General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone, Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June. This event will cover the following points related to the newly unveiled Zero Trust Network Security: Secure access to the right applicat...

seattle-launch-live-community-r2b-1100x120.jpg
jdelio by Community Team Member
  • 486 Views
  • 1 replies
  • 4 Likes

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 18201 Views
  • 41 replies
  • 32 Likes

Exchange 2010 - Applications Required?

We have a Palo Alto in front of an Exchange 2010 CAS server.The Palo Alto is in a back-to-back config with a "dumb" firewall in front of it that only allows port 443 inbound.The Palo Alto has the SSL cert from the Exchange box on it, so does SSL insp...

XMP API in Excel for reports

Hi All,Has anyone used the xml api in MS Excel 2010, to create traffic reports, pulling data from Panorama, and matchingUser-ID names to LDAP UID tags?I need to split traffic reports for divisions, based on cost center codes that will be LDAP, or AD ...

KatanaNZ by L3 Networker
  • 431 Views
  • 1 replies
  • 0 Likes

QoS profile Class names

Hi All,Can the class names ( 1-8 ), be changed, to names instead of numbers?Primarily I'm interested in this for the real time vies via QoS statistics, so its easier to see in the graph, what colours and namesare actually for what application groups ...

KatanaNZ by L3 Networker
  • 343 Views
  • 1 replies
  • 0 Likes

OSPF Resets

While doing some testing on a PA pair at a new site, I noticed that at least one type of configuration change would apparently cause OSPF to reset and lose all of the routes out of the site. Specifically, I was enabling and disabling IPv6 on interfac...

cosx by L2 Linker
  • 352 Views
  • 1 replies
  • 0 Likes

MAC Destination Problem (4.0.4)

We have a new pair of PA-2050 (HA).The last two weeks works fine with 4.0.1 but last Thursday I upgraded them to 4.0.4 and two of our networks had problems to go trought the firewalls.I saw in the traffic monitor that the rules were ok and that traff...

Resolved! no-decrypt list?

I am looking for a list of sites that are known not to work with SSL decryption but have been unable to find anything. I would like to see a KB article published or a do-decrypt forum so users can post what they find. Citrix published IP addresses fo...

ksupport by L0 Member
  • 921 Views
  • 1 replies
  • 0 Likes

Dealing with Drop Box

Hi,Can some one help as we are new to this.We want to blook and application call Drop box, Our users use this application to pull data from external networks wich we want to allow but we want to block drop box sharing our data off our network. could ...

payntonm by Not applicable
  • 1585 Views
  • 2 replies
  • 0 Likes

Activate Zone Protection with default values

Hello,How safe is to activate Zone Protection with default values in terms of having problems with blocking normal traffic afterwards? Is there a way to measure from Palo Alto (3.1.7) the total incoming packets/sec to our network in order to be able ...

Can't authenticate users in nested groups (AD, Radius)

Hi All,I have a rule to allow access to Facebook. The rule works if I list individual users, but not groups.We have a single forest with 2 child domains.Universal Group "FB Allowed" has the following groups as members: "OU1 FB Allowed" and "OU2 FB Al...

pan agent

Hello Guys,sorry to bother you.have a question, for Pan agent to identify users traffic. does it use only the management port ? ? ?regards,bp

nettobe by L0 Member
  • 554 Views
  • 3 replies
  • 0 Likes

FIPS mode algorithm decryption?

The FIPS Mode notes state:"Non-FIPS approved algorithms are not decrypted and are thus ignored during decryption"Can someone clearify what exactly this applies to, and what is not decrypted?

KatanaNZ by L3 Networker
  • 1293 Views
  • 4 replies
  • 0 Likes

Resolved! OSPF and NAT

Hi,I'm running OSPF on my PA-2050 box.I'm doing NAT for a specific subnet and I would like to distribute this subnet with OSPF.Original subnet 192.168.21.0/24NAT subnet 192.168.221.0/24Neighbor routers only knows 192.168.21.0/24, how can I send the N...

pboegli by L1 Bithead
  • 544 Views
  • 2 replies
  • 0 Likes