This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4225 Views
  • 0 replies
  • 0 Likes

Resolved! Security rules when ISP is caching?

In looking at outbound traffic I can see quite a bit to a network range owned by my ISP. I'm guessing that it's a cache. The application traffic seems to be what one would expect to be efficiently cached (ms-update, symantec-av-update, http-video, etc).How do you write rules for that? Or is it that, say, Microsoft is taking an ms-update request ...

MCmgt by L2 Linker
  • 4176 Views
  • 4 replies
  • 0 Likes

Migration from Juniper to Palos

Hi all,We're in the process of migrating from Juniper ScreenOS devices onto our new Palos and I have some questions about ALGs and service timeouts.On our Junipers, there were a couple of ALGs that we had to turn off due to them mangling the application they were supposed to handle. The most prevalent of this was the SQL ALG, which seemed to ha...

Mack by L2 Linker
  • 9583 Views
  • 13 replies
  • 0 Likes

TCP 135 traffic coming from firewall IP to internet ip's?

We received notice from our ISP of flagged traffic coming from our firewall's internal ip address to many internet ip's via tcp 135. User ID is turned off on the public facing security zones. We are on PanOS 6.0.0Anyone else seen this? I set a security policy blocking internet bound tcp 135 traffic from our firewall's management ip. Odd stuff.

Netwerx by L2 Linker
  • 4738 Views
  • 1 replies
  • 0 Likes

Are the Services for URL filtering/Threat/Antivirus the same across all devices?

I'm looking at replacing my older PA boxes and see many improvements in the physical capabilities of the newer devices. As I was looking at the full range, I was wondering if the services for each device is different. Are the URL Filtering, Threat Prevention, and Antivirus services the same for each box? Are they different compared to the devic...

Colp by L1 Bithead
  • 4094 Views
  • 3 replies
  • 0 Likes

PAN Bandwidth Monitoring & Reporting

Hello,is there a way to generate a bandwidth usage charts from the web GUI or CLI (in Mbps)? I need to be able to show what applications are consuming bandwidth at certain times during the day.The current usage reports in Network Monitor tool only show throughput per time unit (e.g. hourly total), which is not as intuitive as a bandwidth usage g...

Tuomo by L1 Bithead
  • 28676 Views
  • 12 replies
  • 0 Likes

Resolved! ftp and PAN-OS 6.0 problem

Hi Team!I have a problem with ftp application in PAN-OS 6.0 after upgrading from 5.9.Passive ftp is stop working correctly. Temporary resolved by creating an application override rule.Any ideas?Thank you

Oleksandr by L3 Networker
  • 8550 Views
  • 11 replies
  • 1 Likes

Troubleshoot sending iCloud email

I have just installed a PA 3020 and it's great. I'm still pretty new to the device though and need some help troubleshooting iCloud email. I can receive iCloud email on all devices. I can send iCloud email from a browser. But I can't send email from any mobile devices (iPad, iPhones). It just hangs on "sending...". This was all working last week...

Internet Edge Placement

Hi all,We are in the process of re-designing our network topology and I have a question regarding the placement of our Internet firewall: - place the PA firewall directly on the Internet (with default gateway pointing directly to the ISP's gateway)- place the PA (using private address) behind an Internet edge router owned by us which is pointing...

Upgrade to 5.0.11 = High Amount of Global Protect Failed Auths

We upgraded one of our 5020's from 4.1.13 to 5.0.11 about 2 weeks ago. Ever since then, we have been seeing an unusually high number of failed auths from Global Protect. Has anyone else experienced this?The attached graph was made in Excel. I used this filter in PA ( eventid eq globalprotectgateway-auth-fail ) and ( receive_time geq '2014/02/...

jambulo by L4 Transporter
  • 3022 Views
  • 3 replies
  • 0 Likes

Shared Policy Zone Check

The Shared Policy option in Panorama is most useful, however I have found an issue with it which I think could be resolved in one of two ways, what I need to know is do either of these two ways exist?ScenarioWhen using the Panorama Shared Policy to push single policy to three different FW layers I need to include the Source and Destination Zone ...

CHammock by L2 Linker
  • 4290 Views
  • 3 replies
  • 0 Likes

Causing change in ARP Table Entry (PAN-OS 5.0.8)

Hello Everyone, One of our Application Support Teams were trying to move from using servers being an ACE to servers behind a NetScaler last night... as part of the ensuing situation I was asked to check and if necessary clear the ARP Table on the PANs (PA-5060's running 5.0.8 in HA Failover)... So, I hop on the active PAN and do a 'show arp ...

Art by L3 Networker
  • 3888 Views
  • 3 replies
  • 0 Likes

What are the subscription licenses happened if the hardware license is expired?

Dear all,As the title, for an example, I had a box and it's hardware license (as 'Premium Partner Support" license) is expired now, but the "Threat Prevention" or "Wildfire" license are available, what the box will be?- We can also update the signatures and the functions work as before ?- We cannot update the signatures any more, but the functio...

known and UNknown BUGS

Hi All,Have You any information about known and unknown (if it possible of cos' 🙂 ) bugs that not published at the time?Alex

Oleksandr by L3 Networker
  • 3030 Views
  • 3 replies
  • 0 Likes

TCPDUMP shows syslog traffic going to a specific destination - How to figure out what is sending it there?

I am hoping this is an "easy" question that I am just missing having been on calls since 4:24 am this morning :smileyconfused:I have used tcpdump to confirm that one of our PAN firewalls are sending syslog traffic to a specific destination (w.x.y.z) which it is not supposed to. (we don't want it going to that 'collector' for band width reasons -...

Art by L3 Networker
  • 3056 Views
  • 2 replies
  • 0 Likes

What does "Count" column mean in the "User Activity Report"?

What specifically does "Count" column mean in the "User Activity Report" ?If the the number in the "sessions" column reads 4.8k, specifically what does that mean in a user activity report?See the example below.Application App Category App Sub Category App Technology Sessions Bytesweb-browsing general-i...

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks