This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 224 Views
  • 0 replies
  • 0 Likes

Resolved! Prevent Scan

HI,


we have detected that we are suffering a scan of all servers in our DMZ, the IP source is 151.236.14.140, on port 443.


How can we avoid this kind of attack or prevent it??


Thanks

HTTP Report

Hi,

I want to create a report based on the predifined canned report HTTP Applications.  I have tried loading it as a template and it doesn't show up in the list of templates.  I have also found it in the CLI as top-http-applications the output of whic

...

CHammock by L2 Linker
  • 1597 Views
  • 1 replies
  • 0 Likes

Resolved! smtp/pop3 over SSL - how to configure security rules?

Hi

I moved my email serwer from untrust to DMZ. Everything almost is working fine, almost ...

This server has ftp and webmail function too, so my security rules looks:

I checked on aplipedia for aplication smtp and pop3. Accroding to aplipedia smtp uses

...

_slv_ by L4 Transporter
  • 13188 Views
  • 7 replies
  • 0 Likes

Torrent

Hello Guys,

Have anyone of you noticed something regarding torrent(bittorrent, transmission..etc..)?

We received a report that a torrent app which is transmission is able to evade the app detection of Palo Alto NGFW.

I tested it in my lab, I use Bittorr

...

Migrate from ASA 5505 to a PA 3020

Any one know the best what to migrate this configuration from a Cisco ASA 5505 to a PA 3020 here it show run information for the interfaces from the ASA 5505

interface Ethernet0/0

switchport access
vlan 900

!

interface Ethernet0/1

   switchport access
vl

...

infotech by L4 Transporter
  • 2258 Views
  • 4 replies
  • 0 Likes

Problem with chained Cert

Hello

I made a CSR. Got my Cert and did the stuff mentioned in the "how to chained certificate", Copied the intermediate on top of my cert.

but the PA-500 did not accept it. okey i tried it without the intermediate cert text - and it worked. Request is

...

User_333 by L2 Linker
  • 1692 Views
  • 1 replies
  • 0 Likes

Resolved! Youtube safe mode

Hello all,

Yes its youtube again, for a while now youtube has been working fine since we turned on the safety-mode feature and forced students to select safe-mode.

But this week they have been complaining that not all the videos work.

I have looked at t

...

breezer by Not applicable
  • 2327 Views
  • 2 replies
  • 0 Likes

What do WRED drops and Policing drop on qos mean?

Hello

I have made qos configuration.

I have questions when am checking qos.

Look at the following command

show qos interface ethernet1/1 hw-counter

qid   name                 pass bytes       WRED drop   policing drop

------------------------------------

...

Resolved! Captive Portal using client certificates on iOS

Has anyone been able to successfully set up captive portal +Apple iOS devices + client certificates? I have all of this set up but running into a slight issue with iOS devices(works fine with Windows devices).  On the iOS device, when opening the Saf

...

jambulo by L4 Transporter
  • 4288 Views
  • 2 replies
  • 0 Likes

IPSEC VPN phase 1 renegotiation

Hello

I am facing packet drops whenever the phase 1 re-negotiates. The SA gets expired and deleted but it takes 20 minutes for it to start the P1 phase again. In that period the traffic times out until the P1 starts again after 20 minutes. Below are t

...

shyams by L0 Member
  • 2489 Views
  • 2 replies
  • 0 Likes

Resolved! URL Filtering and SSL sites

Hi all,

I have a question regarding URL filtering. I set up URL filtering in Security Profiles to "Continue" for Social Networking. I noticed that if i open the first site under social networking, i get the response page "to continue", after that if i

...

Wusu by L1 Bithead
  • 3275 Views
  • 3 replies
  • 1 Likes

Resolved! DNS resolving

I was wondering if there is a way to resolve domain names on a Palo Alto (except ping) and not using a DNS proxy object.

Kind regards,

Bob

bdeschut by L4 Transporter
  • 2217 Views
  • 1 replies
  • 0 Likes
  • 23619 Posts
  • 107 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks