This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4124 Views
  • 0 replies
  • 0 Likes

Resolved! 6.0.4 group mapping issue?

I started running into this group mapping issue after update a client to 6.0.4. We have a policy which matches on an Active Directory group for SSLVPN and what they can access. The same A.D. group is used in the Kerberos authentication profile to auth to VPN. After the update, these users are no longer matching on this policy. There is a policy ...

SDorsey by L4 Transporter
  • 2594 Views
  • 1 replies
  • 1 Likes

Policy schedule end notification

I have a policy scheduled to run for 50 days, is there a way to get a notification at the end of the schedule time period when the policy goes inactive/disabled?

jlg by L0 Member
  • 2906 Views
  • 4 replies
  • 0 Likes

Agentless User ID problems with IPv6

We are using an agentless user id system with four domain controllers. IPv4 and IPv6 is used inside and outside our organization. The PA box fails to identify users that run IPv6. Turning off IPv6 on the Windows clients fixes the problem. The problem is intermittent so it is hard to track down. Running 6.0.3 software.

rlawsha by L1 Bithead
  • 3052 Views
  • 4 replies
  • 0 Likes

Dropbox Uploaders

I've noticed that when using the dropbox basic uploader the filenames are logged under data filtering correctly however when you drag and drop files into dropbox the filename is recorded as "chunked_upload".Is there a way to figure out the actual file name or enforce the basic uploader? It's nice to be able to see the actual file names of upload...

depps by L1 Bithead
  • 3471 Views
  • 2 replies
  • 0 Likes

Palo Alto support Windows Server 2012 R2?

Hi,At this moment we user Userd-ID agents on our WIndows Server 2008 R2 AD servers. But we want to upgrade all the servers to Windows Server 2012 R2. Does Palo Alto already support userd-ID agents on Windows Server 2012 R2 and what firmware needs to be installed on the firewall?

ZEBIT by L3 Networker
  • 3567 Views
  • 4 replies
  • 0 Likes

HA Split Brain After Upgrade from 5.0.8 to 6.0.3

We have a pair of 5050s that we recently tried to upgrade, however we ran into an issue where once both of the PANs were upgraded they went into split brain. Its currently setup with some basic HA active/standby settings for 5.0. so I'm not sure why this would change in 6.0.3. We had to roll back to stay within our maintance window. Has anyone e...

Palo GUI: Selecting lines (Multiselect)

Hello,I would like to put 20 FQDN Names in a Group ir directly in a policy.AAAA1AAAA2AAAA3AAAA4....AAA20You know what I mean, it takes a long time :=(( ... or there is a way how to select more names I do not know.Roman

rkra by L2 Linker
  • 3651 Views
  • 5 replies
  • 0 Likes

QoS on a sub interface

I see from previous discussion, QoS on a sub interface has been a request. I have a 3050 I'm working with and was wondering if there are any updates?

tharpham by L1 Bithead
  • 3998 Views
  • 5 replies
  • 0 Likes

Resolved! How to REJECT instead of DROP?

Try as I might, I cannot find a way to do the equivalent of the venerable iptables target REJECT --with-icmp-ureachable or --with-tcp-reset for basic firewalling on a 4020.This is handy for bouncing internal clients quickly, whereas DROP is better to make things slower for adversaries who are scanning our nets from outside.For example. If I want...

Priyan by Not applicable
  • 19400 Views
  • 11 replies
  • 1 Likes

Dynamic DNS URL Redirect Control

Hello,Most of the "Dynamic DNS" sites are categorized as Computer and Internet Info (PANDB). On occasion a device will get infected because of a Dynamic DNS redirect to a malicious site. The initial URL connection is through one of the DDNS sites. Because we allow "Computer and Internet Info", the connection is allowed to the final (malicious...

MGoodnow by L4 Transporter
  • 3064 Views
  • 1 replies
  • 0 Likes

Resolved! Is there anything in the works for pulling User-ID data directly from a MS NPS server

User-ID integration with Microsoft AD is great, and works nicely, but we have the bulk of our users using RADIUS to authenticate wirelessly with 802.1x, and we're using a Microsoft NPS server to do that job. These users' devices are not necessarily (and often are not) Windows domain computers, so the LDAP lookups aren't providing the needed info...

  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks