General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 546 Views
  • 0 replies
  • 2 Likes

Resolved! Block known bad TLDs?

My CISO want's to block known bad TLDs (such as .zip or .review) in our Palo. I know how to block specific url(s), but is there any way to block an entire TLD?

 

I'm running into issues blocking *.zip since it will also block legitimate URL traffic tha

...

New dates not available on reports-

When I go to monitor reports and click a report- I can't select any date after July - I created a custom report and can report on information that way but the included reports don't seem to be working.  Any suggestions?

Resolved! Default Behavior of QoS

Hello All,
Quick question on the default behavior of QoS on the firewalls.  Do interfaces on the firewall assume the QoS profile of "default" if I don't specify a QoS profile for the interface?  The heart of my question is if I change the guarenteed a

...

dan731028 by L3 Networker
  • 4091 Views
  • 4 replies
  • 0 Likes

6.1+ update stops tagged interfaces from working

I tried updating a PA3050 HA active/passive setup from 6.0.10 to 6.1 to eventually go to 7.
The update works for both devices, everything seems to be working like it should, except for the tagged subinterfaces of the aggregated interfaces. They simply

...

Resolved! IP address not displaying correctly

I created a user account that so that the helpdesk can monitor the traffic and threate logs on the palo alto but not make any changes. But when I open up the traffic and threat detail instead of showing the exact IP address for the source and destina

...

024.PNG
jdprovine by L4 Transporter
  • 5199 Views
  • 3 replies
  • 0 Likes

Resolved! Random denial

What would cause traffic that is allowed through one rule to be denied by a rule below it. Shouldn't it just go through the rule allowing it and not even go any further.

Odder even still is that traffic is not always denied sometimes it does pass thro

...

jdprovine by L4 Transporter
  • 5614 Views
  • 16 replies
  • 0 Likes

Resolved! Android VPN - Autoconnect

Hi,

does globalprotect android app support autoconnect without the need to have a globalprotect mobile security manager ?

 

Thanks

ArminH by L0 Member
  • 2907 Views
  • 1 replies
  • 0 Likes

How to work about multiple User-ID Agent in an appliance ?

Hi,

 

I have 3 domains in different locations (US, CN, TW) each one have its own User-ID agent.

We deployed PA-3020 in each location and each one had set those 3 User-ID agents in the User-ID Agent configuration.

 

If a user account belong to US and it lo

...

neilwu by L2 Linker
  • 5340 Views
  • 6 replies
  • 0 Likes

Resolved! Palo Alto scanning with Nessus

Hello,

Does anyone else out there scan their firewalls with Nessus? Just curious if you have some other definitions defined other than what tenable has listed on their support site. I've tried google but its not helping much.

 

Thanks in advance!

Safe Search Enforcement - Office Clip Art

I don't know if anybody else has seen this, but we have safe search enforcement turned on (and I don't plan on turning it off) and Microsoft has moved all the clip art to Bing. When you try to add clip art from within MS Word and search for "cat" the

...

bbilut by L3 Networker
  • 1609 Views
  • 1 replies
  • 0 Likes

How to host on a dynamic ip?

hello,

i have attempted to create a rule that will allow me to host a SSLVPN device on my DMZ but the only way I was able to connect is to place the external IP (static) in the rule. The problem is that i rely on a dynamic ip system and it will change

...

9-1-2015 2-50-37 PM.jpg
dummel by L0 Member
  • 1894 Views
  • 2 replies
  • 0 Likes

Resolved! Pull AppID descriptions via API

Hello,

is it possible to pull the AppID descriptions from Panarama, firewall device or https://applipedia.paloaltonetworks.com/ in a way to use it in a "firewall change request" system?

Anon1 by L4 Transporter
  • 4427 Views
  • 2 replies
  • 0 Likes
  • 23741 Posts
  • 110 Subscriptions
Top Solution Authors
Top Liked Authors
Labels