Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 158 Views
  • 0 replies
  • 0 Likes

Threat ID 1270062

Is anyone else getting these from their reports? Virus/Win32.WGeneric.duznb(1270062) I am wondering if it is false positive - the threat ID database is unable to pull any analysis on it. Please let me know!!! Thank you!!

KMason by Not applicable
  • 2426 Views
  • 3 replies
  • 0 Likes

Resolved! Use proxy only on certain URL's

Hi,

I wanted to know if this was possible? We currently have an issue with 1 of our online services and it turns out to be a routing issue between Virgin and BT. The server seems to create 2 connections and when it is one the first connection it is fi

...

JRussell by L3 Networker
  • 4829 Views
  • 4 replies
  • 0 Likes

Resolved! Emergency FTP on a Friday Night

PAN-200

PAN OS 6.

So there are, standing up an FTP server for client use.   Got it configured, and tweaked, and secure. Planned to figure out how to open up the firewall next week.

After hours.  Manager called.  I'm on a conference call.  Have some clie

...

bdunbar by L3 Networker
  • 2685 Views
  • 2 replies
  • 0 Likes

Resolved! Latest content updates failing?

Anyone else seeing this one?

On both my firewall installations (2020 HA pair and 3020 standalone), the last two content updates (the failed one 473 and the replacement 474) are failing to complete, according to the job log, vis-a-vis

Yet the relevant c

...

darren_g by L4 Transporter
  • 4167 Views
  • 4 replies
  • 0 Likes

Resolved! PA-200 Initial Configuration from console only

Trying initial setup of PA-200 using console connection (public on ethernet 1/1, no mgmt connected). I know I have to remove virtual wire, but having validation error below. Any suggestions ?

delete network interface ethernet 1/1 virtual-wire

delete ne

...

niuk by L3 Networker
  • 2827 Views
  • 2 replies
  • 0 Likes

Resolved! Using a large destination-domain blacklist

Hello,

I am considering the use of a domain name blacklist published by the DNS-BH project in a custom URL category that will block access to any of the included domains.  However, the list is over 12K entries long, which obviously doubles when I add

...

schaleg by Not applicable
  • 2350 Views
  • 2 replies
  • 1 Likes

Resolved! Globalprotect Mobile - no cert found

I've seen post like Re: IOS Global Protect APP - Required Client Certificate is not found but the fix was to manually import certificate to phone..How do I make my GP on droid to auto-download cert and connect ? I have same problem on Windows PC , ma

...

niuk by L3 Networker
  • 4545 Views
  • 3 replies
  • 0 Likes

Radius timeout greater than 30 seconds

I am working with Microsoft MFA for some RADIUS based "cloud" dual factor authentication.

MFA recommends a RADIUS timeout of 60 seconds due to the nature of their solution but PAN restricts RADIUS to 30 seconds as a maximum.

Is there anyway to bypass t

...

kk555 by L0 Member
  • 2849 Views
  • 2 replies
  • 0 Likes

URL filtering issue.

Hi Friends,

i am facing one issue with url Filtering my site category is showing malware- sites but when ever i am trying to check with ( https://urlfiltering.paloaltonetworks.com/testasite.aspx ) its showing travel category. please suggest.





Satish by L4 Transporter
  • 3931 Views
  • 8 replies
  • 0 Likes

Resolved! Match UserId problem

Hi, we have 2 PA in cluster Active/passive. We have done the fail-over and when the secondary PA is working i can see userid is not maching. I have checked all the Userid agent config and state and everything is ok. I have restart all the userids age

...

SOC_CSG by L4 Transporter
  • 3394 Views
  • 5 replies
  • 0 Likes

Dynamic Updates Problemes

From this night with last dynamic update of Applications and Threats the detection of private IP's in Geo IP location changed from origin private IP to unknown. Does anyone have the same issue? Since this morning with last dynamic update of Applicati

...

Resolved! Two Global protect Portals on one gateway - possible?

Folks.

I have a need to implement certificate based login for most of our corporate PC's to Global protect - so they pre-login and get domain scripts etc when the remote users logon.

However, I also have a number of PC's which aren;t corporate owned (a

...

darren_g by L4 Transporter
  • 6134 Views
  • 7 replies
  • 0 Likes

Resolved! IP Mappings Disappear Too Soon in log

Hi,

We have two PA-3020 in HA state, PAN-OS is 5.0.4 and we have configured 4 User-ID Agents (for now, in this troubleshoot stage, we are focused on only one agent).

Problem is in IP – user mapping. Sometimes in logs we see user and in very next momen

...

Resolved! What happens when a User-ID agent restarts?

I have been using the agentless user-id but it seems to be overloading my firewalls so I am moving to a separate agent.  I am trying to decide whether I need one or two though and need to understand what happens when an agent restarts.

When it loses t

...

djr by L4 Transporter
  • 5002 Views
  • 6 replies
  • 0 Likes

Web Interface access from Internet

I have PA-200 connected to Internet , but mgmt interface disconnected right now. Do I have to piggyback mgmt to one of remaining Ethernet interfaces in order to get access to web interface from Internet ? Plus port forward rule ?Let me know

niuk by L3 Networker
  • 6527 Views
  • 17 replies
  • 0 Likes
  • 23595 Posts
  • 107 Subscriptions
Top Liked Authors
Labels