This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! How to block dodge chrome?

Hi.. allDo you know "dodge chrome"?This is bypass the url filtering by the modified google chrome.(http method : get \r\n )I do not find the related signature in palo alto applipdia.(app-id , ips , virus)How to block dodge chrome?

wooki by L1 Bithead
  • 4739 Views
  • 4 replies
  • 0 Likes

Trouble getting User-ID from MS Radius (NPS) using script

I am part-way in matching up IP addresses and user names, but struggling with the second......I'll explain.In our lab we have a PA5020, and I am running the User-ID agent on a VM close to the firewall. It successfull reads the AD credentials etc, and those users who authenticate with AD are showing correct names against their IP addresses The t...

how to work decryption policy?

Hi.. all,how are you today ? any one please describe about decryption policy and how log bits (0-2048) support? :smileyinfo:Thanks Satish

Satish by L4 Transporter
  • 7625 Views
  • 7 replies
  • 0 Likes

Resolved! CryptoLocker Reporting

I realize that as of me writing this, PA has ~123 variants of *.crilock.* registered. Is there a way to report on vulnerabilities by name rather than ID? It would be nice to be able to publish a report saying, "Our PA stopped CryptoLocker this many times" without having to build a custom report with 123 different threat IDs.

mrsold by Not applicable
  • 3072 Views
  • 1 replies
  • 0 Likes

Fortinet to PA migration

Dear All,I have downloaded the PA migration tool 2.1 but there is no option for Fortinet?Is PA 2.1 not supporting it??Please helpThanks & Regards,Nitesh

NiteshS by L2 Linker
  • 5182 Views
  • 6 replies
  • 0 Likes

Resolved! Need error information

I received a critical notification in the system log statingEvent:"Abnormal system memory usage detected, restarting mgmtsrvr with virtual memory 853744 KB.”I have been unable to find any documentation explaining what this error means or why it may have occurred. Could a Palo Alto representative please give me additional information about this e...

Rauen by L0 Member
  • 4710 Views
  • 6 replies
  • 0 Likes

Resolved! Report Generation

Hi All,there is a site for the partners for uploading the logs for generation of the reports for the client.Just wanted to know if there is something like that??Thanks & Regards,Nitesh Saxena

NiteshS by L2 Linker
  • 2907 Views
  • 2 replies
  • 0 Likes

Resolved! Internal NAT failover

Hello all,I was wondering if a certain scenario is possible through a Palo Alto PA-3020. Say we have a single ISP with an internal NAT rule pointing to internal server A that is accessible by anyone in the outside world. If server A ever goes down (or we take it offline), the internal NAT rule will failover to another internal NAT rule pointin...

ClintL by L2 Linker
  • 10016 Views
  • 10 replies
  • 0 Likes

Resolved! Pan-OS 6.0 Download fails on 5050

I have a PA-5050 and ran the "check now" for software. I am on version 5.0.10 and the only version I see for 6 is 6.0.1 (do not see 6.0.0)When I try to download this version I get the following error message:Details: Successfully downloaded Preloading into software manager The required 6.0 base image mist be loaded...

pko by L1 Bithead
  • 8414 Views
  • 10 replies
  • 0 Likes

SUPPORTED/UNSUPPORTED SFP

Trying to find any documentation on supported SFPs for PA-4020. Having an interface issue and I am tryiing to determine if the "unsupported spf detected" error I am seeing is related.

bbenko by Not applicable
  • 7335 Views
  • 2 replies
  • 0 Likes

Resolved! commit hangs on 98%

Hi,I had an antivirus download/install job that had "download in progress" for several days. I restarted device server and management server,after this the antivirus downloaded and installed.Now when I try to commit policy changes, status says 98% for several hours (+5).Any way I can troubleshoot this?CLI commands used:> debug software restar...

jsk by L1 Bithead
  • 10621 Views
  • 8 replies
  • 1 Likes

Resolved! Setting up user-id

I have the agent on a member server talking to my domain controllers. I can see in the agent logs and monitoring its collecting IP/usernameI can see the PA box as a connected device.I have the server the agent is running on setup under user identification > user-id agents on the PA box and that has a green bubble for connected.but when I look...

Resolved! Global Protect not passing last login information?

We have a few vendors who have AD accounts, but only connect to Global Protect to SSH to specific servers. They don't use any other domain resources. When we look in the domain controllers there is no last login information. So our policy to disable unused accounts after 21 days keeps disabling active accounts.Anyone know how to get it to pas...

rgreens by L2 Linker
  • 6471 Views
  • 7 replies
  • 0 Likes

Not able to access th URL

Hello Team,We are not able to access the below URL :tn3270e.amadeusprintservices.comAs per the website support team they have advised to enabled the below port to access the URL :TCP9876,443,80We have already allowed the web browsing traffic for the network . what to do for 9876 port.Please advise.

tiwara by L3 Networker
  • 5813 Views
  • 6 replies
  • 0 Likes

Resolved! Do I have a split - full tunnel issue

I'm a system admin, and have also become the Network guy. This is okay: it's a small network. I'm still learning.I have a PA-200, installed by a VAR, in a colocation rack. Rack is filled with windows and linux hosts. I need to alter the VPN so that when my users in the office connect from their laptops, they can see the systems (ssh, rdp, ht...

bdunbar by L3 Networker
  • 5241 Views
  • 7 replies
  • 0 Likes
  • 24381 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks