This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4125 Views
  • 0 replies
  • 0 Likes

Whitelist rule - confusion on URL filtering...

We have a whitelist rule that allows out http/https as a service and "any" as the application.All the URL categories in the profile applied to that rule are set to "Block" and there are some URLs in the whitelist.The destination address is set to "any".Today we noticed someone hit that rule using SSH on port 443 and it was allowed out.I'm guessi...

Panorama 6.0

we recently integrated a PA-500 (4.1.10) into PANO 6.0 and we've started seeing OSPF flapping. Has anyone else experienced this issue? It looks like the Management cpu will spike up to 100% when communicating to the PANO and then we lose OSPF. This PA-500 has been in production for over a year with no issues. Is there a good way to look a CPU hi...

mjames by L0 Member
  • 2070 Views
  • 1 replies
  • 0 Likes

Global Protect Portal

Is there anyone out there running client VPN and managing it through the portal on PAN-OS 6.0.1? I keep getting the error stating that I need a portal license. I have the same setup on another Palo on version 5.0.8 and it is running without a license just fine. Tom

tsapp by Not applicable
  • 1839 Views
  • 1 replies
  • 0 Likes

Can Global Protect use multiple methods of Authentication?

Is it possible to setup Global Protect to use Windows AD authentication for a subset of our VPN users, and Radius for the rest? I'm assuming this is not possible since you can only set one Authentication Profile under the GlobalProtectPortal, but if there's a way to accomplish this I would love some input.Thank you.David

breedend by L1 Bithead
  • 2457 Views
  • 1 replies
  • 0 Likes

Resolved! Error: Profile compiler : can not set time attribute on tid 40026 interval 60 threshold 20

When I'm committing changes to my PA-4020 I'm seeing this error message:Error: Profile compiler : can not set time attribute on tid 40026 interval 60 threshold 20(Module: device)Configuration committed successfullyThis started happening a few days ago. I'm running 5.0.11. Any ideas how I can troubleshoot this?Thanks,Dan

dbaumann by L1 Bithead
  • 7178 Views
  • 4 replies
  • 0 Likes

Mcafee Application Object

Has anyone noticed the Mcafee Application Object is using the wrong ports, or do I have something wrong?McAfee update protocol for distribution of signature/pattern updates. tcp/3025Mcafee-update tcp/8801These are all the ports Mcafee leverages (outside of backup updates)https://kc.mcafee.com/corporate/index?page=content&id=KB66797

CLI Scripting to implement missing commands

Hi,in my opinion some commands are still missing in the PanOS CLI. I miss some features implemented in my conventional firewall to handle the policy rule set efficiently. Some other vendor has the possibility to use so called op-scripts in the CLI. This scripts allow to implement own CLI commands using the built in API. Is there already the pos...

Unibw by L2 Linker
  • 3486 Views
  • 3 replies
  • 0 Likes

Best Way to use User-ID Agent.

Hey everyone,I have been bashing my head onug how I can cleaninly use the USer-ID agent.. I wanted to stop WMI or event exclude internal vlans as I thoht it was used just for VPN. But its not its used to map source user info in the log files of the firewalls...Thing is when I have it enabled it probes everything! Gateways, iPhones, S4's ipads, e...

Zewwy by L3 Networker
  • 6971 Views
  • 8 replies
  • 0 Likes

Dynamic Block Lists and Spamhaus

Does anyone know if the Spamhaus format drop lists (that use ";" delimiters to denote descriptive text) are accepted as PA Dynamic Block lists?http://www.spamhaus.org/drop/drop.txtRgds

apackard by L4 Transporter
  • 9906 Views
  • 5 replies
  • 0 Likes

user agent refresh

hi!i was wondering what is the time frame for the user agent to "discover" newly added users or security groups, in an LDAP environment?if such a timer exists - is it configurable?can the agent be forced to update its database?thnx!

Resolved! Dynamic Block List format clarification

I need some clarification on this great head start on Dynamic Block List format:Working with External Block List (EBL) Formats and LimitationsI note that a few lists seem ready to use without re-formatting like:http://rules.emergingthreats.net/fwrules/emerging-Block-IPs.txtIs it safe to assume that the comments preceded by the pound sign and the...

MCmgt by L2 Linker
  • 4114 Views
  • 1 replies
  • 0 Likes
  • 24336 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks