General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 14562 Views
  • 1 replies
  • 4 Likes

Resolved! SNMP QoS

Wondering if it’s possible to get QoS (per queue) throughput stats via SNMP?

Captive Portal and speed limit for users


Hello

Now I have 3 Mikrotics routers with WiFi and HotSpot service connected to dedicated VLAN on PA200. On the HotShot I have profile that limiting download/upload transfer to 500kb/s per user.

Id like to change Mikrotic routers to AP mode and on PA20

...

_slv_ by L4 Transporter
  • 1309 Views
  • 3 replies
  • 0 Likes

Resolved! Panorama does not display saved configurations

Ok,  I just getting started on Panorama, and I have 10 FWs in Panorama now.

When I click on Managed Devices, then go to Backups, I see the history of my past committed FW configs listed by version number.

I should ALSO be able to see the saved configur

...

scantwell by L4 Transporter
  • 929 Views
  • 2 replies
  • 0 Likes

Rule to allow Client based email

I'm trying to figure out the best way to write a rule to allow mobile devices access to their personal email.  Browser based email works fine since it's mostly on 443(or 80) which we allow out.  But what about Client based email not on 80/443? For ex

...

jambulo by L4 Transporter
  • 2193 Views
  • 1 replies
  • 0 Likes

Getting around url redirects and safe search

Hello,

I'm fighting a losing battle trying to get forced safe search working.  I'm currently trying to put a dans guardian and squid filter on the outside of my PA to handle just searches to as many search engines as I can find redirects for.  

Has an

...

mlaporte by L1 Bithead
  • 1238 Views
  • 3 replies
  • 0 Likes

Resolved! How to discard changes on a PAN?

Let's say I log into the management website of the PAN and make a couple changes to see the way it would look in the ruleset.

If i want to discard those changes, are my only options to "revert to last saved configuration" to make sure that none of tho

...

PAN-OS 5.0.0 Upgrade failed

Upgraded a box from PAN-OS 4.1.10 to PAN-OS 5.0.0. During installation was prompted to reboot, chose reboot. The device did not come back online. Consoled into management port sees the following messages loop over and over:

Welcome to PanOS

Setting cl

...

Resolved! Web Proxy behind PAN firewall and application recognition

I know this question has been asked in other posts but I figured I would give it another try. I would like the PAN to sit between my users and my web proxy *and* for the applications to be recognized instead of just reported as proxy traffic. Is ther

...

Resolved! PA-500 webserver crash

Hi,

Can someone please tell me how to troubleshoot extremely slow web reports? Logs are fine, but ACC and Monitoring -> App Scope items just keep loading and loading and loading and im basically locked out of management every time i click on a menu it

...

gert by Not applicable
  • 3003 Views
  • 8 replies
  • 0 Likes

CVE-2012-4607

Does the Palo firewall (version 4.1.10) with threat update version 351 block vulnerability CVE-2012-4607

"Buffer overflow in nsrindexd in EMC NetWorker 7.5.x and 7.6.x before 7.6.5, and 8.x before 8.0.0.6, allows remote attackers to execute arbitrary

...

ERIKS by L1 Bithead
  • 752 Views
  • 1 replies
  • 0 Likes

Resolved! Setup SSL Inbound Inspection with 3rd party certs

Greetings!

I have a SharePoint server in a DMZ and would like to setup SSL Inbound Inspection. Is it possible to set this up if I am using third party (GoDaddy) certs? I tried exporting the cert from IIS and uploading to PA; it allows me to select in

...

SDorsey by L4 Transporter
  • 4758 Views
  • 13 replies
  • 0 Likes

Cert authority to use

We got a wildcard cert built off of a CSR from a windows machine.  However attempts to put it on the palo alto device have all failed.

previous tickets on that were a run around between here and go daddy.  PA believes it look all good and go daddy can

...

rhawley by L0 Member
  • 1238 Views
  • 2 replies
  • 0 Likes

user reporting per domain - user.src wildcards

Hi,

we have an environment existing out of a forrest containing 15 different domains, all managed by different admins.

Since we want to inform local domains on their users internet behaviour, but we don't want them to look into the numbers of other dom

...

moorken by L0 Member
  • 1085 Views
  • 1 replies
  • 0 Likes
Top Liked Authors