This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Lync Federation Traffic

Hi Guys,

 

Recently we've configured Lync 2013 on our network.

 

What i've noticed on the PA external firewall is the Lync federation traffic from the internal lync clients to for example 'Skype clients' on the web or other organizations is classified on

...

PAN-DB URL Category List

Hi Everyone!  I'm being asked to provide a report of all of the applications, categories and URLs we are currently blocking.  Does anyone know how to obtain this?

dgoins by L1 Bithead
  • 2226 Views
  • 2 replies
  • 0 Likes

Resolved! UserID Built-in Syslog listener - Limitations?

We use the Syslog integration in the PAN Agents to forward User/IP-mappings from our wireless controllers to PA 5020 firewalls. 

 

We are considering to move the Syslog integration to connect directly with the PA5020 instead of the PAN Agents. But i re

...

Resolved! Outlook timeout issues

Description

We are experiencing a timeout problem when using outlook/exchange across the PA firewall.

When the RPC connection between Outlook and Exchange is idle, the PA apparently terminates the connection.

This causes the Outlook client to hang/stal

...

palo alto networks configuration

hello,

 

I configured a PA-500 with routing mode in our company . I set the zone , the security rules , the nat rules . I allow all traffic from trust zone to untrust zone. But the problem there is no internet connection. We use a DNS server , that is

...

RCHAIBI by L2 Linker
  • 1380 Views
  • 1 replies
  • 0 Likes

SSL decryption inconsistency

Hi,

 

I have enabled decryption on a small group for testing purposes. I have a simpel 2 rule setup, first exluding financial, health and custom white listed and then decrypt everything else.

 

I have a hard time finding out why the same site in the same

...

Resolved! Processes on the Palo.

Hi,

There are various processes that maybe restarted using the debug command. Most are self explanatory.

But whats the difference between l3-service and routed ? and webserver and management-server ? and vardata-receiver.


> device-server       Device s

...

Resolved! how to clean disk space-GUI getting session timeout

not able to access firewall using GUI getting session timeout

 

 

> show system disk-space

Filesystem Size Used Avail Use% Mounted on
/dev/sda2 1.9G 1.8G 0 100% /
/dev/sda5 6.6G 3.9G 2.4G 63% /opt/pancfg
/dev/sda6 1.9G 1.1G 709M 62% /opt/panrepo
tmpfs 1.3G 6

...

pa-errors.JPG

Resolved! Issues with Asymetric Routing

Hello Community,

 

I need your help to how to identify the asymetric routing in my PA-3020? and what are the best way to allow or bypass these traffic until solve the routing issue the third party device?.

 

Best Regards

Andres Padilla

Apadilla by L3 Networker
  • 15373 Views
  • 4 replies
  • 0 Likes

Resolved! NAT rule being applied wrong

Hi,

 

we have a static NAT from this ip 192.168.200.8 (zone DMZ)  to 195.57. (zone VPN). But we realised that the NAT rule which is matching is wrong.

Its matching the NAT rule (ftp.arag.es) but this rule has a filter by "Destination zone" Externa. And

...

SOC_CSG by L4 Transporter
  • 3207 Views
  • 2 replies
  • 0 Likes

Resolved! User-id and re-identifying auto logon users

We have a fairly large group of thin clients that auto logon to a user account that is used for launching their Citrix desktop. We are also using the PAN firewall to use NTLM (browser-challenge) for captive portal for internet access for all users. W

...

ldavie by L2 Linker
  • 5822 Views
  • 4 replies
  • 0 Likes
  • 24035 Posts
  • 102 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks