This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4222 Views
  • 0 replies
  • 0 Likes

Resolved! Public wildcard certificate for use with Captive Portal

Hi guys, I have a scenario whereby we have a publicly issued wildcard certificate for our organisation and I'm wanting to use this in conjunction with Captive Portal on the PA-500. I've set all policies up and configured Captive Portal to redirect to a Loopback interface on the firewall (through the use of a DNS name which resolves to the IP of ...

Any luck with 7.0.2 out in the field?

I am curious to see if anyone has upgraded to the newest 7.0.2. I tried 7.0.1 but had a few issues with a commit command to one of my firewalls. Still working on that but has anyone installed 7.0.2 and are you happy with it?

PAN-OS 5.0 CLI script to change TCP and UDP Timeout Values for Default Applications on device

I have a requirement to change the timeout values on all of the paloalto os preconfigured/default applications (2000+ applications). Using the web interface, it would require opening and configuring each individual application. Can anyone lend assistance by pointing me to a CLI script that can make easier work of this task. Greg

townesgs by L0 Member
  • 2245 Views
  • 1 replies
  • 0 Likes

Resolved! Management Interface

Hi, Is it a good idea to connect the mgmt interface directly to wan ? or should it only be accessible locally and via an access server for remote management ?

Global Protect - Problem with name resolution DNS/WINS

Dears, We are facing a strange problem... sometimes external users connected via global protect cannot resolve names without the sufrix domain... Example:\\NAMESERVERorhttp://netflow:8080 Strange behavior below: when we ping that name we see that it is not being resolved...But when we do a nslookup we see the name resolution is OK browsing pro...

ScreenShot162.jpg
ScreenShot163.jpg
ScreenShot161.jpg
ScreenShot164.jpg

Custom vulnerability Signature

Hi, I am trying to create a custom threat signature based on the HOST: header in the URL request and URI request field. The signarure is working as expected. Issue is when I tried to add a pattern which is less than 7 bytes in http-req-host-header field, the signature is not accepted by the device. Any help is appreciated. RegardsThanzeer

PA4020 to PA3050 migration path

Hi, We bought a PA3050 appliance that will replace our PA4020 appliance. So I need to know how to migrate data and configuration from the older one to the older one. Is it possible jutst by copying files from one to the other?. Thanks

elaporte by L0 Member
  • 2951 Views
  • 3 replies
  • 0 Likes

PA object naming schema/convention?

Was about to create a naming schema for PA firewalls objects, but I am wondering if someone already has something I can model mine on so I don't have to reinvent the wheel.

Snake by L0 Member
  • 6322 Views
  • 4 replies
  • 0 Likes

Reports only show 5 rows of information

I'm attempting to create a custom report, where data is generated in either 10 or 25 rows. For example: Top 10 denied applicationsTop 25 URL CategoriesTop 5 users for top 5 apps My problem comes when the report is generated and emailed. No matter the custom report, the data will only show the top 5. So I get: Top 5 denied applicationsTop 5 URL C...

BRiden by L0 Member
  • 2833 Views
  • 2 replies
  • 0 Likes

Resolved! How to Configure Action for 'automatic blocking an IP for an hour' in a vulnerability scanning?

Hello,This would be possible to implement?Configure my firewall to make a action for 'automatic blocking an IP for an hour' in a vulnerability scanning.Objects -> Custom Objects -> VulnerabilityExample: IP auto-block attacker for 1 hour, if 10 times in 10 seconds Any Scan Vulnerability Bash.I want "OR" condition. Here. addition to "IP add...

Imagen 1.jpg
Imagen 02.jpg
Imagen 15.jpg
Imagen 16.jpg
SOC_CSG by L4 Transporter
  • 18451 Views
  • 6 replies
  • 0 Likes

Could I change session timeout to 24 hours for all applications?

Hello, I have two questions.First, Could I change session timeout to 24 hours for all applications?Each applicaitons have each different session timeout value.My customer would like to change session timeout of all applications to 24 hours.Do you knew way better easy? Second,I knew there are two way for changing session timeout.The one is global...

Resolved! WildFire logs not consistent

I'm having problems with Wildfire logs on one device (PAN-OS 6.1.6). In Data Filtering logs I can see many files being either uploaded to WF or skipped recently. But in WF logs I only see some old files marked as 'malicious'. I don't have any filter set. I also checked logs via CLI and the result is the same: just some old files marked as malici...

santonic by L6 Presenter
  • 2974 Views
  • 2 replies
  • 0 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks