General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1700 Views
  • 0 replies
  • 0 Likes

URL Continue and Affect on Applications

Does anyone have any information on the functionality of an application say facebook or netflix on a phone (Android/IOS) where the traffic also goes through a URL policy that has those websites in a "Continue" function?

 

Currently the Netflix applicat

...

PAN-200 CLI - limited commands

hi

i`m trying to troubleshoot some vpn tunneling connection drops
so i logged to the CLI execute some commands to troubleshoot the VPNs

 

test vpn ike-sa gateway
show vpn ike-sa gateway
test vpn ipsec-sa tunnel

 

none of this command exist even in configure

...

pan200.jpg
Gav-Yam by L0 Member
  • 2664 Views
  • 3 replies
  • 0 Likes

Captive portal + decryption + squid: https problem.

Hi,

I try to configure path for users to access the Internet. I use Palo Alto and squid. But not everything works as I expected.

The path:

user---Palo Alto ---squid ---Internet.

Squid is behind Palo Alto because of citrix users. I want to control citrix

...

okress by L1 Bithead
  • 2644 Views
  • 3 replies
  • 0 Likes

Resolved! Session Info on one Interface

I'm trying to find the session info on our outside interface; however I can't seem to find a command simular to show session info for looking at one interface. 

BPry by Cyber Elite
  • 2007 Views
  • 1 replies
  • 0 Likes

Resolved! Where is PAN-OS 7.0.0?

I have been running PAN firewalls for years and have been the person responsible for upgrading PAN-OS on them since PAN-OS 3.1.9.  Each time, going from one release to a version in a different major release involved downloading the base version of th

...

VPN Tunnel down - Troubleshoot

Hi Admins,

I need some help to troubleshoot our problem with the VPN Tunnels. We installed a Cisco to PaloAlto VPN tunnel. The PA in passive mode. But constantly the tunnels go down.

Here are some log outputs:

less mp-log ikemgr.log

2014-04-23 09:21:54

...

Hithead by L4 Transporter
  • 15880 Views
  • 24 replies
  • 0 Likes

Resolved! Exclude address on Zone Protection

So we use a Barracuda and when it sends out for an update to it's spam filtering it gets identified on the zone protection as a Host Sweep; is their a way that I can exclude it's IP address from getting identified? 

BPry by Cyber Elite
  • 3639 Views
  • 2 replies
  • 0 Likes

Resolved! PAN‐OS 7.1.4‐h2 or PAN‐OS 7.1.4

Hello everybody

 

After the security advisory PAN-SA-2016-0020).... I like to upgrade my actual version 7.1.3  to 7.1.4. But I like to know what are the meaning of -H2 and what is the differences between both versions.

 

Best Regards

 

Gonzalo

SOC_CSG by L4 Transporter
  • 2577 Views
  • 2 replies
  • 0 Likes

applipedia categories

Sorry if this doesn't belong in this location.

 

I see in the applipedia that the applictions have a description.  Does such a description or definition excist for the categories and more specifically the subcategories?  For example, what is the differ

...

mp34549w by L1 Bithead
  • 5100 Views
  • 4 replies
  • 0 Likes

Query regarding Dual ISP through 2 VPNs

Hello,

 

Trying to verify fail over using redundant tunnel at two different sites but it does not work properly.
Methods tried to test:
 
1:disabled the IPSec tunnel on one end, remote end which was monitoring the link failed over and chaned the routing t
...

Farzana by L4 Transporter
  • 1576 Views
  • 1 replies
  • 0 Likes

Any stable release of 7.1 yet?

We recently purchased AutoFocus and I know for the firewalls themselves, it needs 7.1.x for a lot of the integration.  Are there any recommened versions of 7.1 yet?  I know 7.1.4-h2 was recently released.    We mainly have PA-500s with a few 3020s an

...

Resolved! urlfiltering.paloaltonetworks.com - certficate revoked??

Is anyone else having a problem browsing to urlfiltering.paloaltonetworks.com?  We can't get to it from here.  We are being told that the certficate has been revoked.  (SEC_ERROR_REVOKED_CERTIFICATE)

 

I tried two different paths to the Internet from o

...

RSKadish by L2 Linker
  • 5346 Views
  • 5 replies
  • 0 Likes

Threat signatures requiring ssl decryption

Is there a way to determine if a threat signature requires ssl decrypt in order to provide protection. I undertsnad this could have at least three posibilities being fully required, partially required, and not required. Using signature 14616 in conte

...

Lepton by L0 Member
  • 3552 Views
  • 4 replies
  • 1 Likes
  • 24217 Posts
  • 117 Subscriptions
Top Liked Authors
Labels