This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4246 Views
  • 0 replies
  • 0 Likes

Resolved! How to Configure Action for 'automatic blocking an IP for an hour' in a vulnerability scanning?

Hello,This would be possible to implement?Configure my firewall to make a action for 'automatic blocking an IP for an hour' in a vulnerability scanning.Objects -> Custom Objects -> VulnerabilityExample: IP auto-block attacker for 1 hour, if 10 times in 10 seconds Any Scan Vulnerability Bash.I want "OR" condition. Here. addition to "IP add...

Imagen 1.jpg
Imagen 02.jpg
Imagen 15.jpg
Imagen 16.jpg
SOC_CSG by L4 Transporter
  • 18464 Views
  • 6 replies
  • 0 Likes

Could I change session timeout to 24 hours for all applications?

Hello, I have two questions.First, Could I change session timeout to 24 hours for all applications?Each applicaitons have each different session timeout value.My customer would like to change session timeout of all applications to 24 hours.Do you knew way better easy? Second,I knew there are two way for changing session timeout.The one is global...

Resolved! WildFire logs not consistent

I'm having problems with Wildfire logs on one device (PAN-OS 6.1.6). In Data Filtering logs I can see many files being either uploaded to WF or skipped recently. But in WF logs I only see some old files marked as 'malicious'. I don't have any filter set. I also checked logs via CLI and the result is the same: just some old files marked as malici...

santonic by L6 Presenter
  • 2981 Views
  • 2 replies
  • 0 Likes

IPSec-ESP trough PA-7k only unidirectional best practice? Work around bug (ID:80950)

Hi, due to a bug (ID:80950), that PANW is not able to fix, it is necessary to create seperate IPSec-ESP policies for both directions trough the PA-7050. IPSec-ESP that comes in response to a opened session is being dropped if there is no separate policy for incomming ESP traffic. Example:-Client are allowed to open IPSec-Connections from "trust"...

Unibw by L2 Linker
  • 4617 Views
  • 2 replies
  • 0 Likes

Resolved! Diferences between Global protect 1.2 and 2.3 clients?

Folks. I upgraded my firewalls from 2020's to 3050's on the weekend (oh, and isn't it a joy to have firewalls that I can actually administer without waiting 20 minutes for something to happen on!), but I ran into a bit of a problem with upgrading Global Protect. My old firewalla ran the 1.2 client because I didn't want to load it up with anythin...

darren_g by L4 Transporter
  • 4534 Views
  • 6 replies
  • 0 Likes

Resolved! BGP MD5 through the firewall

HI,if i want to allow two BGP peers to communicate through the Palo ALto and the two peers use authentication, for other firewalls since randomize tcp sequence is enabled this feature will not work without more config, is it the same case with Palo Alto, is randomize tcp suqunce a default option in PAN and does it require extra config to allow B...

hannk013 by L0 Member
  • 4022 Views
  • 2 replies
  • 0 Likes

User activity report customization

I'm trying to create a user activity report for a machine used by multiple people. The manager wants to see what internet activity from this machine looks like, across three shifts (24 hour period). I can run the prebuilt User Activity Report against the machine's IP address, and with detailed browsing checked, and it gets everything. The proble...

how set the fan mode to auto

Hello; I have a PA-500 firewall . I'd like to drops the noise of the fan : I log on the device by the CLI and i wrote : set system setting fan-mode auto But a message said taht this command is invalid by the firewall . I follow also the admin guide of PAN and the command that shwoing is : set setting fan-mode auto I wrote this command but witho...

RCHAIBI by L2 Linker
  • 3882 Views
  • 3 replies
  • 0 Likes

Resolved! Authenticated email settings

Hi All, When setting up email server profiles how can use use an smtp server that requires authentication. For example GMAIL requires you to pass your gmail account in order to forward mail. Thanks

Resolved! EIGRP between routers sitting behind PA site to site VPN

I want to set up a site to site VPN tunnel between PA 3020 and PA 500 to replace existing Cisco equipment. The current equipment is uing EIGRP routing to fail over to VPN from MPLS using 1921 routers. If I put in PAs to handle the VPN traffic in front of the 1921 routers, will the routers still be able to form an EIGRP neighbor and that traffic ...

VPN.PNG

Resolved! Traffig Log database exceeds alarm threshold value(90%) of total allowed size (xxxx) Issue

Hello Community, Actually I have an issue with traffic log alarm. First, I want to know more related to traffic log works. Actually the PA has assingned 32% (38.06 GB) of quota. In the security rules the flag is check in the option "end the session" and these logs, palo alto sends to external syslog server. Why does the traffic log is filling...

Apadilla by L3 Networker
  • 7521 Views
  • 1 replies
  • 0 Likes
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks