General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Is it possible to create reports or graphs displaying type and amount of transported data, sources and dests?

Where to start with this topic:I can monitor the bandwith with SNMP and PRTG Network Monitor.Now I'm interested in data >>>PA can provide <<< about types of data, sources and destinations?I would like to check e.g. this:How much VoIP is running through the PA?Who is downloading most data at the moment.a.s.o.I know there is sflo...

rkra by L2 Linker
  • 4285 Views
  • 5 replies
  • 0 Likes

is it possible to forward clients with paloalto for websense ?

Hi all,There is a topology like below.Clients using Cisco vpn and they are enforced to use some proxies(enforced from Active Directory)There is a Local Websense but it cannot be used because of that enforcement.Can Paloalto firewall decrypt that SSL traffic and make websense available to use ?is that possible ?Cisco Any Connect Client-----------...

Resolved! Failure to Delete a Certificate

PA-200PAN 6.01I imported a certificate, but failed to do something correctly. I wanted to delete the cert, and start over. When I select the certificate 'ServicesVPN' and click Delete I'm told ... 1- Failed to delete Certificate - ServicesVPN. ° ServicesVPN cannot be deleted because of references from: ° deviceconfig -> system -> sy...

bdunbar by L3 Networker
  • 10418 Views
  • 12 replies
  • 0 Likes

Resolved! FTP Server: No Allow policy but 3-Way-Handshake and Username prompt possible?

There is no allow policy from Untrust to DMZ to contact the FTP Server.There is an deny policy instead as a last policy between ZONE Untrust und ZONE DMZ.But if I try to connect to FTP Server a connection is estabilished and my FTP Server asks for a Username.This is the end of communication - but is anyone allowed to connect to my FTP Server?Roman

rkra by L2 Linker
  • 5143 Views
  • 7 replies
  • 0 Likes

Resolved! Could I use a Asian 2 bytes charset on CLI when I configure?

HelloI tried to configure on CLI using 2bytes Asian charset as below.As you see below when I configure 2bytes Asiasn charset to description column and then PAN showed error message is Server error : Malformed Request.So I questioned weather PAN could be configured using Asian charset on CLI or not.admin@PA1(active)# set rulebase security rules r...

Roh1 by Not applicable
  • 5127 Views
  • 3 replies
  • 0 Likes

Disable SSL - IPSEC only

Hi,a quick one: is it possible to disable SSL VPN at GP? So users can only connect via IPSEC...I know its possible to do it the other way but we like to have a IPSEC only portal/gateway.

Hithead by L4 Transporter
  • 11065 Views
  • 12 replies
  • 1 Likes

Resolved! URL Filtering Category is "Unknown"

guys,i have a problem in our Palo alto 5050, it shows a lot of URL websites with Category "unknown", although it shows the right category type on bright cloud website,any help ??,Regards,

ISA 2006 proxy replacement

I want to use my PA as a proxy for the internet and want to remove my current ISA 2006 proxy server. I was curious what methods others are using and if you have any detailed step by step instruction how to configure this.

infotech by L4 Transporter
  • 15107 Views
  • 30 replies
  • 0 Likes

big disparity between Detailed and Summary logs

I ran 2 Panorama reports, using the detailed and summary databases, on application usage over the last 24 hours (simple reports, just top Applications ranked by bytes, no filters) the results were completely different e.g the figures for web-browsing:Summary: 720GDetailed: 3.3TThe detailed figure looks correct, why is the summary figure so out o...

Resolved! Is there a global "enable SNMP" switch?

I'm trying to get some data about the amount of data on the interfaces.Device/ Operations/ SNMP configured, SNMPV2 enabled.SNMP on my Trust interface per IF Profile enabled.I still can not get SNMP Data.Roman

rkra by L2 Linker
  • 2992 Views
  • 3 replies
  • 0 Likes

Resolved! Decryption Policy - Blocking things such as Facebook

We recently discovered that due to Facebook now being https:// that my users can get out to Facebook when using Internet Explorer. This actually cause quite an issue due to a bug also getting in. How do I configure the decryption policy to get in to the session and block the traffic? From what I'm reading I have to configure this to block http...

kaysun by L1 Bithead
  • 3080 Views
  • 2 replies
  • 0 Likes

BrightCloud® Real-Time Anti-Phishing Service

Does anyone know if the BrightCloud® Real-Time Anti-Phishing Service works with Palo Alto NGFW's? (with the correct license of course?)BrightCloud Real-Time Anti-Phishing Service | Webroot BrightCloud

Smi12 by L2 Linker
  • 4657 Views
  • 3 replies
  • 0 Likes
  • 24402 Posts
  • 123 Subscriptions
Top Solution Authors
Labels