General Topics

🚀 Join us at Palo Alto Networks Headquarters for Ignite - November 14, 2024 🚀

Enterprises are embracing AI to revolutionize their operations, but with innovation comes new cybersecurity challenges. That’s why you can’t miss Ignite on Tour!

This event is your gateway to exploring how AI is transforming cyber defenses. Join us

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Convert from vwire to layer 3 for globalprotect.

I'm trying to put together a plan of action to get globalprotect to work for us. I have a work ticket open with PA. Our PA firewall is currently deployed in a VWire setup, on the lan side of our router. Here are my big questions for getting this acco

...

Resolved! SYN-Flood packets dropped by unknown rule

Hi everybody,

we got a lot of syn-packets which were dropped by the rule any-allow. But we haven't this rule, so is it a inbuilt rule and

why do i need a DoS-Rule to be protected against Syn-Floods if there is a builtin rule.

Cheers klaus

Resolved! Decryption policy Issue

Hi All,

I'm just trying to configure decryption. because I'm facing Issue while blocking applications(not all the applications got blocked as the policy supposed to do).

First of all, I'm using Trusted CA, and here you are the steps I followed To gener

...

Resolved! GlobalProtect with NATet interface

I have a PA200, and is using eth1 for outside (internet) and eth2 for inside. I'm NATing from eth2 to eth1, as normal.

Now i want to have the management https address on the eth1 for several reasons.

At home its just for testing, but at my office i hav

...

dynamic updates are downloaded but not installed

hey

we have a cluster that is configured to download and install updaetd but we can see that it is only downloading them and doen not update,

where can i find related logs on the device? (PAN-OS 5)

Dropbox (again)

Hello,

We have a requirement to do the following

Block dropbox for some users

Allow dropbox web for some users but block app - use ssl decryption to control uploads

Allow ALL for 2 VIP's - no decryption required

Is this at all possible?

Resolved! Panorama 5.1 with fw PanOS 4.1.14

Hello Everyone,

We deploy a panorama 5.1.4 and 2 fws are managed on it, one of the fws is running PanOs5.0.8 and another one is running 4.1.14. We can see the fws normally on Panorama -> Managed devices and Templates tabs. however when I finsh a ldap-

...

Resolved! DHCP Service

In the PA software support Boot Server Host Name and Bootfile Name options?

Outgoing SMTP

It used to be best practice to not allow outgoing SMTP except from the primary server. I am finding more and more applications have a dependency of allowing SMTP outgoing. I am curious what others are doing with regard to these dependencies.

Thanks,

...

Upgrade to PANOS 6.0.0

Have anyone upgrade PANOS to 6.0.0 already ? any problems ?

I wonder why version 6.0.0 release date (01/19/2014) is older 5.0.11 (01/29/2014).

Regards,

Restricting users to Internet only

How can I restrict a certain group (ip range\VLAN) to internet only access.? I don't want them to get to internal network shares with unfamiliar devices. We use Aruba Clear pass to authenticate and assign IPs and the PA 500 sits on the parameter. I

...

Resolved! We had a vendor run a vulnerability report I was hoping someone could decipher for me?

Not sure what this means and how to alleviate it? The firewall is running 4.1.13.

SSL/TLS Protocol Initialization Vector Implementation Information Disclosure Vulnerability

Synopsis : It may be possible to obtain sensitive information from the remote h

...

But it was not switched with the following error message.

I tried that fw reboot. but it was not still switched with same error message.

Please let me know r

...

Discussions

🚀 Join us at Palo Alto Networks Headquarters for Ignite - November 14, 2024 🚀

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

Convert from vwire to layer 3 for globalprotect.

Resolved! SYN-Flood packets dropped by unknown rule

Resolved! Decryption policy Issue

Resolved! GlobalProtect with NATet interface

dynamic updates are downloaded but not installed

Dropbox (again)

Resolved! Panorama 5.1 with fw PanOS 4.1.14

Resolved! DHCP Service

Outgoing SMTP

Upgrade to PANOS 6.0.0

Restricting users to Internet only

Resolved! We had a vendor run a vulnerability report I was hoping someone could decipher for me?

Resolved! Application Still showing up after removal from Security Rule

GlobalProtect Host State Does Not Detect Antivirus

Resolved! Not switch url-filtering vendor from brightcloud to pan-db in panos 6.0.0

Difference Between 1 and 2 VM-Series Firewalls Without Subscription Licenses

Where is the documentation that describes Syslog Log types formats for Palo Alto Firewalls?

Clear Cache DNS on Panorama / Firewall

Panorama hypervisor support

Google street view in maps.google.com not working

Re: List of System OIDs

Re: Issue with PA-1410 platform disk size

Bug Search Tool

Re: New Panorama deployment - commit error

How to limit concurrent GlobalProtect connections per user

Unlock your full community experience!

Resolved! SYN-Flood packets dropped by unknown rule

Resolved! Decryption policy Issue

Resolved! GlobalProtect with NATet interface

Resolved! Panorama 5.1 with fw PanOS 4.1.14

Resolved! DHCP Service

Resolved! We had a vendor run a vulnerability report I was hoping someone could decipher for me?

Resolved! Application Still showing up after removal from Security Rule

Resolved! Not switch url-filtering vendor from brightcloud to pan-db in panos 6.0.0