This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4227 Views
  • 0 replies
  • 0 Likes

Resolved! PANOS 6 Port mirror decryption

heywhere i should get the license mentioned here for enabling this feature• Decryption Port Mirror— Provides the ability to create a copy of decrypted traffic from a firewall and send it to a traffic collection tool that is capable of receiving raw packet captures—such as NetWitness or Solera—for archiving and analysis. This feature is necessary...

minow by L4 Transporter
  • 3585 Views
  • 4 replies
  • 0 Likes

GlobalProtect ip-user-mapping issue

PA-500PAN-OS 5.0.2Hello, we've deployed GlobalProtect with local user authentication (authentication profile = local database), user identification is enabled both on trust and vpnclient zones.Also, user mapping is enabled with UID Agent directly from the firewall.Everything's working fine with vpn authentication, once connected the client shows...

trafic redirection

Hi,I have a PA200 and i want to pass all users by this firewall, include whos connect with wirelesshow can i configure PA to inspect wireless usersthanks in advanceSarah

atelcom by L3 Networker
  • 2922 Views
  • 4 replies
  • 0 Likes

Suspicious DNS Query (generic:msreg.gale.com)(4034267)

I didn't find many about this domain "msreg.gale.com", Could someone help me to determine whether or not a false positvo??In the link below say it is not malware.It's Word 2007 - "Connecting To" Pop-upshttp://social.technet.microsoft.com/Forums/office/en-US/81a9d0a3-667c-4637-8d4d-1957120ec015/word-2007-connecting-to-popups?forum=wordThanks,dicu

SOC_CSG by L4 Transporter
  • 2552 Views
  • 1 replies
  • 0 Likes

Resolved! Blocking page with SSL

Hi in the normal way palo could answer directly to the client device wiht the bloking page when url filtrering match the categorie.but when the application is SSL the palo couldn't answer with the bloking page and reset directly the session.is it possible instead of reset the session to make 302 redirection with and present a bloking pagethank

Gregoux by L4 Transporter
  • 2975 Views
  • 3 replies
  • 1 Likes

Hello community I got a issue that I would like your assistance on

Hello community I got a issue that I would like your assistance on:PAN is passing traffic but its failing to reach the destination point, PAN isn't receiving traffic from destination .customer asked to keep ticket open so, he can check is the destination firewall was blocking all in/out traffic

lhylton by Not applicable
  • 3531 Views
  • 4 replies
  • 0 Likes

App-ID not working properly

Hi All,I'm working in Active/Active VWire mode, OS 5.0.9. version of PA is 5050.while I'm trying to block applications, I noticed the applications are been blocked in monitoring, but in real nothing is blocked.one more notice is that most of the web-based applications are blocked but proxies, torrents, and youtube aren't.also there is no decrypt...

Tunnel and PBF Monitoring Driving Me Crazy

Okay, I can't think straight. Sorry if I ramble on. I can't seem to wrap my head around this and I'm thinking I am making it more complicated than it really is. This is also hard to test since I can't turn up the new ISP yet.Here is my situation: I need to setup a second ISP on the firewall. I've configured the interface, the security policy, an...

What's the consensus on PanOS 5.0.9?

My company is looking to upgrade our firewall OS. Support suggested 5.0.9. Another source said that was bad and to go with 5.0.8. Are there any stability issues or bugs that the community has been experiencing? Thank you!

Resolved! Migrating fron PA-500 to PA-2050

Hello all,Actually we have a PA-500 and we like to export the actual config and import it in the new equipment (PA-2050). How to do this? Thanks and regards,

rrunge by Not applicable
  • 6785 Views
  • 4 replies
  • 0 Likes

WebGUI PANOS6

After installing PANOS6 on a PA-200 platform, the webgui at IE looks strange:

Hithead by L4 Transporter
  • 3211 Views
  • 4 replies
  • 0 Likes

How to block the real IPs from CDN?

Is there any function that can makes the PA block the traffic of the real IP instead of CDN IPs?We deployed the PA NGFW on the external side of our web server and enabled the Threat Prevention function. Because we are using the CDN, so from the web server, all the source IPs in the traffic are hosted by the CDN service provider.So when the PA N...

SteveY by L1 Bithead
  • 6760 Views
  • 6 replies
  • 0 Likes

Resolved! how to pass Cisco CDP traffic through a Paloalto in virtual wire mode

hello everyone, I think the title of my subject is explisite, I want to get Cisco Discovery Protocol (CDP) traffic through my palo alto, which is in virtual wire the problem is that frame cdp does not contain IP header so my the question is how to get it through a firewall. I did catch the traffic levels I see the traffic coming into the firewa...

ext22 by Not applicable
  • 8839 Views
  • 6 replies
  • 1 Likes

Resolved! Commit Failed to send phase 1 abort !

Hi,My PA box keeps failing in commit and I get the attached message.Could any one please help me decypher this, and let me know how I can get this boy to commit to my terms !Regards,Tau_

rz185016 by Not applicable
  • 8660 Views
  • 5 replies
  • 0 Likes

VWire

Hello i have the below design Internet Cloud ------------------> Cisco ASA -------VWire1----------->PA----------VWire1---------->Core SwitchPA ----------------------->SWitch----------------------- >WAN RouterPA ------------------------>other WAN Router ...

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks