General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 314 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 987 Views
  • 0 replies
  • 0 Likes

NAT after Proxy

Hi

 

I have to set up a PA-200 as a NAT.  That it self would not be the problem but between the PA-200 and the modem is a Proxy. I have no information about that proxy. The only information i have about the network is the IP settings given by DHCP. Is

...

Tiesto by L0 Member
  • 1982 Views
  • 1 replies
  • 0 Likes

Resolved! How to block www.youtube.com completely

 

Dear All,

 

Appreciate if you can advise how to block www.youtube.com completely. I have try using URL-Filtering and application layer level but still failed. I am using PA-3020 OS version 7.0.3

 

 

Imran

Resolved! arp not found

Yesterday I attempted to move our Internet connection from a copper interface on ethernet1/1 to fiber optic on ethernet 1/13 on a Palo Alto 3020. 

 

I ensured both interfaces were members of the  same security zone and modified the Default route of def

...

Resolved! Reduced bandwidth after 7.1.2 upgrade

After the upgrade to 7.1.2, I've notice that my bandwidth has reduced by 80% over a Metro E Gig connect. Any one else seen this problem or has a resolution for it?

 

ITICID by L1 Bithead
  • 4401 Views
  • 5 replies
  • 0 Likes

Resolved! RADIUS authentication: MS-CHAP v2?

Currently, my PA-3050 devices (PAN-OS 6.1.12) utilize RADIUS authentication.  I know that this uses the completely unencrypted PAP protocol.

 

I have asked PAN about MS-CHAP v2 support in the past and was told that the device must be placed into FIPS m

...

Multi AD Account login - Captive Portal

Hi,

 

Can we limit the login per account using Active Directory as an authentication profile at Palo Alto Captive Portal? I believe by default, you can login using a single AD account with multiple devices.

Error with PDF Reports

when i do a test email for the email profile it successfully delivers the email. however in my system logs I get this error. 

 

"failed to email pdf reports to #####@#####.com for email profile #####"

 

any ideas?

alkajazz by L0 Member
  • 1711 Views
  • 1 replies
  • 0 Likes

Resolved! User based ssl decryption

Hi,

 

I try to test ssl forward proxy decryption. It works fine if I use IP address as a source but if I use Users(domain) as a source it doesn't work. I can't use IP's for testing because our IP's floating. What I need to check in configuration?

 

Toni

ToniE by L2 Linker
  • 6838 Views
  • 12 replies
  • 0 Likes

Resolved! GlobalProtect 3.0.2 setting VPN DNS on WiFi adapter

Hi,

 

I'm having a single client, running Windows 10 Pro, that we're having issues with.

When the user connects to their network at home, they are unable to connect to VPN, and it seems like the issues is caused by GlobalProtect setting the WiFi adapter

...

as-mg by L3 Networker
  • 9408 Views
  • 8 replies
  • 0 Likes

Resolved! QOS & Aggregate Interfaces

Hello,

In our QOS Aggregate Eth. Interfaces we cannot assign an egress value greater than 1000.

(LACP Bundle is 2 x 1Gbit on eth4 + eth5)

  1. Why ?
  2. Do we throttle down throughput to 1 GBit/sec. in the Aggregate ?
  3. Shall we leave egress value in profile and Int
...

rekuhn by L2 Linker
  • 2614 Views
  • 1 replies
  • 0 Likes

Slow download over decrypted TLS sessions?

I've noticed that downloads that occur over decrypted TLS sessions are incredibly slow since upgrading my PA-3050s to PAN-OS 6.1.x (now on version 6.1.12).  Sometimes they don't even complete at all, either failing or just sitting forever.  For examp

...

Resolved! RSH session issue passing through the Palo Alto

Hi Guys,

 

Interesting one. 

 

1x2.1x4.1x4.1x5 makes an initial connection using RSH the 192.168.0.20 then creates a separate RSH session back to the originating server but this always fails as the Palo seems to ignore the rule and NAT that is in place f

...

Brightcloud connection error

I have a PA-500 that is receiving the error of:

opaque: Failed to connect to Brightcloud update server service.brightcloud.com, initiated by 192.168.75.30

eventid: connection-failure


There seems to be no connectivity issues to URLs for the users. Just

...

jprice2 by Not applicable
  • 6233 Views
  • 12 replies
  • 0 Likes
  • 24041 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Authors
Labels