This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4445 Views
  • 0 replies
  • 0 Likes

Using a VM100 at the perimeter

Hi,We are looking at deploying a VM-100 at the perimeter of our network. We currently have a PA-500 doing that job. It is incredibly slow on the management side of things and quite frankly, expensive when it comes to support renewals. Hence the thought of going to a VM-100. Our supplier has told us that Palo Alto does not recommend a Virtual ...

VM100 keeps rebooting

Hi all,We have a Palo Alto VM-100 running under ESXi 5.0 which up until this week has been rock solid. On Monday it rebooted itself. No config changes had been made for almost a month prior to this. It also rebooted itself twice yesterday and once so far today.The messages in the log are as below. Order is from bottom to top.Autocommit job f...

DavePalo by L4 Transporter
  • 10977 Views
  • 11 replies
  • 0 Likes

Memory usage

The device model is 3020.From the output of >show system resources, we have found that the memory usage is 3781100kIs it alarming high memory usage?

tac.in by L3 Networker
  • 6395 Views
  • 4 replies
  • 0 Likes

PA Functionality Question: Log NTLM Header

Hi Guys,With a PA-3020, can I log the NTLM username of an authenticated HTTP request?The situation:PA firewall is located between end users and proxy serverProxy provides NTLM authenticationCan I log the username of each NTLM authentication requestThanks,Cheers,Mel

MelLi by L2 Linker
  • 3331 Views
  • 2 replies
  • 0 Likes

Resolved! Daily Palo Alto Networks Reports

Hi Guys,I have a question about PA Daily Networks Report.On the last report we ran, the top five URL categories were the belowweb-advertisements 4,582proxy-avoidance-and-anonymizers 162unknown 70malware 65games 20Can anyone please help me to understand Web advertisements as the top URL - does PAN have an explanation for this category?Unknown - W...

MelLi by L2 Linker
  • 4115 Views
  • 2 replies
  • 0 Likes

Questiona about Opera-Mini Browser Application

Hi Guys,We have followed the below suggestion to block the Opera-Mini Browser applicationRe: Block internet access using Opera MiniHowever, during our test, although traffic log says its getting denied, but users can get to the first or second page on the porn websites and then it blocks.Is there any other ways to block this application complete...

MelLi by L2 Linker
  • 2670 Views
  • 1 replies
  • 0 Likes

ISP Redundancy Configuration Assistance

Hello All,We recently contracted with a second ISP for redundancy. I have been looking for instructions on how to set this up, but have not had much luck. I did find the following articles, but none of them actually show how to completely set it up:How to Configure ISP Redundancy and Load Balancing This one comes close, but some important ste...

Grubbsy by L2 Linker
  • 5208 Views
  • 5 replies
  • 0 Likes

Resolved! Internet Games

I have noticed that there isn't a lot of games listed in the application database. I really don't want to block a bunch of ports as they might be needed by something else, so I was wondering what is the best way to block certain Internet games? Specifically, I need to block Halo and Minecraft. Any suggestions would be greatly appreciated.Jon

irishjd by L1 Bithead
  • 8187 Views
  • 7 replies
  • 0 Likes

Resolved! Captive Portal force URL Redirect?

All,We're currently using Captive Portal to present a terms page to our guest users which once they accept they're able to browse, etc. It's been asked if we can forcible redirect users to a particular URL once they accept our terms, but from what I can tell that doesn't really seem to be an option.So, is this a feature request, or am I missing ...

steveo by L3 Networker
  • 5475 Views
  • 2 replies
  • 0 Likes

FTP passive mode issue

Hello All,I was read somewhere on this forum similar article from October 2014, and seem that problem with passive ftp was on new content ID. However some time passed since, I have issue with ftp passive mode on my VM-100 (panos 6.0.5, content ver. 483-2549..). I catch traffic with pcap on pan directly (all stages) and noticed that had drop stag...

Tician by L3 Networker
  • 10715 Views
  • 3 replies
  • 0 Likes

Resolved! URL Whitelist Nightmare

I've tried without luck to add the URL 'addons.mozilla.org' to a whitelist. This URL falls under the 'shareware-and-freeware' category. This category is blocked. That's why I need to specify this explicitly in the whitelist. It just won't work. My monitor tab shows it is allowed for that traffic, but looking at logs for URL filtering, I see it b...

Bocsa by L3 Networker
  • 8096 Views
  • 10 replies
  • 0 Likes

Zero-day vulnerability in Adobe Flash, CVE-2015-0313

Vulnerability Coverage:Wildfire AV - WF 52532 (today) (PAN-OS 5.0+), and AV 1478 (tomorrow). Virus/Win32.CVE-2015-0313.a IPS Signature- Planning to release with 2/3 IPS signature releaseURLs associated with Malicious SWF samples:Malicious domains added to PAN-DB/malware already (PAN-OS 5.0 +) CnC/Spyware:Malicious DNS signatures added for domain...

Enabling forward trust certificate

Hi all, I'm hoping someone can assist. I can't enable the Forward Trust option for a cert that I generate using either a self-signed CA or 3rd party CA. The check is either greyed out or it's an option but doesn't keep the check after I hit OK. Any idea on how to get this working?Thanks!

Resolved! Error upgrading ESM to 3.1.3

Greetings all-I am trying to upgrade an ESM server from 3.1.2 to 3.1.3. When I run the installer, I get the below error message. I have ensured to run it as administrator. I have even tried disabling UAC, removing the AV agent and rebooting.Thoughts?

SDorsey by L4 Transporter
  • 3090 Views
  • 1 replies
  • 0 Likes

UniDirectional Link Failure Detection without UDLD

Hi,Does anyone know the network appliance could detect uni-directional link failure of SFP+ without UDLD?I tried the test with PA-5060 and Juniper-EX,but SFP+s kept link-up cause TX might continue to shot laser when RX came not to receive laser from peer.I though it is general problem as SFP+ and UDLD has been defined.But our customer said it co...

komure by Not applicable
  • 4245 Views
  • 1 replies
  • 0 Likes
  • 24375 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks