This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4443 Views
  • 0 replies
  • 0 Likes

domain filtering

Hello, I have a big network with thousands of systems, I have 3 domains , I want to know and log all access from outside off my network to any inside server that the url is different to *.mydomain.com.If i use url filtering and in block I put * and in permit *.mydomain.com all the outside access to my network are log including all to *.mydom...

javalero by L0 Member
  • 2507 Views
  • 2 replies
  • 0 Likes

Security rule for url filtering - best practices?

I would like to know what is the impact, if any, when configuring a security policy with allow action and associate with a url filtering profile if we use application as any or application set to web-browsing.I understand the url filtering is only applicable to web-browser traffic by default, but i want to understand what is the best thing to do...

Borgiani by L0 Member
  • 2385 Views
  • 1 replies
  • 0 Likes

License for IPsec and SSL VPN

Hi all, I need to know if we need a license to acivate or configure site to site VPN ( i.e: between Cisco ASA and PaloAlto), and also for remote client (ssl vpn). if it's possible can someone please help me with the procedure to follow for these two scenarios.Thanks in advance.

Lahcen by Not applicable
  • 11153 Views
  • 1 replies
  • 0 Likes

Resolved! License for IPsec and SSL VPN

Hi all, I need to know if we need a license to acivate or configure site to site VPN ( i.e: between Cisco ASA and PaloAlto), and also for remote client (ssl vpn). if it's possible can someone please help me with the procedure to follow for these two scenarios.Thanks in advance.

Lahcen by Not applicable
  • 4756 Views
  • 1 replies
  • 0 Likes

Stats Discrepancy in the ACC

Has anyone else noticed this?Go to the ACC and sort it by Bytes (I believe this trick works regardless of the sort criteria, but it’s easiest to see this way). Make a note of the top three or so valuesNext, Click on one of these, I picked the top: web browsing. Compare the total bytes now with the values you recorded before. About half? Me too...

djr by L4 Transporter
  • 3367 Views
  • 4 replies
  • 0 Likes

Strange VPN behaviour

Hi all!Some of my colleagues have problems accessing certain services like TFS, Intranet, and Office 365(outlook, lync) through VPN. The weird thing is that for others it might work either 100%, 50% or whatever feels right that day, it seems.What could cause this kind of inconsistent behaviour?Appreciate all help I can get. Thanks!

Palo-Alto upgradation From 5.0.x to 6.0.x

Hi All, We are having PA-5050 & and PA-3020 model running on software version 5.0.8 & 5.0.9 and we are planing to upgrade it to 6.0.2. We firewall is running in Active/ Passive cluster. Please any one help to know the processes and suggest which version is stable between 6.0.1 and 6.0.2Also, I like to know what all the bug we have in 6.0...

Sourabh by Not applicable
  • 2024 Views
  • 1 replies
  • 0 Likes

site to site vpn qestion

We're moving from Checkpoint to PAN. For site to site vpns, I'm assuing i should set up a logical subinterface? How do you ensure its floating/shared in an HA cluster?

dvlacic by Not applicable
  • 2755 Views
  • 2 replies
  • 0 Likes

Disabling VPN Tunnels from trying to establish when NOT actually required

Hi,We have several kits which we use for conferences as and when needed. These kits VPN back to us when alive. The problem is when the kits are sitting in the cupboard the Palo continues to try and bring the VPN tunnel up which fills our system log up and is a waste of resources as the endpoint is gathering dust in the cupboard. Is there anyway ...

Frustration with threats from PA

Is anyone else frustrated with PA's approach to threats and threat signatures?Prime example: "Netbios Small Piece Data Evasion Attack Vulnerability" - signature ID 33511, link to the Threat Vault: https://threatvault.paloaltonetworks.com/Home/ThreatDetail/33511Can we please get some kind of an idea of what the heck this is in reference to? A Mic...

Does Panorama M-100 support more than 100 devices?

Looking to manage more than 100+ devices (around 300 device). is the M-100 able to meet this requirement? below is my current planning setup:M-100 (panorama mode) <--------------------------> 100+ PA boxor do i required another M-100 box as log collector in between?M-100 (Panorama mode)<------------------------> M-100 (log Collector ...

afiq by L1 Bithead
  • 5303 Views
  • 4 replies
  • 0 Likes

Setting up DMZ

First time poster in the new forum.We're looking into creating a pure DMZ on our Palo Alto. Right now all our servers and network are behind a Layer 3 interface with private IPs. Anything that needs to be externally accessible is done via a One to One NAT through that interface. We have a vendor coming out to do some Lync setup and they "highly ...

tgrzeczk by Not applicable
  • 4971 Views
  • 3 replies
  • 0 Likes

Keeping current on blocked websites

What is the best way to keep your blocked websites current? Seems like every day a site is added that needed to be added to the list is there a simple way to keep the list current?

infotech by L4 Transporter
  • 2309 Views
  • 2 replies
  • 0 Likes
  • 24375 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks