This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Is it possible for a web page to discover if SSL decryption is active?

DUPLICATE POST - please see Decryption: sec_error_reused_issuer_and_serial for further info.----Hi folks,We recently re-activated SSL decryption in some of our branch offices. Now of course reports are coming in that certain web pages can't be displayed correctly anymore. Our Italian collegues for example report that they have problems with Goog...

oschuler by L4 Transporter
  • 3031 Views
  • 2 replies
  • 0 Likes

Panorama M-100 GUI timeout

I have a problem with a Panorama M-100 running 5.1.4, where sessions in the web-gui seems to time out before they have reached the "idle timeout" configured under Panorama/Setup/Management/Authentication Settings. What happens is that after being inactive for a few minutes (10-20 min), I do no longer get any data when navigating to a new menu it...

torm by L4 Transporter
  • 3226 Views
  • 2 replies
  • 0 Likes

Resolved! Google search problem

Dear all,I'm writing to ask a question about the image that I'm showing you.My user can see only a part of the images when he search for that.This is the result of a search with google images:I've read this thread:https://live.paloaltonetworks.com/docs/DOC-3328But, in the end, the problem that I've is slightly different: I can see something up t...

Global Protect Radius Child Domains

Global Protect using Radius works perfect for users in the parent domain. It will not work for users in child domains.I worked with Palo Support for several hours and they believe the issue is a setting on the Radius server but they do not know what the settings on the Radius server should be for child domains.Does anyone know how to set the Rad...

ddavis1 by Not applicable
  • 3143 Views
  • 2 replies
  • 0 Likes

Skype performance tuning

Good morning everyone,I've been testing a PA-200 unit here and I have a certain issue with Skype, which is mostly due to Skype being very weird about how it uses the network.Most threads I found around here are about blocking or controlling Skype somehow, but my question is the opposite.How would you configure your firewall to ensure that Skype ...

Guillaume by Not applicable
  • 3434 Views
  • 1 replies
  • 0 Likes

VPN & SSL VPN questions - A/A cluster

I'm starting to setup an Active/Active cluster And I'm looking at using arp-Load-Sharing as that seems to be the fault tolerant/load balancing one.So here's the question will SSL VPN (web interface) & site2site vpn's (with cisco and sonicwall devices) work with Arp-Load-Sharing, or should I switch to Floating IP. Also we are going to be usin...

jkw117 by L1 Bithead
  • 6845 Views
  • 6 replies
  • 0 Likes

Wildfire Threat Type

I clicked on the Magnifying Glass icon of a Wildfire Submission Log entry and there are related log entries that shows a Threat Log Type Wildfire. When I went to the Threat Log and tried to filter on Type equals Wildfire nothing comes up. As a matter of fact, there's no Wildfire Threat Type in the Threat Log.Can someone please explain why the Re...

jwolach by L4 Transporter
  • 2027 Views
  • 1 replies
  • 0 Likes

Clientless User-ID problem

Hello.When debugging clientless User-ID I've noticed a strange entry in useridd.log log file. I'm trying to connect to 2 AD servers.It says:2014-04-07 10:44:09.875 +0200 Error: pan_user_id_win_log_query(pan_user_id_win.c:1319): log query for server1.xyz.aa failed: [lib/socket/interface.c:212:load_interfaces()] ERROR: Could not determine network...

santonic by L6 Presenter
  • 5463 Views
  • 7 replies
  • 0 Likes

Stopping email alert for Syslog related Logs.

How stop email alerts for syslog related logs? For example Email alert is generated for every one hour that syslog server is active.Note: The log severity level for email alert is configured for high and it should be changed.

Gururaj by L4 Transporter
  • 4603 Views
  • 3 replies
  • 1 Likes

Resolved! A lot of unknow-udp traffic (port 123)

HiI observed since 04/09 a lot of traffic clasified as unknown-udp from my DMZ to Untrust. It could be missidentified because I have security rule that allow NTP.It could be related to 429 package of Thread prevention update. Now I'm on 430-2169.Do You have the same?RegardsSLawek

_slv_ by L4 Transporter
  • 5125 Views
  • 3 replies
  • 1 Likes

Resolved! software update schedule

Hi quick question regarding software updates. I know you can pull updates manually within the device, but I was under the impression that these updates would pull and install automatically. We had a consulting company help with our install so I may be missing where the updates might be scheduled?:Our current update status shows:The current softw...

bino150 by Not applicable
  • 3229 Views
  • 1 replies
  • 0 Likes

Resolved! Log Category and Current Category : PAN-DB

Hello,Anyone here having the same issue? Please see the image below,The URL that we are browsing isn't match with the Log Category.We already tried re-downloading the whole URL PAN-DB. Also, the URL category on the cache identifies "youtube" as streaming-media.Thank youRegards,hartkently

QoS policies

hi!i have a question regarding the QoS feature, so here goes:the scenario is the following - we have 2 apps for which we would like to limit the bandwidth, lets say app1 and app2. we have edited one of the QoS classes in the default QoS profile, class 3, and set the max guaranteed bandwidth to 2Mbps.the next step would be to create the QoS polic...

Heratbleed CVE-2014-0160 - New Vulnerability Signatures

Palo Alto released multiple vulnerabilities for the Heartbleed bug.New Vulnerability Signatures (3)SeverityIDAttack NameCVE IDVendor IDDefault ActionMinimum PAN-OS Versionmedium40039OpenSSL TLS Heartbeat Brute Force - HeartbleedCVE-2014-0160alert3.1.0informational36417OpenSSL TLS Heartbeat Foundalert3.1.0medium36418OpenSSL TLS Malformed Heartbea...

  • 24381 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks