General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone, Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June. This event will cover the following points related to the newly unveiled Zero Trust Network Security: Secure access to the right applicat...

seattle-launch-live-community-r2b-1100x120.jpg
jdelio by Community Team Member
  • 493 Views
  • 1 replies
  • 4 Likes

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 18210 Views
  • 41 replies
  • 32 Likes

Response page for blocked FTP, SSL, etc...

Hi all,Why is there no response pages for users when application like ftp, ssl, etc.. are blocked?I have software version 3.1.1. and everything works with blocking but users don't see any info about it. Problem is, that kind of traffic is blocked at ...

volksbank by Not applicable
  • 1278 Views
  • 2 replies
  • 0 Likes

Web servers redundancy inside PA with PBF

Hi, is there anyway to have web servers redundancy with PBF. What I would like is to use PBF to balance the traffic between two internal servers and, of course, monitor this servers and chnge to one of this in case the other fails. I'm testing in lab...

SSL VPN and other options for client VPN

I'm currently using a Watchguard firewall for our remote users to connect and authenticate using built in Windows (and Mac) VPN.I have a Palo PA-500 in the Dev environment being configured to replace the Watchguard firewall, however we have come acro...

moha by L0 Member
  • 1103 Views
  • 1 replies
  • 0 Likes

Resolved! URL Filtering Process Order

we've run some tests on both at client side and in our office lab.the process for handling url fitlering will start with BLOCK list --> ALLOW list --> URL Categorythe logic of it is quite understandable, however, the problem lies with BrightCloud DB....

High CPU Usage on PANOS 3.1?

Upgraded our PA-500 to 3.1. It came back up around an hour ago and the CPU usage has been on a pretty consistent 65-66% ever since.I presume either this is normal, or not normal - how can I see what it's doing please?Also even now a couple of hours l...

Upgraded to 3.1, URL wildcards not working

Just upgraded to 3.1.0 from 3.0.6.I had the following URL filtering profile that I used on an inbound rule with SSL decryption so that people could only connect to valid Exchange/Outlook Web Access URLs:webmail.ourdomain.co.uk/favicon.icowebmail.ourd...

Resolved! URL Filtering Override SSL Certificate

I've been experimenting with the URL override feature. Works fine, however even with the PANs self-signed certs in the PC's trusted root authorities store, I can't seem to get away from getting a "mismatch" warning because when someone goes to www.ov...

Resolved! Session Browser?

Just looked at Monitor->Session Browser. This is cool! Why is it not documented anywhere? Is it new and I just missed something?

URL Filtering Profiles - Category/Action

I'm torn even asking this question, but it seems like it might be a nice feature but at the same time possibly misused. It might also be a support nightmare when people call saying they can't get to a URL.Would you consider adding a "Block-No-Log" to...

jmck9999 by L1 Bithead
  • 1353 Views
  • 1 replies
  • 0 Likes

How to create SSL Custom App-ID

I'm testing to create SSL custom signature from WebUI.However, we don't have enough materials to create that.Do you have any materials to create SSL custom signature?Or could you provide any sample config?Regards,Takeshi Kawai

Takeshi by Not applicable
  • 728 Views
  • 4 replies
  • 0 Likes

Resolved! Application = insufficient-data?

We have some outgoing UDP traffic that shows up in the traffic log with "insufficient-data" in the application field. The problem is that this traffic is being allowed through the firewall because it's being matched to a rule that allows FTP traffic ...

ahopkins by L2 Linker
  • 6612 Views
  • 7 replies
  • 0 Likes