This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4139 Views
  • 0 replies
  • 0 Likes

Questiona about Opera-Mini Browser Application

Hi Guys,We have followed the below suggestion to block the Opera-Mini Browser applicationRe: Block internet access using Opera MiniHowever, during our test, although traffic log says its getting denied, but users can get to the first or second page on the porn websites and then it blocks.Is there any other ways to block this application complete...

MelLi by L2 Linker
  • 2628 Views
  • 1 replies
  • 0 Likes

ISP Redundancy Configuration Assistance

Hello All,We recently contracted with a second ISP for redundancy. I have been looking for instructions on how to set this up, but have not had much luck. I did find the following articles, but none of them actually show how to completely set it up:How to Configure ISP Redundancy and Load Balancing This one comes close, but some important ste...

Grubbsy by L2 Linker
  • 5102 Views
  • 5 replies
  • 0 Likes

Resolved! Internet Games

I have noticed that there isn't a lot of games listed in the application database. I really don't want to block a bunch of ports as they might be needed by something else, so I was wondering what is the best way to block certain Internet games? Specifically, I need to block Halo and Minecraft. Any suggestions would be greatly appreciated.Jon

irishjd by L1 Bithead
  • 8035 Views
  • 7 replies
  • 0 Likes

Resolved! Captive Portal force URL Redirect?

All,We're currently using Captive Portal to present a terms page to our guest users which once they accept they're able to browse, etc. It's been asked if we can forcible redirect users to a particular URL once they accept our terms, but from what I can tell that doesn't really seem to be an option.So, is this a feature request, or am I missing ...

steveo by L3 Networker
  • 5395 Views
  • 2 replies
  • 0 Likes

FTP passive mode issue

Hello All,I was read somewhere on this forum similar article from October 2014, and seem that problem with passive ftp was on new content ID. However some time passed since, I have issue with ftp passive mode on my VM-100 (panos 6.0.5, content ver. 483-2549..). I catch traffic with pcap on pan directly (all stages) and noticed that had drop stag...

Tician by L3 Networker
  • 10385 Views
  • 3 replies
  • 0 Likes

Resolved! URL Whitelist Nightmare

I've tried without luck to add the URL 'addons.mozilla.org' to a whitelist. This URL falls under the 'shareware-and-freeware' category. This category is blocked. That's why I need to specify this explicitly in the whitelist. It just won't work. My monitor tab shows it is allowed for that traffic, but looking at logs for URL filtering, I see it b...

Bocsa by L3 Networker
  • 7934 Views
  • 10 replies
  • 0 Likes

Zero-day vulnerability in Adobe Flash, CVE-2015-0313

Vulnerability Coverage:Wildfire AV - WF 52532 (today) (PAN-OS 5.0+), and AV 1478 (tomorrow). Virus/Win32.CVE-2015-0313.a IPS Signature- Planning to release with 2/3 IPS signature releaseURLs associated with Malicious SWF samples:Malicious domains added to PAN-DB/malware already (PAN-OS 5.0 +) CnC/Spyware:Malicious DNS signatures added for domain...

Enabling forward trust certificate

Hi all, I'm hoping someone can assist. I can't enable the Forward Trust option for a cert that I generate using either a self-signed CA or 3rd party CA. The check is either greyed out or it's an option but doesn't keep the check after I hit OK. Any idea on how to get this working?Thanks!

Resolved! Error upgrading ESM to 3.1.3

Greetings all-I am trying to upgrade an ESM server from 3.1.2 to 3.1.3. When I run the installer, I get the below error message. I have ensured to run it as administrator. I have even tried disabling UAC, removing the AV agent and rebooting.Thoughts?

SDorsey by L4 Transporter
  • 3040 Views
  • 1 replies
  • 0 Likes

UniDirectional Link Failure Detection without UDLD

Hi,Does anyone know the network appliance could detect uni-directional link failure of SFP+ without UDLD?I tried the test with PA-5060 and Juniper-EX,but SFP+s kept link-up cause TX might continue to shot laser when RX came not to receive laser from peer.I though it is general problem as SFP+ and UDLD has been defined.But our customer said it co...

komure by Not applicable
  • 4168 Views
  • 1 replies
  • 0 Likes

Blocking Facebook apps without ssl policy

We are trying to let users to have read-only access to Facebook' but not allow them do posting or download anything from it. We don't have SSL policy. Can you block Facebook posting with you SSL policy decrypt traffic?Thank you

awarsame by L1 Bithead
  • 3440 Views
  • 2 replies
  • 0 Likes

URL filtering Profile - URL in allow list does not work.

Hello,PAN-OS 5.08I have a security police to which applied a URL filtering Profile.I have blocked the category "social-networking" and I need to allow "twitter.com"I tried putting the URL in allow List: *.twitter.com *.twitter.com/*www.twitter.comBut it does not work.I have also tried creating a Custom URL Category but neither works.How can I do...

SOC_CSG by L4 Transporter
  • 4309 Views
  • 3 replies
  • 0 Likes

Install GlobalProtect

Hi! I have problem with installing GlobalProtect in our environment. We are using System Center2012 to to install the GlobalProtect64.msi with installation behavior “Install for user” butthe problem is that it only creates StartMenu ico for that user. The next userthat logs in can’t find GlobalProtect in the start menu. The next user can’t see...

unygren by Not applicable
  • 5519 Views
  • 4 replies
  • 0 Likes

Active/Active performance benefit/impact

Hi,Anybody currently using or having had tested HA in an active/active mode with any insights into the the performance benefit or impact of such a setup?Is the additional complexity worth the effort and is the throughput effectively increased compared to active/passive?Any info or advice would be appreciated!

  • 24340 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks