This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4136 Views
  • 0 replies
  • 0 Likes

URL categorization reasoning?

Someone shared a link with me to a new startup company and I found it had been blocked and listed as malware by a PAN FW -- I am curious if there is a way to determine exactly what occurred that made that site categorized as malware -- and how I can lookup other URL's reason for categorization -- if available.Thanks,A

ajr0 by L3 Networker
  • 7648 Views
  • 9 replies
  • 0 Likes

Higher gainer low threat

If you have an app that is being seen a lot in the logs but has a low rating and is skewing you results is it possible to exclude it from the threat prevention analysis?

jdprovine by L4 Transporter
  • 2261 Views
  • 2 replies
  • 0 Likes

Is there a way to automate reporting of "auth-fail" system log messages?

Hi,I'm looking for a way to automatically/proactively report on auth-fail system log messages and not finding anything obvious. Some things I've tried;1. I can send email under log-settings -> system -> informational, but a bit too chatty with all the other messages and only interested in auth failures for VPN connections.2. I created a fi...

dwgg by L1 Bithead
  • 9161 Views
  • 9 replies
  • 0 Likes

Using Virtual-Wire to isolate and allow/deny traffic to a couple hosts on existing subnet.

We have a situation as a result of going through a PCI audit. We have a single subnet which contains a handful of servers that need to be isolated and traffic restricted. Originally we were going to move these few servers to a new switch VLAN changing the IP scheme and use the PA to permit/allow traffic between that new vlan and the existing sub...

PPPoA config for UK

I'm configuring a PA-200 for deployment to England. I will not be on-site when the device is cabled, so I must be sure all configs are good beforehand.England uses PPPoA instead of PPPoE.Using the WebGUI, if I go to the IPv4 tab on the Ethernet Interface window, I see a radial button for making a PPPoE connection but nothing for PPPoA.At the off...

Interal Architecture of the fpga / asic for pa hardware models

Hi,I've been searching for documentation on the internal architecture for pa5000 series (pa5050 to be precise). I've not been able to find it however. I'm especially interested in how the fysical interfaces are connected what the throughput of the different asic's are (if there is any sort of over subscription). Can anyone help me?With Kind rega...

SSL Inbound decryption and nginx webserver

Hello,I try to configure nginx 1.6.2 (on linux ubuntu server 14.04 LTS) with fully support SSL Inbound decryption.We're running PAN-OS 6.0.9.Based on the document Inbound SSL Decryption Not Working Due to Unsupported Cipher Suites, I configure this on my nginx.conf:ssl_ciphers "AES256-SHA256:AES128-SHA256:RC4-SHA:RC4-MD5:DES-CBC3-SHA:AES256-SHA:...

ctovazzi by L1 Bithead
  • 5188 Views
  • 4 replies
  • 0 Likes

GP gateway drops to SSL and client gets disconnected..?

Hi all -- I just noticed an odd behavior affecting all GP clients (running on PA200, PANOS 6.0.3, GP Client 2.0.3), but I haven't changed anything recently.In looking at the System log, I see users connecting successfully ('portal user auth succ', 'portal client config gen', 'gateway user auth succ', 'gateway user login succ', 'gateway client co...

thatguy by L2 Linker
  • 8859 Views
  • 6 replies
  • 0 Likes

Floating IP and ARP load sharing addresses binding in A/A

Hello All,I'm curious about spending public IP pool given by my ISP, if I decide to put PAN-s in front edge perimeter. I have seen that in A/A scenario I need 4 IP's (physical and virtual) for Floating IP scenario, or 3 for ARP load sharing (2 physical and one virtual-shared IP). Am I right or some other way could be used in active/active scena...

Tician by L3 Networker
  • 3248 Views
  • 1 replies
  • 0 Likes
  • 24340 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks