General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 56 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 785 Views
  • 0 replies
  • 0 Likes

TRAPS and Reverse Proxy

Hello Folks,

 

I have recently installed a ESM core and console server. I have added a URL re-write rule to allow my traffic to be proxied through this server. The issus is that the web based traffic is rewriting no problem. Its the communication on po

...

Pokemon-go

The following custom application can be created on the Palo Alto Firewall to identify Pokemon-go traffic

 

<application version="7.1.0"> <entry name="pokemon-go"> <default> <port> <member>tcp/443</member> </port> </default...

postscript-pdl application classification - buggy

We are setting up a new printing zone on the PA and have created a rule that allow the following applications , postscript-pdl, hp-jetdirect, lpd, snmp. It allows one page to print to the printer and then it stops. After much testing we added a secon

...

jdprovine by L4 Transporter
  • 2666 Views
  • 4 replies
  • 0 Likes

Source users no longer showing up in Monitor and ACC

A few weeks ago I noticed that in our firewall suddenly all the Source User fields are showing blank. This is very strange since it happened without any changes being made to the firewall or the Domain Controller. We populate user IDs using LDAP. All

...

TDag11 by L0 Member
  • 3709 Views
  • 3 replies
  • 0 Likes

vwire using a single physical interface possible?

Right now we use a standard vwire with 2 physical interfaces.

 

We're about to make some hardware changes that means that the vwire input and output will be from/to the same physical switch.

 

If I have to use 2 interfaces then on that switch I'll just b

...

GP user access using internal DNS

Hi all,

when GP user need to access internal resource, i want them to use vpn assigned internal dns server, but currently user
still go to ask local dns on their PC. and if user access via ip, it is OK. How to break it out ?

Yue.Ma by L1 Bithead
  • 1935 Views
  • 2 replies
  • 0 Likes

HA issues

I have 5060 pair (pan1 and pan2) with 7.1.2 in HA. Whenever pan2 interfaces are up, not shutdown, sooner or later we experience issues. It doesn’t matter if pan2 is active or passive. Could it be h/w ? Config is in sync

niuk by L3 Networker
  • 2883 Views
  • 5 replies
  • 0 Likes

Resolved! GlobalProtect timeout only for one user

Hi,

 

We have a customer pc using GProtect to our office, we use this VPN to access using RDP to his computer. The problem is that GProtect timeout is 24hours, so we need customer help in order to log again in GProtect VPN. If there any way to delete t

...

Resolved! Can the PAN device block HTTP Dos Attacks?

Hello Guys,

I'm going to do some service availability test in the near future. We can't get any information of the attack pattern. The only information we know is that the tester will conduct these attack.

  • HTTP CC(cache-control) attack
  • Slowloris attack
  • H
...

JTR by Not applicable
  • 14689 Views
  • 14 replies
  • 1 Likes

Resolved! user for web-gui

Hello,

 

at first, thank you for that great tool, especially for the gui. I will change the password for admin. How can I do this? With htpasswd? And, is it possible to add users with different privilegs?

 

Thank you for your efforts.

Help on CSV Output Feed

I'm looking to output feeds to a format that I can ingest in some log analysis tools, and need to output fields that I have defined in miners. Is there any information on how to access that data and output it?

kx1499 by L0 Member
  • 3517 Views
  • 3 replies
  • 0 Likes

SSL certificate cache

Hi,

there are various settings in the decryption profile and also under Device -> Sessions -> Decryption Certificate Revocation Settings to controll how the firewall should deal with expired or self-signed certificates etc. I am currently testing thes

...

  • 23992 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Authors
Labels