This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1720 Views
  • 0 replies
  • 0 Likes

Resolved! SSL Decryption

With SSL Decryption it is recomended that Financial services & Medical category is not decrypted.

My question is how do you ensure that sites that should not be decrypted are not i.e. JP Morgan is clearly a Financial services and will not get decrypt

...

RC-BHF by L2 Linker
  • 2959 Views
  • 2 replies
  • 0 Likes

idle traffic sessions

I know that you set timeout for global protecte sessions that go idle but can you set other idle traffic to time out?

jdprovine by L4 Transporter
  • 4690 Views
  • 7 replies
  • 0 Likes

Resolved! Block ms-update for GlobalProtect sessions?

Hi all -- 

 

Lately, with the Win10 release, I'm finding many of my VPN users are downloading gigs of updates over my meager 10mbps company internet cxn.  I'm wondering if there is any way to block specific services/applications (ie.- ms-update) over

...

thatguy by L2 Linker
  • 3237 Views
  • 3 replies
  • 0 Likes

Resolved! Pull Info on Specific GlobalProtect User

Is there a way to pull information on a specific user connected on globalprotect throught the CLI?

 

I know the command:

show global-protect-gateway current-user

pulls all the users in... but what about just for a single user?

 

Thanks.

mmclimans by L3 Networker
  • 2596 Views
  • 1 replies
  • 0 Likes

Resolved! Uptick in RFC2397 Data URL Scheme Usage Detected (30419) ?

Before I go on a wild goose chase, has anyone seen an increase in threat 30419 (RFC2397 Data URL Scheme Usage Detected)?

 

It seems like these things trip for a while until PA figures out someone's using something novel in a new App. A new application

...

MCmgt by L2 Linker
  • 5600 Views
  • 7 replies
  • 0 Likes

QoS Implementation for Voice Traffic

We are looking to implement QoS on our Palo Alto device for our voice traffic. We are currently tagging voice traffic with DSCP 46(ef). This is done at the source using Windows group policy to tag all traffic that originates from application "lync....

VLAN taggin Wireless traffic

I have a Wireless Access Point with multiple SSID's configured connected to a PA-200 on the interface ethernet2 (vlan).

 

The PA config is setup as per https://live.paloaltonetworks.com/t5/Configuration-Articles/Setting-Up-the-PA-200-for-Home-and-Sma

...

Resolved! Device Group Hierarchy and Template Stacks in 7.x

Howdy all!  I am really curious about Device Group Hierarchy and Template Stacks in 7.x.  There could be incredible value in utilizing these features in my environment.  The biggest question I have is:  Does Panorama AND the target firewall BOTH have

...

control over ssh traffic - command or data

Hi All,

          After implementing SSH decryption, can  PA have the visibility to idenfity whether commands or any other data is being shared over ssh

 

 

 

with regards,

Ram

Gururaj by L4 Transporter
  • 3494 Views
  • 3 replies
  • 0 Likes

Resolved! Predefined reports with several Virtual Systems

Hi all,

 

We have a Firewall divided in two vsys and we are having problems with the configuration of some reports. When you try to generate a new "PDF Summary" and you have selected the virtual system "Shared" there are available some predefined rep

...

Carracido by L3 Networker
  • 3317 Views
  • 1 replies
  • 0 Likes

Custom Dynamic Block List

Does anyone know how long a custom dynamic block list take to refresh? Is it suppose to refresh\pull every 15 minutes? And if you do a commit does that make the change immediate?

Here is my scenario, we are using a custom dynamic block list to add xp

...

lewis by L4 Transporter
  • 4998 Views
  • 6 replies
  • 0 Likes
  • 24224 Posts
  • 117 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks