This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4222 Views
  • 0 replies
  • 0 Likes

Global Protect DHCP Options

I have a PA-500. I have a basic configuration for Global Protect up and working - certificates, agent settings, etc. All is well. The client can route to internal resources as expected. Now, the next step I need to take for these VPN clients in transitioning from Cisco AnyConnect is that they must receive some custom DHCP options with their VPN ...

mkeller by L1 Bithead
  • 5617 Views
  • 4 replies
  • 0 Likes

OpenVPN behind PaloAlto

Hi! We can't get OpenVPN to work. Our Juniper-SA works well. The setup is only working without Firewall: Laptop (static IP 80.0.0.4) attachted to an switch and the OpenVPN server attached to the same switch (eth1, dmz) Our Policies: Monitor: Konfig - OpenVPN server DMZ: iface eth1 inet staticaddress 80.0.0.5netmask 255.255.255...

palo-config-policy3.png
palo-config-monitor.png
Morneweg by L1 Bithead
  • 9545 Views
  • 7 replies
  • 0 Likes

Block the remote desktop acces with Palo Alto Network

Hello, In or company i need to block the remote desktp access of a specific address to the critical server like database server. I add a security rule in the PA-500 by block (ms-rdp and t.120) applictions to a specific address by without any result. How could i blck the remote access ? Please i need you help

RCHAIBI by L2 Linker
  • 11933 Views
  • 8 replies
  • 0 Likes

NAT and site to site VPN

Hello, We're trying to build a Site to Site VPN connection with an other company. They are installing software on two of our servers (10.130.0.100 and 10.202.20.20) and they need the VPN to automatically transfer configuration and other files. The VPN-link is active but we have a problem with overlapping subnets. They use subnet 10.0.1.0/24, b...

VPNPrblm.PNG

Resolved! Panorama Dynamic Updates

I see three locations for Dynamic Updates while logged into the Panorama device. Panorama Tab >> Dynamic Updates Panorama Tab >> Device Deployment >> Dynamic Updates Device Tab >> Dynamic Updates (for each Template) I think I know what 2&3 are for. 2 is for pushing scheduled updates down to selected firewalls fro...

Blocking Malware Callbacks

Malware Callbacks for command&control and also for data exfiltration are often transported in HTTP POSTs. The URL blocking of category malware URLs seems only to block the HTTP response. The GET or POST request seems to pass untouched to the server. So it is possible to exfiltrate arbitrary data in the GET or POST request. What is the su...

Unibw by L2 Linker
  • 3874 Views
  • 2 replies
  • 0 Likes

Interface question

Hi! This is our network: My question is about interface 1/6: I can ping the juniper from outside the network. But I can only ping the OpenVPN Server if I configure the IP-Address 80.0.0.5/32 explicit in this interface. Without this entry (80.0.0.5/32) I can't ping this server... why 🙂 !?

netz-skizze.jpg
interface-aktiv.png
Morneweg by L1 Bithead
  • 2811 Views
  • 3 replies
  • 0 Likes

Unlisted YouTube Video being blocked but All Other YouTube Videos are Viewable

Our company has hired someone to make a sales video and they have released a draft of the video on YouTube. The draft is an unlisted YouTube video and our users are not able to view it. The page opens and the video screen just spins, trying to connect and play the video. All users are able to view any other YouTube video that is publicly listed....

PA200 stops forwading traffic

Hi, we have a pa200 (6.0.8) whichs suddenly stops forwarding traffic. So we had to reboot the device via managment UI to fix the problem. After doin some research i found this knowledge article from palo alto: https://live.paloaltonetworks.com/t5/Management-Articles/Firewall-Slows-Down-and-Stops-Forwarding-Traffic-after-Applying/ta-p/59213 ...

voip_class
iweltag by L2 Linker
  • 2274 Views
  • 2 replies
  • 0 Likes

Resolved! PA-500 destination NAT not working on PAN-OS 7.0.3

Hi guys, I have a Zabbix monitoring server on an external IP/network which is listening on port 10060. I have a zabbix agent installed on my internal windows server that is also listening on port 10060. The server will make requests to the agent to query its status. To allow the Zabbix Server access to the internal network, I have setup dest...

TS Agent Source Port Redirection blocks ODBC connection

We have a deployment of the TS Agent on 2008 R2 terminalservers. The TS agent works as designed and reassigns source ports. However, one specific segment of one specific application that is based on MS Access fails to connect to an SQL server when the TS agent service is running.The application's vendor says they don't enforce specific source po...

Resolved! Google Safe Search Brightcloud

Anyone else having Problems with SafeSearch And Google today? We were having dozens of reports that no matter what it was blooking google saying safe search was not set even if it was, we Roled back from 4668 to 4667 and it seems to ahve fixed its self for us here.

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks