General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Questiona about Opera-Mini Browser Application

Hi Guys,

We have followed the below suggestion to block the Opera-Mini Browser application

Re: Block internet access using Opera Mini

However, during our test, although traffic log says its getting denied, but users can get to the first or second page o

...

MelLi by L2 Linker
  • 1975 Views
  • 1 replies
  • 0 Likes

ISP Redundancy Configuration Assistance

Hello All,

We recently contracted with a second ISP for redundancy.  I have been looking for instructions on how to set this up, but have not had much luck.  I did find the following articles, but none of them actually show how to completely set it up

...

Grubbsy by L2 Linker
  • 3476 Views
  • 5 replies
  • 0 Likes

Resolved! Internet Games

I have noticed that there isn't a lot of games listed in the application database. I really don't want to block a bunch of ports as they might be needed by something else, so I was wondering what is the best way to block certain Internet games? Speci

...

irishjd by L1 Bithead
  • 5221 Views
  • 7 replies
  • 0 Likes

Resolved! Captive Portal force URL Redirect?

All,

We're currently using Captive Portal to present a terms page to our guest users which once they accept they're able to browse, etc. It's been asked if we can forcible redirect users to a particular URL once they accept our terms, but from what I

...

steveo by L3 Networker
  • 4058 Views
  • 2 replies
  • 0 Likes

FTP passive mode issue

Hello All,

I was read somewhere on this forum similar article from October 2014, and seem that problem with passive ftp was on new content ID. However some time passed since, I have issue with ftp passive mode on my VM-100 (panos 6.0.5, content ver. 4

...

Tician by L3 Networker
  • 7289 Views
  • 3 replies
  • 0 Likes

Resolved! URL Whitelist Nightmare

I've tried without luck to add the URL 'addons.mozilla.org' to a whitelist. This URL falls under the 'shareware-and-freeware' category. This category is blocked. That's why I need to specify this explicitly in the whitelist. It just won't work.

My mo

...

Bocsa by L3 Networker
  • 5310 Views
  • 10 replies
  • 0 Likes

Enabling forward trust certificate

Hi all,

I'm hoping someone can assist.

I can't enable the Forward Trust option for a cert that I generate using either a self-signed CA or 3rd party CA.  The check is either greyed out or it's an option but doesn't keep the check after I hit OK. Any

...

Resolved! Error upgrading ESM to 3.1.3

Greetings all-

I am trying to upgrade an ESM server from 3.1.2 to 3.1.3. When I run the installer, I get the below error message. I have ensured to run it as administrator. I have even tried disabling UAC, removing the AV agent and rebooting.

Thoughts?

SDorsey by L4 Transporter
  • 2194 Views
  • 1 replies
  • 0 Likes

UniDirectional Link Failure Detection without UDLD

Hi,

Does anyone know the network appliance could detect uni-directional link failure of SFP+ without UDLD?

I tried the test with PA-5060 and Juniper-EX,

but SFP+s kept link-up cause TX might continue to shot laser when RX came not to receive laser from

...

komure by Not applicable
  • 2984 Views
  • 1 replies
  • 0 Likes

Blocking Facebook apps without ssl policy

We are trying to let users to have read-only access to Facebook' but not allow them do posting or download anything from it.   We don't have SSL policy.  Can you block Facebook posting with you SSL policy decrypt traffic?

Thank you

awarsame by L1 Bithead
  • 2469 Views
  • 2 replies
  • 0 Likes

URL filtering Profile - URL in allow list does not work.

Hello,

PAN-OS 5.08

I have a security police to which applied a URL filtering Profile.

I have blocked the category "social-networking" and I need to allow "twitter.com"

I tried putting the URL in allow List:

*.twitter.com

*.twitter.com/*

www.twitter.com

But

...

SOC_CSG by L4 Transporter
  • 3199 Views
  • 3 replies
  • 0 Likes

Install GlobalProtect

Hi!

I have problem with installing GlobalProtect in our environment. We are using System Center
2012 to to install the GlobalProtect64.msi  with installation behavior “Install for user” but
the problem is that it only creates StartMenu ico for that us

...

unygren by Not applicable
  • 4460 Views
  • 4 replies
  • 0 Likes

Active/Active performance benefit/impact

Hi,

Anybody currently using or having had tested HA in an active/active mode with any insights into the the performance benefit or impact of such a setup?

Is the additional complexity worth the effort and is the throughput effectively increased compare

...

  • 24308 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels