This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4136 Views
  • 0 replies
  • 0 Likes

Resolved! Alerts to a new release of PAN-OS

Hi Does anyone know if there is a way of getting an alert, be it email or someone on the firewall that advises when there is a new release of the PAN-OS?ThanksMartin

Bango by L0 Member
  • 3448 Views
  • 2 replies
  • 0 Likes

Tunnel flow

How do you check to see if there is bidrectional flow on a vpn tunnel?

infotech by L4 Transporter
  • 2321 Views
  • 3 replies
  • 0 Likes

question use Syslog Sender and User ID Agent to do User IP Mappings

I used PAN 6.01 and followed https://live.paloaltonetworks.com/docs/DOC-6727.I create a filter as following part for my Aerohive device.event-regex auth\: username-regex username ([a-zA-Z0-9\_]+) address-regex ip ([A-F0-9a-f:.]+)However, I can see the aerohive traffic log messages in User ID agent log but do not have a...

Bin by L1 Bithead
  • 2197 Views
  • 1 replies
  • 1 Likes

A quick application based policy query

Hi,I'm trying to better understand application policies and their dependencies and have a question I'm hoping someone can clear up for me. Lets for example say I'm trying to allow users access to an application which has SSH as a dependency. Lets also say that I cannot limit the untrusted endpoints the users can get to using this app policy beca...

Resolved! Captive portal leak

Hi everyone,recently I configured CP but have problem with skype, which running without CP web authentication. I understand that sec policy take in place first and redirect session to CP for authentication (in my case have policy to permit any to any), but Skype running regardless of CP authentication and bypassing that flow. In CP policy I chan...

Tician by L3 Networker
  • 3929 Views
  • 4 replies
  • 0 Likes

Report Destination port diferent

Hi,I have a doubt about this inform. I dont know why in my report depending on the source the detination port appears in the right column or not.All those connections in this screeshot are in the port 161(SNMP) but only appears if the source ip is 172.16.29.151. If the souce ip 172.16.29.132 appears 0 in port destination,why??????? it should be ...

SOC_CSG by L4 Transporter
  • 2061 Views
  • 1 replies
  • 0 Likes

Can any of the PA firewalls act as an SBC?

Hi all,I am wondering if it is possible to set up a Palo Alto firewall to act as a Session Border Controller for VoIP.Any articles or company response regarding this capability would be appreciated.Thanks!

golubb by Not applicable
  • 3563 Views
  • 1 replies
  • 0 Likes

Captive Portal has stopped working?

5.0.11 - we've had Captive Portal in place for months using a Kerberos authentication profile - nothing has been changed.All of a sudden people aren't seeing the normal Captive Portal page (with the credential boxes in the middle of the screen) they're seeing just the username and password box in the top left of the browser window - this happens...

HA in VWire and path monitoring

We have an environment (HA active passive in VWire mode) in which the PA is sitting directly connected to an SRX FW in HA. What we agreed that both of the PA and the SRX should be: Link up on the passive deviceDisable failover on link downFailove upon "ping" drop for certain IP I would like to know what how is the mechanism works in VWire...

minow by L4 Transporter
  • 3304 Views
  • 1 replies
  • 0 Likes

Resolved! No Source User displayed

HiWe have just completed an upgrade from PANOS 5.0.3 to 6.0.2.Everything seems OK with the exception of the GlobalProtect agents (and Shrew VPN) not being allowed onto the network. A successful connection is made by GlobalProtect but you can't connect to servers or see the network as everything gets dropped by a policy rule that drops everything...

TDC by L1 Bithead
  • 3751 Views
  • 1 replies
  • 0 Likes

CLI part 2

I have recieve some good information concerning CLI. But ever time I get online with a PA engineer they do a lot more than what is listed in the documentation I have recieved. So I am looking to see if there is a more comprehensive guid on troubleshooting via CLI, GUI and general trouble shooting tips

infotech by L4 Transporter
  • 8826 Views
  • 6 replies
  • 0 Likes

Avoid scanning threat vulnerabilities

HelloI have in my firewall logs events detected as a threat of this IP:Source IP: 84.88.91.1 SpainFrom Zone: Untrustto my web server:Destination IP: 195.77.XX.XXDestination Port: 80To Zone: DMZMultiple Vulnerabilities Types Targeting a Single SourceAcunetix Web Vulnerability Scanner DetectionMicrosoft IIS Escaped Characters Decoding ...

SOC_CSG by L4 Transporter
  • 9447 Views
  • 2 replies
  • 0 Likes
  • 24340 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks