This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4142 Views
  • 0 replies
  • 0 Likes

Blocking EXE files but allowing file names

Hi guys, I'm trying to block .exe files, but allow file names for some users. For example, I would like to allow the GoToMeetingLauncher.exe for GoToMeeting webinars, but the links look like the below which means it can't be done. https://download.citrixonline.com/launcher2/helper?token=e0-qZ0xbknQkdODLP_tA0HpRDCszfG5OkCLe4-4_8LabqVRaLatg9Q4O51...

PA-200 Slow browsing with url filtering

Hi, a couple of questions on the matter: - to get URL reports i need URL Filter on the rule to be on . Is this correct? Or can i have url reports without that enabled?- with a PA200 with 1 computer connected, with URL fitler when i enter the website, it takes 4-5 seconds to show the page. without url filtering on the rule the page displays immed...

myrdin by L2 Linker
  • 4479 Views
  • 3 replies
  • 0 Likes

True test to verify dns sinkhole configuration is correct

Hi Team, We recently had a support case where a user followed all the guides on the kb and found that the sinkhole feature appeared to be not working. After a few quick tests we determined they had configured it correctly. The issue was the domains noted on some of the articles on the kb which used to be classed as malicious domains are no long...

avnotes.PNG
avnotesdomains.PNG
nslook.PNG

Resolved! Printing Application

I was wondering about a printing application on Palo Alto. Is there an app I can allow that allows printer ports automatically, or should I do it by creating a service?

blandis by Not applicable
  • 10581 Views
  • 3 replies
  • 0 Likes

Cannot loggin with my own personal account

Are there more people having trouble login in to websites of Palo Alto. I pass my PCNSE 7 today, but login in the palo Alto Live community website, no way.The company I work is parner, but we not owning PA firewall our self, juist managing the PA's of our customors.I send mail to Palo Alto, but they telling me I have to give a serial number of m...

Url Filtering Doesnt Works (not-resolved)

We faced with problem in URL filtering. While trying to open any site PA returns blocked mesage and url category : unknown.This is the output from CLI : test url nasa.govnasa.gov not-resolved (Base db) expires in 0 secondsnasa.gov government (Cloud db) The same output for any site.Resolving works.ping host nasa.govPING nasa.gov (52.0.14.116) 56(...

Failed to determine issuer

Hi guys, I have a certificate that I need renewing as it's expired, but I am seeing "failed to determine issuer" when attempting to do this. The certificate is a self-signed certificate, but it wasn't generated on the Palo, but rather an external CA. Do I need to remove this certifiate and renew it on the server I generated it from, or should I ...

Redistribute Route to GlobalProtect with BGP

Background:We have a 172.20.0.0/16 internal network that is connected to our Amazon AWS VPC. A route is successfully advertized to our AWS peer using BGP and from the local network I can reach our server instances in the VPC. AWS resources are assigned an address in the 172.21.0.0/16 network. After I created a remote-access VPN using Global Prot...

Resolved! Block streaming media for sports only

Hello, We have received a request to block streaming media only for the sports category. Is that possible and how would we go about doing that? We have a PA-3020 running software version 7.06 thank you mike

JustMike by L1 Bithead
  • 6189 Views
  • 6 replies
  • 0 Likes

Exporting information under "managed device" Panorama

The data presented in " managed devce tab " under Panorama is very useful for reporting ike" all updtes happened" ( I want to know if all dynmaic updated hapened for all firewalls) "active/passive"( I want to know if any failover happened) System reboot ( any reboot happened)Is there any way to export these data or report rather than going to ma...

Can a IPSec tunnel entry be used by muliple connections

Hi, We have a number of (25+ ) remote 4G modems, that we wish to have VPN'd into our network. The modems can do L2TP/IPSec, IPSec, PPTP. Each modem has a WAN interface which is dynamic and a LAN interface with either one or two devices connected to it. We want to be able to connect to the modem LAN interface and the devices behind it from our ce...

Resolved! Panorama or Firewall PAN-OS? What to upgrade first?

Hi Guys, We currently have 12 Palo Alto firewall appliances and 1 Panorama management server. Panorama version is currently 5.1.9 and the firewalls are all on version 5.0.14.We are looking at upgrading the entire estate to version 7.0.8 and it’s a matter of how best to achieve this. The question is what to upgrade first to the 7.0.8? Panorama o...

Help with inter-subnet routing

Looking for input on a subnet routing, issue I am having. So I have let’s say for argument I have two zones, Trust and Untrust. Interfaces Int 1/1 - Untrust Internet 192.168.0.1 Int 1/2 - Trust 10.8.1.20 Int 1/3 - Trust 10.26.96.1 I have a virtual router (default) Default Destination 0.0.0.0/0 Int 1/1 Net Hop Value 69.168.XX.XX This ...

ckluck by L0 Member
  • 5206 Views
  • 5 replies
  • 0 Likes

Help with network design

So my network consists of a PA200, a Juniper SRX, 2 servers, a VOIP phone, and a WAP. I recently configured the PA-200 with 3 subinterfaces for the 172.16.2.1/24, 172.16.3.1/24, and 172.16.4.1/24 networks. The Juniper port was configured with as a trunk and allowed all these vlans across. The interfaces on the SRX were configured for the approp...

Zolson1 by L0 Member
  • 2654 Views
  • 2 replies
  • 0 Likes
  • 24340 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks