This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4455 Views
  • 0 replies
  • 0 Likes

GlobalProtect Welcome Page Frequency?

Hello... When useing the GlobalProtect Welcome Page I've noticed it is only displayed on the client when they first connect, I assume once a day. Is their a way to either force it to display every time a connection is made, or to make the PA think it's the first time someone has attached? Thank you.

eosminer by L1 Bithead
  • 4161 Views
  • 4 replies
  • 0 Likes

Resolved! Zone Protection exception

Hello,We’ve a problem with one of our customer.Probably due to a carrier router misconfiguration, packets coming from - and only - a specific IP source are matched as fragmented by PA. As consequence, due to a Zone Protection and Fragmented Traffic profile applied to that zone, some kind of traffic that comes from that IP is discarded (for examp...

Shared gateway and BGP setup problem ?

Hello all, This is the first time I post to the community. Before posting this message I've read a lot of information and I only can thanks everyone for all the interesting information found here. We have some difficulties to set up a "working" shared gateway with our Internet connection with BGP. I'm not sure where the problem is from, if it's ...

palaaltoproblem-base.png
palaaltoproblem-webexample.png
FTBZ by L1 Bithead
  • 5062 Views
  • 2 replies
  • 0 Likes

Free wildfire

I thought there was a limited version of wildfire that you could use for PE files. But it isn't working, I do a test registration and it fails. Is there something that is missing in the instruction that I have https://live.paloaltonetworks.com/t5/Articles/Wildfire-Configuration-Testing-and-Monitoring/ta-p/57722

jdprovine by L4 Transporter
  • 28858 Views
  • 52 replies
  • 0 Likes

Resolved! Old KB nomenclator in new live community portal

Hello, Would it be possible to restore the old KB nomenclator (DOC-XXXX) as a more visible attribute of the article in this new lithium-based Live Community portal ? I noticed that the old article name is included as a tag for some of KB entries, but not for all. Thank you for your time, andreip P. S. I bet there are [now broken] cross-referenci...

andreip by L2 Linker
  • 7655 Views
  • 3 replies
  • 8 Likes

Resolved! Memory size (100MB free)

We are receiving traps about sizee memory. We have checked the memory and we only have 100MB memory free. Is this a normal memory consumption 100 MB free???? how could we release memory if it would be necessary???. I attached a screenshot

Captura.png
SOC_CSG by L4 Transporter
  • 4343 Views
  • 4 replies
  • 0 Likes

GlobalProtect Pre-Logon Questions

Hello,From my research, I found the answer to be 'this cannot be done', however I am asking the community in case they may know different. Can Global Protect pre-logon to a windows machine when the Portal and Gateway are setup as follows:Portal Authentication = RADIUS (3rd party OTP)Gateway Authentication = LDAPCurrently not using certs, but thi...

Google-Search display captcha

Hello all Our users getting more and more captcha-messages on google-search with the following explanation:https://support.google.com/websearch/answer/86640?hl=en After entering the captcha, google-search works for a while an then the same message is displayed again. We have a NAT pool of several public ip addresses and configured outgoing ssl-d...

Ketchup by L0 Member
  • 5183 Views
  • 3 replies
  • 0 Likes

Simplest way to limit bandwidth for internet browsing to preserve for VOIP traffic

Here's my situation. We recently went live with a hosted VOIP system (CallTower hosted Cisco UC). We are relocating our office in a few months so we decided not to put in a dedicated circuit for voice and instead use our 20 meg DIA connection. We have a PA-200, my guess is about 20 to 30 users max using the internet concurrently and same with p...

Resolved! Captive Portal over IPv6

Does anyone have experience setting up a Captive Portal over IPv6 ? I found the detail the PAN firewall that have support for it, With IPv4 it's easy. "IPv6 user information is captured from all of the User-ID-supported repositories and terminal services, as well from captive portal and our XML API." https://www.paloaltonetworks.com/products/fea...

Kanitin by L1 Bithead
  • 4807 Views
  • 3 replies
  • 0 Likes

Resolved! Multi-Factor Authentication for GlobalProtect

Hello All,I know the documetnation states to use a certificate as one form of authentication or hte mult-factor. However has anyone out there setup different authentication profiles for their portal and gateway configs? I'm wondering if setting up say radius otp for one and ldap/AD for the other. Thoughts?

Facebook Browser based and Facebook APP for iOS and Android

We currently allow limited facebook access like posting and allowing to post comments, but block facebook app, chat, etc. What I have noticed is that while the browser functionality works just fine, from an iPhone or Ipad, it does not. In face, you cannot even open the facebook App. However, Messanger seems to sometimes work and sometimes not. H...

User-ID Agent - Domain Override?

Hello All,I deseprately need an option to override the domain name for user-IP-mappings collected from an User-ID Agent.I've found that the Terminal Server User-ID agent has that option (https://live.paloaltonetworks.com/t5/Management-Articles/Domain-Override-Functionality-on-Terminal-Server-Agent/ta-p/63107) which is very handy for multi-domain...

BLazarov by L1 Bithead
  • 6090 Views
  • 2 replies
  • 0 Likes
  • 24376 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks