This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4234 Views
  • 0 replies
  • 0 Likes

Resolved! SSL Decryption - getting spoof cert out to BYOD personal devices

We are in the process of setting up SSL decryption. We have a BYOD wireless network that needs to have SSL decryption turned on. Students can connect with their personal devices, so we need to be able to block Facebook, porn, etc.that are coming in over HTTPS. We've got it working with organization-owned equipment but are having hang-ups with...

dannon by L3 Networker
  • 12517 Views
  • 8 replies
  • 0 Likes

No GUI Access: FW-6.1.0: Session Time Out

I have a PA-200 with 6.1.0. I can SSH in fine to mgmt. When I try GUI, I get to the login page. When I login with correct credentials it says Session Timed Out. I think it's a disk space issue. When I show system disk-space SDA2 is at 100%. Everything looked to still be working fine behind the scenes, ie traffic flow until I did a full rest...

Access only to Office 365

Hi,We have many client computers with no internet access (only intranet and email).Since we are migrating our email to Office 365, client computers need access to Office 365 (via Outlook and Web browser). Not only mail services, but also licensing, onedrive, ... - the full scope of MS Office 365 services.How can we achieve that?Thanks.

spopovic by Not applicable
  • 9421 Views
  • 8 replies
  • 0 Likes

Resolved! PBF failover happens but users still unable to browse

hi,i have a pa-3020 with two ISP links, my PBF configuration as follows :for testing when we disable the link for ISP-1 it did a failover but actually no internet browsing, on the NAT there is already two nat policy for each ISP but it did not trigger the nat untill i moved the nat policy for ISP-2 on top then only it works, any hint where could...

No Wireless ?

It looks like none of PA has wireless (nothing on PA-200 or PA-500) , am I correct ? It's very disappoining

niuk by L3 Networker
  • 2499 Views
  • 2 replies
  • 0 Likes

Portal Status Connection initializing

I'm using LSVPN, after rebooting my satellite I can see Portal Status Connection initializing (Network->IPsec Tunnels->Gateway Info) But nothing happens, in the capture I don't even see actual traffic to portal even if I try to reconnect manually. Please advise

niuk by L3 Networker
  • 4649 Views
  • 3 replies
  • 0 Likes

Resolved! scheduled report - problem

HelloI have group of reports that are gnerated every week.Every custom report I tested using "run now"before I let them work scheduled.My report looks like:and the output:but output from pdf that I got on email:as You can see, the "Name" and "ID" column is missing.My small investigation give some dubt. Why this (and one before) report has differ...

_slv_ by L4 Transporter
  • 3603 Views
  • 3 replies
  • 0 Likes

Windows DNS Server behind PA

Did a PA install last night, the client had a public facing DNS server. the DNS server had a public IP before we moved it behind PA to nat it. while it was outside firewall with public IP the DNS queries from internet worked fine without any issues. Once we moved it behind PA and gave it static one-to-one nat with proper security policies for dn...

Wildfire options

Hey guys,As I'm sure most of us are, I'm seeing a huge string of issues related to Cryptolocker lately.I've reviewed the several articles floating around on how Palo Alto units deal with this, the fact is I'm seeing spam emails get through encouraging users to download executables which always come up as clean as far as PA's build in AV goes. Wi...

daraco by L0 Member
  • 3385 Views
  • 3 replies
  • 0 Likes

Resolved! how do i remove a rule that was configured on PanOS via Panorama?

Hi,I have a problem deleting a rule that was created on PanOS via Panorama.I have PanOS firewall (5.0.0) that was managed by Panorama (5.0.0), then i added the PanOS to a DG and created some rules. after a while someone deleted the DG and committed to the Panorama.now i have a PanOS firewall with a DG rule that i can't remove. does someone know ...

Zorik by Not applicable
  • 4815 Views
  • 2 replies
  • 0 Likes

DNS TXT records, use and implications of blocking?

In the recent past my organization was hit with a relatively new DNS Amplification attack which uses a botnet hosting DNS services with a specifically crafted DNS TXT record. The spoofed requests specifically requested this record hosted on the botnet. After investigating I found articles online of the attack being used but with different TXT ...

Dz3015 by L4 Transporter
  • 4657 Views
  • 2 replies
  • 0 Likes

ssh (or any) threshold?

I'm experiencing a ton of hits over ssh to servers that must have ssh access. Is there a way to do threat assessment based on SSH, port etc – and then automatically shut the attack down? For example if a certain IP begins sending all that traffic on port 22 within a certain timeframe – we shutdown the traffic and blacklist the IP. What would ...

Regin detection

Hi All,I understand that this bit of spyware is not well understood as to it's ultimate purpose, very hard to detect and in fact, with the media converge it has had recently I am sure whoever coded this nasty has since changed it's code/behavior. But my question is, does or is PA able to detect any such traffic from this malicious code given tha...

JRussell by L3 Networker
  • 6006 Views
  • 8 replies
  • 0 Likes

Automatic backup - Palo Alto

I would like to know how to perform automatic backup of Palo Alto and automatically copy every morning for a server backup.Can you help me?best regards,Paul Aun

  • 24358 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks