General Topics

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

In case you missed it, check out this new Fuel Workshop series, which covers the following topics:

Customer Support Portal Overview
License Management
RMA Best Practices

Dive into the three-part Fuel Workshop video series and learn how to efficient

...

Ensuring a Safe and Secure Community: How You Can Help

Dear LIVEcommunity Members,

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Resolved! show management-clients

Hello -

I've been seeing something that doesn't give me that warm and fuzzy feeling. When I log in via SSH and execute the command show management-clients, I'm seeing that the status is in INIT. I've verified that no jobs are in process.

If I do a co

...

Captive portal problem

Hi,

We are having a problem with the captive portal....We have two domains PL and HU.

If we introduce a website in the browser, the captive portal ask for credentials.

1) If we use the credentials for user "PL\user" the captive portal will show "page n

...

How to control Botnet ?

Hi All,

How to control botnet ?

Regards,

Gururaj

Sessions still active on the PA after having disconnected the VPN GP connexion

Hi,

I've noticed a particular issue concerning sessions started from a VPN connection.

We have a cluster of 2 PA-5020 in actif/passif mode. These are configured as firewalls and VPN gateway with GlobalProtect clients.

We have two categories of users who

...

Resolved! Block user but allow captive portal

Hello,

I have been asked to block a students account from all web access but then to allow a lecturer to authenticate her connection via the captive portal.

I don't know if this can be done.

All users are authenticated at login (AD User-ID) and are allo

...

Resolved! PA-2050

Hello,

I have been using PA-2050 for almost 8months and on my way of lauching Global Protect.

My question is: how many simultanously Global Protect users can be on, without us having performance issues for the FW?

Thanx in advance.

/Ron

Is Traffic Pattern / behavior based detection is possible in PaloAlto as in the Cisco,.

Hi All,.

Is Traffic Pattern / behavior based detection is possible in PaloAlto as in the Cisco,.

In Cisco it works as fallows,.if we have enabled traffic sensor for particular time period it will calculate the percentage of traffic based on protocols a

...

Is it possible to pull the logs back ( From ftp,SCP or Syslog servers)to PaloAlto device for further process?

Hi All,

Is there any way to pull the logs back ( From ftp,SCP or Syslog servers)to PaloAlto device for further process?

Regards,

Gururaj

Resolved! Custom URL category - URL filtering logs displays which category?

Hey all,

Suppose I create a Custom URL category called "myCategory", including "*.microsoft.com" and "microsoft.com".

Before implementing the changes, I see in the URL logs the following category:

business-and-economy

After creating the category, I still

...

Data plane utilization

Hi,

PA 2050 pan OS 5.0.7, data plane utilization show 94- 98 % during day time, is this creates a bottleneck in our network?

Thanks

Internet browsing is slow through PA 2050 with PAN OS 5.0.4 .

Hi All,

Internet browsing is slow through PA 2050 with PAN OS 5.0.4 , below are the some outputs from CLI. Can any one analyze the outputs given below tell me the root cause for slowness?

Decryption is not enabled.

admin@PA-2050> show session info

------

...

Resolved! Unable to block port scanning even after enabling "zone protection profile".

Hi All,

How to block port scanning?

I tried by defining the "zone protection profile" and using it in "zone" with below settings and used "tenable Nessus" tool to perform port scanning and it was successful,. It is not getting blocked,.. please any one

...

User ID mapping update

Hi,

How regularly should the user-id mapping take place in the pan agent.

If I log into the > Program Files> Palo Alto Networks > Panagent folder, and review the user_ip_map

text file, it shows the last dated of June, 2013.

But this is the month of Sep,

...

Resolved! Accessing all company networks with GlobalProtect client

Hi!

Basic info:

PA-500 (software version 5.0.7)

Main location network: 10.10.1.0/24

Branch location network: 192.168.1.0/24

GlobalProtect client IP pool: 10.10.3.10 - 10.10.3.254

We have main location network and branch location network connected thru IPSe

...

Client VPN traffic and routing over IPsec Tunnel

Hi there,

Here is our scenario that I am trying to figure out.

We have two sites (main office and a rack in a data center) that are connected via PAN-2020's on both sides through a IPsec Tunnel. I am trying to route Client VPN traffic that connects at

...

Discussions

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

Ensuring a Safe and Secure Community: How You Can Help

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

Resolved! show management-clients

Captive portal problem

How to control Botnet ?

Sessions still active on the PA after having disconnected the VPN GP connexion

Resolved! Block user but allow captive portal

Resolved! PA-2050

Is Traffic Pattern / behavior based detection is possible in PaloAlto as in the Cisco,.

Is it possible to pull the logs back ( From ftp,SCP or Syslog servers)to PaloAlto device for further process?

Resolved! Custom URL category - URL filtering logs displays which category?

Data plane utilization

Internet browsing is slow through PA 2050 with PAN OS 5.0.4 .

Resolved! Unable to block port scanning even after enabling "zone protection profile".

User ID mapping update

Resolved! Accessing all company networks with GlobalProtect client

Client VPN traffic and routing over IPsec Tunnel

SSO Activation

OSPF route suppression

SSO Activation

No valid AceMlc2 config: SC 1 (AceMlc2): Config not valid

How to request a URL filtering change to High-Risk?

Re: New periodic alert: Configuration size 19MB is above 80% of the maximum recommended configuration size 23MB for the platform.

Support Portal is down.

Re: sorting question

Re: How to add palo to multiple device groups

Error while logging into PaloAlto Support Website

Unlock your full community experience!

Resolved! show management-clients

Resolved! Block user but allow captive portal

Resolved! PA-2050

Resolved! Custom URL category - URL filtering logs displays which category?

Resolved! Unable to block port scanning even after enabling "zone protection profile".

Resolved! Accessing all company networks with GlobalProtect client