This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4166 Views
  • 0 replies
  • 0 Likes

Dropbox Upload Block Rule not working

I've created a rule to allow only Dropbox downloads and not allow uploads. The rule doesn't appear to be working. Steps I've taken are below:Generated self-signed SSL certificateConfigured SSL decryption Rule for 'online-personal-storage' URL categoryCreated File-Blocking profile to block upload and allow downloadApplied File-blocking profile to...

Bocsa by L3 Networker
  • 7458 Views
  • 9 replies
  • 0 Likes

Resolved! Trigger throttling based on traffic?

I have heard of others, instead of blocking torrent traffic, allowing it. When it is detected it someone how throttles ALL traffic from that client until the torrent traffic is stopped.As best I can tell we do not have that option of available with the AP. Correct?Thanks,Bob

BobW by L4 Transporter
  • 6051 Views
  • 5 replies
  • 0 Likes

Connect client at boot time

OrThe Further Adventures of a Networking Neophyte PA-200Software Version: 6.0.1GlobalProtect Agent 2.0.4Now what I need, and desire, is to have client PCs, in an office remote from the data center, login to the domain controller -in- the data center. They would like this as transparent as possible, i.e. to present that domain at login via the s...

bdunbar by L3 Networker
  • 6477 Views
  • 9 replies
  • 0 Likes

Resolved! Authorization code issue

Hi,I’m facing problem when trying to activate licenses with the authorization code We have 2 PA NFR 3020, I succeed to activate licenses in the first one , in the second one it told me that the authorization code is already active ( knowing that paloalto send us the same auth for both)the screenshot below Regards,Sarah Hi,I’m facing problem wh...

atelcom by L3 Networker
  • 5749 Views
  • 4 replies
  • 0 Likes

Skype blocking

I have found in testing that with blocking, the application 'skype' and 'skype-probe' if the user is not logged in the policy will block the user from signing into skype, but if the user is already signed into skype and plugs in behind the palo policy, the traffic log shows skype being blocked, but the user is still able to IM. Am I missing som...

markk96 by L3 Networker
  • 8562 Views
  • 15 replies
  • 0 Likes

Resolved! A/P HA with more than 1 passive unit

Hi,We have a customer looking to extend their DR capability to a 2nd physical site (Site B).Currently they have 2 PAN 3050 firewalls in an A/P cluster at Site A. As the new site will be connected via fibre we will split the cluster across both sites.Site B will very much be a cold standby site with no production load under normal conditions. We ...

Resolved! Block Threat and URL Filtering Stats

I was trying to find how many threats the PA is blocking and how many URLs it is filtering over a set period of time, so show management how much work these devices are doing.Is there any way to pull this information off the PA?I have a PA-5050 running 4.1.15, a PA-5050 running 5.0.5 and PA-5060 running 5.0.6.Thanks!

Reports that make sense to HR

Do any of you have a custom report that you are willing to share for HR requests? The current report I came up with is okay, but when I sort by Date, it's alphabetical, not chronological. Fri Oct 3 shows before Fri Sept 12. Is there a way to get the date to sort correctly that I'm missing?

Categorisation mismatch Test url categorises but debug dataplane url resolve path doesn't

Hi,Equipment: PA3020, Software: 6.0.2, Filtering BirghtcloudWe have a situation where large numbers of web sites are being categorised as "unknown.". Upon investigation ( case has now been raised with PA), we find that the Test url <url> command will get the correct categorisation. However the user trying to use the same url will be block...

Resolved! IP address used for Common Name in SSL Forward Proxy Cert

I'm getting ready to generate a CSR for an SSL Forward Proxy Cert and I wanted to know which IP address should I use for the Common Name. I would like to inspect SSL traffic that is sourced from both my Trusted zone as well as my DMZ zone.1) Should I use the IP address associated with my Trusted zone?2) If I use the IP address of my Trusted zon...

Resolved! inbound NAT server load balancing

Hello I have 2 exchange server in a DMZ, and I would like apply an inbound NAT with a load balancing like a simple round robin.we need to used a tier load balancer to do that.My question is some of you are interresting in a feature request, to implement a simple feature of load balancing in PANOS?

Gregoux by L4 Transporter
  • 4327 Views
  • 2 replies
  • 0 Likes

Panorama M-100 HA - Adding log collectors in mixed mode

Hi,I'm having a problem with adding the log collectors in a Panorama M-100 HA setup. I have two M-100 appliances, both in mixed mode. HA is configured and is working as expected. The problem is that I cannot get M-100 #1 to connect to the log collector on M-100 #2 and vice versa. (see attached photo)I'm currently running 6.0.2, and both devices ...

torm by L4 Transporter
  • 5725 Views
  • 5 replies
  • 0 Likes

Application Dependency Warnings

We have begun the process of globally allowing some applications for the entire enterprise. At this point, these are (fairly) innocuous applications which are largely dependent on web-browsing / ssl. Two questions:1. When verifying if a dependent application is available, does the firewall check the policy from the top down or just rules belo...

  • 24341 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks