This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4137 Views
  • 0 replies
  • 0 Likes

Resolved! GlobalProtect with NATet interface

I have a PA200, and is using eth1 for outside (internet) and eth2 for inside. I'm NATing from eth2 to eth1, as normal.Now i want to have the management https address on the eth1 for several reasons.At home its just for testing, but at my office i have PA200 between subnets that is duplicate, and not nessesary to route to.When i use a management ...

Dropbox (again)

Hello,We have a requirement to do the followingBlock dropbox for some usersAllow dropbox web for some users but block app - use ssl decryption to control uploadsAllow ALL for 2 VIP's - no decryption requiredIs this at all possible?

depps by L1 Bithead
  • 5209 Views
  • 4 replies
  • 0 Likes

Resolved! Panorama 5.1 with fw PanOS 4.1.14

Hello Everyone,We deploy a panorama 5.1.4 and 2 fws are managed on it, one of the fws is running PanOs5.0.8 and another one is running 4.1.14. We can see the fws normally on Panorama -> Managed devices and Templates tabs. however when I finsh a ldap-server-profile template and click commit button and select the radio Template, I could not see...

Resolved! DHCP Service

In the PA software support Boot Server Host Name and Bootfile Name options?

Outgoing SMTP

It used to be best practice to not allow outgoing SMTP except from the primary server. I am finding more and more applications have a dependency of allowing SMTP outgoing. I am curious what others are doing with regard to these dependencies.Thanks,Bob

BobW by L4 Transporter
  • 8808 Views
  • 10 replies
  • 0 Likes

Restricting users to Internet only

How can I restrict a certain group (ip range\VLAN) to internet only access.? I don't want them to get to internal network shares with unfamiliar devices. We use Aruba Clear pass to authenticate and assign IPs and the PA 500 sits on the parameter. I know the answer is not the PA but probably a mixture of my other network devices.Clearpass Device...

Resolved! We had a vendor run a vulnerability report I was hoping someone could decipher for me?

Not sure what this means and how to alleviate it? The firewall is running 4.1.13.SSL/TLS Protocol Initialization Vector Implementation Information Disclosure VulnerabilitySynopsis : It may be possible to obtain sensitive information from the remote host with SSL/TLS-enabled services. Description : A vulnerability exists inSSL 3.0 and TLS 1.0 tha...

Resolved! Application Still showing up after removal from Security Rule

I recently added the ms-lync-online app to a rule in my PA-500. We decided we didn't need it and removed it. After a month of commits and saves that app is still showing up in the commit window summary and asking for a required app with it. I have checked everywhere and that app is not part of any rule but the PA unit still thinks it is. Any...

GlobalProtect Host State Does Not Detect Antivirus

I have a support ticket open about this as well, but I was wondering if anyone has encountered an issue where GlobalPortect does not detect the antivirus installed on your computer for HIP checks to work and know of a fix for it? I have the latest version of Microsoft Security Essentials with the latest version of GlobalProtect (2.0.0). Thanks,Mark

MarkTan by L2 Linker
  • 3696 Views
  • 1 replies
  • 0 Likes

How to increase amount of log data removed by database purge

I currently have a very large number of "Current size of threat log database exceeds alarm threshold."On occasion I do see that logging stops at some point during the day and then resumes after the nightly database purge occurs.I would like for the nightly purge to purge out more of the log data than it is currently purging. I would like to not...

EdwinD by L3 Networker
  • 6531 Views
  • 7 replies
  • 0 Likes
  • 24340 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks