This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4225 Views
  • 0 replies
  • 0 Likes

How to forward traffic (URL) to a syslog server?

The $misc variable can only be used for Threats?How to register the URL in syslog server?CEF Key Name: requestFull Name: requestURLData Type: stringLength: 1024Meaning: URL or filename for threat logs Palo Alto Networks Value Field: $miscfrom PANOS_6_0_CEF_ConfigurationHow to Forward Custom URL Logs to a Syslog Server

UNIVALI by L0 Member
  • 2787 Views
  • 1 replies
  • 0 Likes

preemption loop detected

Hi,I have two PAN 500 in HA A/P configuration with PAN OS 6.1.3 and virtual wire configured with link detection failure ANY. I tested link failure detection in way to disconnect one side of Vwire and passive device takes over and became active. After some time approx. less then one minute, non-functional device tries to revert connection, became...

Tician by L3 Networker
  • 5154 Views
  • 1 replies
  • 0 Likes

HA A/A or A/P

Hello All,I have such situation where considering in which mode to put HA PA configuration. As you can see on drawing, customer consider to put PAN in sandwich of VRRP cluster and vLAG virtual switch. VRRP has one virtual IP and MAC, and all destined packets from host went trough both active links. So far I don't know hashing algorithm of switch...

Tician by L3 Networker
  • 4140 Views
  • 3 replies
  • 0 Likes

Global Protect LDAP Child Domains

Has anyone setup Global Protect with LDAP for Child Domain or have a link to a doc on it?Global Protect works perfect for users in the parent domain. Want authenticate users in the child domain.

ddavis1 by Not applicable
  • 3414 Views
  • 2 replies
  • 0 Likes

File blocking .doc isnt working

Hi,We have configured a policy for File blocking in order to ask confirmation before download .doc files.doc file: www.apd.cat/ca/media/2165.docThis is the policyWhen i try to download this .doc file, the browser stuck loading but it shows nothing, the reponse page is not showed and no download is done.I attach the FileBlocking logs where you ca...

SOC_CSG by L4 Transporter
  • 7077 Views
  • 11 replies
  • 0 Likes

NTML authentcation for Captive Portal

Hi All,I am looking for ways to configure Captive portal policy with NTLM authentication.I have read a good number of PDFs from Palo alto but still unable to understand how do i configure it.In short i need to know how do we configure NTLM authentication for captive portal for both Palo alto integreted hardware user agent and software user agent...

ArjunDAS by Not applicable
  • 3886 Views
  • 3 replies
  • 0 Likes

Resolved! This webservice call is only available to Panorama

Dear folks,A few weeks ago we noticed a strange error message in our Panorama management software. If we navigate to "Panorama \ Device Deployment \ GlobalProtect Client" we receive the following error message:We close the message box but the area stays empty. We can't deploy GP clients through Panorama anymore. The same error message appears if...

oschuler by L4 Transporter
  • 3350 Views
  • 2 replies
  • 0 Likes

REST XML API- USING ORACLE and Panaorama , Dynamic address object updation failure on Palo-Alto Devices

The Oracle server is making REST-XML API request from a SQL PROCEDURE using the UTL_HTTP package to Panorama server for the belowkey generation for panorama [ Successful ]Dynamic object creation on panorama [ Successful ]FW rule creation on panorama [ Successful ]commit ALL panorama [ Successful ]commit on device group using panorama [...

vishal by Not applicable
  • 2723 Views
  • 1 replies
  • 0 Likes

site-to-site vpn from Sophos

IKE coming from a Sophos device is incorrectly identified as application ciscovpn instead of application ike.Is this because Sophos uses cisco-ish protocol ? All I see in the logs is udp 500...I'm happy allowing application ike, our other site-to-site vpn's work fine with it.I'm not happy however with allowing ciscovpn, since that would open a b...

dieter_b by L4 Transporter
  • 3166 Views
  • 3 replies
  • 0 Likes

Ignore usernames that start with sophos?

On our servers we have the User-ID being mapped as companyname.com\sophosCOMPUTERNAMESophos is our AV software which uses that account for getting updates. Is there anyway for me to add any names beginning as sophos to my ignore_user_list.txt?

pmc by L2 Linker
  • 2138 Views
  • 1 replies
  • 0 Likes

DShield top 20

Is anyone currently using this dshield top 20 list subscription? How well does it work/ Is anyone blocking inbound, outbound or both? What is the best way to configure it?

jdprovine by L4 Transporter
  • 4781 Views
  • 6 replies
  • 0 Likes

YouTube Safety Mode

Hello,Right now we are using Safe search enforcement for staff and students. We allow YouTube for both groups but require Safety Mode to be enabled. However, we have been running into a lot of issues with YouTube flagging videos as inappropriate even when they aren't, meaning a lot of videos won't work in Safety Mode. What I would like to do ...

Unblock IP address after threat triggered block-ip

Suppose a long time value was set for a threat where one had set the action to block-ip - say 10 minutesIs there any way via the CLI or GUI to see the list of IP addresses that are blocked due to the threat engine?Better still, is there a way to clear that list, or selectively clear IP addresses?

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks