General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2845 Views
  • 2 replies
  • 13 Likes

Resolved! white listed web pages (url filtering )link broken

Hi all

Hi all

I have a white list   and all other categories are blocked  .After applying  seems some links are broken ( images and css loading  from other urls , these urls are also added in white list

Whatever urls found on the source are added in th

...

sib2017 by L4 Transporter
  • 3324 Views
  • 4 replies
  • 0 Likes

Ultrasurf Blocking Fail

Hi,

I am suferring from many failed attempts trying to block ultrasurf. i added the application to a deny policy on the top of my policies, but users keeps jumping to the allow policy. i tried to block unkown UDP/TCP apps, but it failed too. the applc

...

Mohammad by Not applicable
  • 10222 Views
  • 30 replies
  • 2 Likes

Who's using an MSSP for security monitoring?

We have a need for 24x7 monitoring, so I wanted to explore partnering with an MSSP vs. setting up our own SOC.  Anyone have experiences to share?

We'll probably start discussion with one of these partners, but wanted to get feedback first:

https://www.

...

RyanF by L2 Linker
  • 3635 Views
  • 3 replies
  • 0 Likes

Sipvicious.Gen User-Agent Traffic

Hello everyone,

This is my first post here. So i started a new job couple months ago and we have a PA 3050 . The daily reports is showing Sipvicious.Gen User-Agent Traffic coming from IP's all over the world.

Any ideas?

Thanks

Resolved! Global Protect

Does global protect log the user off automatically if the session is inactive?  Also I was able to login without using any credentials, is that suppose to happen?

infotech by L4 Transporter
  • 3184 Views
  • 4 replies
  • 0 Likes

Resolved! FQDN Address Objects Not Resolving - PANOS 6

I have a few different clients with the same issue.

I have some FQDN address objects and I assign a TAG to each of those objects. Then I create a Dynamic address object group which contains address objects with that tag. Then I add the dynamic group t

...

SDorsey by L4 Transporter
  • 3454 Views
  • 7 replies
  • 0 Likes

PBR Monitoring

Hi,

In Forwarding tab under PBR forwarding rule, what interface usually Ping or monitor the IP Address in Monitor option?

Thanks,

MBS

Resolved! wildfire-upload-fail

Looking to find out more about wildfire-upload-fail. Has anyone had any of these and if so were you able to determine the root cause?

lewis by L4 Transporter
  • 5775 Views
  • 13 replies
  • 0 Likes

UserID connecting-disconnecting

Hi, im having problem accesing to my PA (i think because of UserID). If i try with local user its ok but with my LDAP user is not working. The users cant access via VPN neither.

I can see a lot of events about "connect-agent" and suddenly "disconnect-

...

SOC_CSG by L4 Transporter
  • 5934 Views
  • 12 replies
  • 0 Likes

white list and captive portal

Is there a way to whitelist some URLs that would be allowed without or before authentication via Captive Portal?  What we are wanting to do is allow users to access email via Office365 without having to authenticate first on the captive portal.  This

...

On-demand ipsec tunnels?

Is it possible in the PAN to do on-demand vpn tunnels? This is used quite a bit in the Cisco world.. especially for vendors.

They often are setup so the tunnel is configured but when the vendor needs to connect for support, the end-user needs to conn

...

SDorsey by L4 Transporter
  • 4016 Views
  • 7 replies
  • 0 Likes

Route Cache

Hi,

We implemented PA3050 as internal firewall. We configured it as L3 and caters up to 200+ static routes. When we try to remove a single route in virtual router and commit, approximately 20 minutes before it takes effect. Is this normal in Palo Alto

...

PAN OS and TACACS+

Hi There,

Is it possible to tie together a PANOS and TACACS+ for authorization of commands? If not, how it possible to restrict access for some cisco network equipment? Any ideas?

Oleksandr by L3 Networker
  • 2761 Views
  • 6 replies
  • 0 Likes

QoS based on DSCP marking

We have Mitel IP phone systems deployed across multiple IPsec VPN sites

The voice packets are marked EF (DSCP 46) and signalling packets are marked AF31 (DSCP 26) automatically by the IP phones and PBX.

Under QoS policies, there doesn't seem to be a wa

...

yikching by L0 Member
  • 2211 Views
  • 2 replies
  • 0 Likes

Resolved! Alerts

I have my Palo Alto setup to send emails out on critical alerts.  If someone tries attacking an outside IP I will get 60 alerts sometimes all in a row.  Is there anyway to get the email alert just once that the outside IP was hit 60 times as opposed

...

aguley by Not applicable
  • 2403 Views
  • 3 replies
  • 0 Likes
  • 24006 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors