LOBAL ROUTING RESOURCE USAGE:==========All Routes (total): 1088 (limit 2500)All IPv4 Routes (total): 1088 (limit 2500) (overlimit counts 393372562)All IPv6 Routes (total):

BlackNurse Denial of Service Attack

http://www.netresec.com/?page=Blog&month=2016-11&post=BlackNurse-Denial-of-Service-AttackHas anyone here tested the effect of this on any PAN-devices ?http://blacknurse.dk says:LIST OF REPORTED AFFECTED PRODUCTS :Cisco ASA 5515, 5525 (default settings)Cisco ASA 5550 (Legacy) and 5515-X (latest generation)SonicWallSome unverified Palo Alt...

Dulle by L2 Linker
  • 5171 Views
  • 4 replies
  • 0 Likes

Resolved! Different subnets on the same interface

Hi, my ISP has assigned me with a /30 for the p2p connection and it is routing a /24 public subnet towards that /30. Meaning the WAN interface in the Palo will have to respond to many different ips on two different subnets. I haven't found any Kb that describe this scenario. Also please consider we are migrating from another devicewhich is perfe...

myrdin by L2 Linker
  • 14035 Views
  • 10 replies
  • 0 Likes

Block page for security policy matches

Is there a way to return a block page to users when their connection is blocked not by the URL-filter but by a security policy? We have a security policy that blocks all outbound traffic to a list of foreign countries. The problem is when users attempt to browse websites in these countries the traffic is blocked but the user doesn't receive any...

fmurray by L1 Bithead
  • 2151 Views
  • 1 replies
  • 0 Likes
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks