General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

New LIVE AMA event, LIVEcommunity Team Roundtable!

If you are curious to know more about how the LIVEcommunity works, have a chance to chat with community team members, or ask a non-technical question? Now’s your chance! The floor is open for all you burning questions now through June 24. The LIVEcom...

jdelio by Community Team Member
  • 1 replies

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 41 replies

Resolved! Timed Report

Hi,How can we generate a custom report with a start and end time in it?Pleas help.Thanks,Rex

Resolved! PAN-OS 5

so the long-awaited v5 is now available. What are the implications of upgrading to it?is rollback to v4 straightforward (we're on 4.1.8 now)?does it force you to use the new PAN web-filtering database, or can you continue to use Brightcloud?Do we nee...

Resolved! Certificate import issues

I'm having terrible problems importing a trusted certificate into my PA.I've followed the following guide - can create the key okI can create the CSR okI then submit the CSR to Thawte which then gets a...

djrodb by L3 Networker
  • 5 replies

Policies - Security - Rule shadowed by 2nd rule

Much like an access list on a cisco router top to bottom. I recently created 2 rules for our 3rd party ISP to connect internet sticks via our firewall.1st rule - Allow all traffic via TELUS internet sticks from Trust Vpn, Source (telus), Destination ...

Time based No-decrypt rule?

Hi All,On my site we have a Decrypt-all rule in place (apart from some no-decrypt rules for specific business related sites).The problem I have is that some users are having issues accessing sites like Easyjet and Ryanair's booking pages, this I am f...

JRussell by L3 Networker
  • 6 replies

no fpga memory for dfa

Hi all,I get some warning message as below, is there anybody meeting such messages?What does it mean?Nov 08 15:08:57 Warning: pan_fpga_alloc_dfa_partition(pan_fpga_handler.c:909): no fpga memory for dfa, subtype 2 size 180Nov 08 15:08:57 Warning: pan...

Resolved! Exporting NAT configuration

So I'm wanting to get the XML out of the firewall for specific DMZ's so that I can assemble IPAM updates from the XML.Right now, if I ssh into Panorama, go into config mode, and issue this command:show device-group DMZ pre-rulebase nat rulesThen I ge...

jsilvia by Not applicable
  • 2 replies

Resolved! Unable to access PA-500 via GUI/SSH on v4.1.7

Greetings,I have a pair of PA-500s running HA version 4.1.7. The web interface (GUI) and SSH access to active device was lost for some unknown reason. The only configuration change done was to set action for a security rule to deny which otherwise wa...

Issues again with Brightcloud Services

On the 12th of November 2012, I am having issues again with Brightcloud not resolving websites from the cloud dB. This has happened in the month of October 2012 as well. The Brightcloud services cannot receive data as well. All connections look absou...

issue with uturn nat, please help!

Hi AllI have a u turn nat rule and security policy in place that has been working fine to allow internal access to the external url of our exchange owa and now it has stopped working - nothing has changed on the firewalls or on the exchange system th...

Filter out certain traffic (DNS)

I am looking for a way to omit DNS traffic from showing up in the Top Applications widget. I thought Application Override might have been the way but it proved unsuccessful. Anyone try this before? Or have something you can point me to?Thanks in adva...

phalen00 by Not applicable
  • 1 replies

VMWare series firewall

Just noticed a section of he help file for PANOS 5 which mentions a virtual firewall series from Palo Alto. Sure am interested in some more info....Bob

BobW by L4 Transporter
  • 1 replies

Resolved! Guidance in setting up ssl decryption - cert management

I am trying to get this setup for a customer and this is my first time setting up ssl decryption. The customer has SBS2011 so they do have AD CA. I created a domain cert for the PA and exported the root cert. I imported both of these into the PAN fir...

SDorsey by L4 Transporter
  • 7 replies

Resolved! Decrypting Dropbox

Hi,I want to decrypt Dropbox but it doesn't work. I have a catch-all decrypt policy that decrypts any-any SSL. It works fine except for Dropbox. My understanding is that Dropbox is on the PanOS internal exception list so decryption is supposed to be ...