This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4460 Views
  • 0 replies
  • 0 Likes

MS Azure mass changes

Every week we get a huge list of new IP addresses and subnets for the MS Azure product to be allowed through our firewalls. The file that contains the new updates is an XML file. I have a couple questions that I hope to get help with. 1. Surely we can't be the only company facing this dilemma?2. Is there a way we can do mass changes to policies ...

wessepj by Not applicable
  • 2181 Views
  • 1 replies
  • 0 Likes

Global Protect pre-logon and SSO

Help me understand this better, on the global protect portal for the server cert i need a public cert from a place like godaddy? For the client cert I can use a cert that issued from our internal cert authority which has a cert on all the domain workstations already? What I want is a pre-logon to happen when a user is not logged in yet, but a n...

markk96 by L3 Networker
  • 2364 Views
  • 1 replies
  • 0 Likes

Agentless UserID in a MultiDomain Environment

My first question would be is it possible to configure a firewall with no vsys license to query more than one domain without deploying the UserID windows agent?My second question would be if yes then how given that there is only 1 WMI authentication username, one list of DCs and also that the ignore user list would only apply to a single domain ...

CHammock by L2 Linker
  • 3408 Views
  • 2 replies
  • 0 Likes

Thoughts on a set of application rules?

I was messing around in the interface today and had a thought as for rules and am curious what other might think.I created a group of rules for a particular zone/AD User group. Something like thisAllow but do not log (DNS for example)Allow these apps (Appgrp--custom application group)Allow risk1 (custom app filter includes all "risk 1" apps)All...

BobW by L4 Transporter
  • 4046 Views
  • 2 replies
  • 0 Likes

PA-VM on ESXi - L2 Topology Design Questions

I'm looking to deploy a pair of PA-VM 200s running 7.x on a vSphere 5.5 cluster and would like a sanity check on the design.My client's network currently has one large VLAN that houses most of their servers. For the sake of this example, we'll say it's VLAN 8. There are servers on this network with varying degrees of importance, but among them...

bkeifer by L1 Bithead
  • 3161 Views
  • 1 replies
  • 0 Likes

VPN s2s PA and Mikrotik

HelloI have new tas - make VPN s2s between PA200 and Mikrotik router.PA (PA 200 on 6.1.4) has Advanced phase mode 1 optios set to AUTO and "anable passive mode" not checkedMikrotik (751U-2HnD with latest 6.30 router OS) is in aggressive mode.It's quite simple task, few policy rules on PA and on Mikrotik side. Configuration similar to PA<>...

_slv_ by L4 Transporter
  • 2466 Views
  • 1 replies
  • 0 Likes

Resolved! Panorama Commits--what actually happens when I commit to a device-group?

What happens when I push a policy from Panorama to a device-group firewall? Does Panorama always push the entire configuration file, or does it first perform a 'diff,' and only push the changes? If it performs a diff, what is the underlying mechanism it uses to track the changes? Is it some sort of table of rule hashes, etc? It seems pretty ...

mgentile by L2 Linker
  • 10235 Views
  • 7 replies
  • 0 Likes

Applications and Threats auto-update issue

I have an issue where all of my definitions auto-update with the exception of Applications and Threats.Previously, I had Applications and Threats set to download only. About a month ago I changed it to also install. Since that time, I've still had to manually install updates to Applications and Threats. I've committed many times since this...

EdwinD by L3 Networker
  • 5859 Views
  • 4 replies
  • 1 Likes

Tips to improve mgnt tasks in a PA-2020

Hello Everyone,Does anybody knows any tips to improve mgnt tasks (policy changes, monitors checks, commits... etc etc) in a slow box PA2020?I am working w/ this model since november 2013 and I am facing so many problems w/ slow response during management....My box do:- User identification from external agent- URL filtering by bright cloud- Aroun...

Google-Earth app issue

Hello Friends,we have to allow only Google-Earth app for specific group of users but as SSL,web-browsing are its Dependent Application and need to allow as well, once allowing users also able to use yahoo , rediff and other urlswe have to control that, suggest how?RegardsSatish

Satish by L4 Transporter
  • 3439 Views
  • 1 replies
  • 0 Likes

Different severity WebUI-Traps

Hi, we have had this vulnerability (ANGLER Exploit Kit Detection (37796) in our LAN, and we realised that PA classified this vulneratibility in the WebUI with severity CRITICAL but in the traps and syslog that we received the severity for this vulnerability is High.Why PA classified this vulnerability with a critical severity in Webui but sen...

SOC_CSG by L4 Transporter
  • 2891 Views
  • 1 replies
  • 1 Likes

Check_mk Package for snmp statistics

HelloCurrently I use the standard snmp statistics in my monitoring tool check_mk:And for Sessions I use this packages Check_MK Exchange - Mathias KettnerI'm looking for a package to monitor the firewall throughput, threat prevention throughput and IPSec throughput.And also for the Management and Data Plane CPU.Has somebody done this?Regards

Anyone integrating 3rd party threat intelligence/malicious IP feeds into Dynamic Block Lists?

I'd love to integrate lists of known malicious IPs like those in the links below into dynamic block lists, but I'm worried about overblocking or a bad feed hosing us. Has anyone used feeds similar to the ones below, either free or paid? What was your experience?http://rules.emergingthreats.net/fwrules/emerging-Block-IPs.txthttp://malc0de.com/b...

RyanF by L2 Linker
  • 16147 Views
  • 9 replies
  • 1 Likes
  • 24378 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks