General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 475 Views
  • 0 replies
  • 0 Likes

Dropped traffic - no log

Hey,

Setup:

LAN network on interface eth1/2, security device on interface eth1/3 and vpn on interface tunnel.1.

Zone L3-LAN contains eth1/2

Zone L3-VPN contains eth1/3 and tunnel.1

Traffic flow:

A client in the LAN sends a packet to a device behind the VPN

...

bdeschut by L4 Transporter
  • 6390 Views
  • 2 replies
  • 1 Likes

Resolved! I'm not able to setup Netflow on Palo alto 5.0.4

Dear all

I'm not able to setup netflow on Palo alto 5.0.4

As i followed the menu   Network-> Interfaces-> Ethernet. Click the link for the interface on the Ethernet tab -. But i can not find netflow on this menu

Could you advise me more.. please ?

Than

...

Firewall Statistics Report

We are looking at upgrading our firewalls from the PA-500 to the PA-3050s. The company I work for is growing fairly rapidly and it's looking good that the company will continue to grow. In order to get the funding for these firewalls we need to prove

...

Unauthorized SSH access through port 22

Hello

I have a rule that permit traffic from "untrust" to some servers in "DMZ" but only for applicacions FTP, SSL and web-browsing, the problem is someone has gained access through SSH using the tcp 22. Shouldn't the PaloAlto has block this kind of t

...

SOC_CSG by L4 Transporter
  • 4567 Views
  • 2 replies
  • 1 Likes

URL Filtering in Vwire SSL Trust Question

Hi,

I have a customer who is currently only running the PA in vwire. They need to have custom URL filtering continue and override pages.

My question is what needs to be done to have the end users browsers trust the certificate in vwire?

I know in layer

...

bparker by Not applicable
  • 2627 Views
  • 2 replies
  • 0 Likes

Resolved! Integration between websense and Palo Alto

Hello All,

I really need your fast help in an issue I have.

I would like to know, if I configured the Palo Alto to forward http and https traffic on ports 80, 443 to websense using "policy based forwarding" , can websense normally receive traffic and d

...

gshaker by L1 Bithead
  • 5395 Views
  • 1 replies
  • 0 Likes

Changing communication port

Dear All,

Hope you are doing well.

I want to access the PaloAlto web portal from the internet. if I type the public IP it will be connected but i want to put a port number that only my team know it and for more security.

Ex: 10.10.10.10 :44443

or is ther

...

Resolved! Detailed troubleshooting of drop counters

Hi,

I am having some issues with odd packet drops, and "show counter global filter severity drop" shows a lot of packets being dropped due to "Packets dropped: 802.1q tag not configured/Packets dropped: invalid interface" (same amount of packets dropp

...

as-mg by L3 Networker
  • 27474 Views
  • 6 replies
  • 0 Likes

GlobalProtect and Proxy

We are running 5.0.8 on a 5020 with GlobalProtect 1.2.7. I
am just setting up GP (single gateway version) and am running into an issue
with proxy. Our laptops have a variety of proxy settings depending on the OU
they are in. The automatic configuration

...

ldavie by L2 Linker
  • 2457 Views
  • 1 replies
  • 0 Likes

API call to clone multiple URL Filtering categories

Hi,

I am trying to clone 2 URL Filtering Profiles "testProfile1" and "testProfile2" into "testProfile1-1" and "testProfile2-1" using the following REST API call.

https://HOST_IP_ADDRESS/api/?key=LUFRPT1mQUJoTjh4S05rbkpBcWtLb2pZRERJekJTcDA9U2F1cU8ybzFza

...

vp194m by L1 Bithead
  • 2730 Views
  • 2 replies
  • 0 Likes

Resolved! Problems with xauth and iphone vpn

Hi,

I have a iphone (ios 7) what i am trying to connect to our global connect vpn setup.

Android have the same problem, and computers using the global connect client is working fine.

This worked fine some time ago, but now I am not able to pass any traf

...

klumpen by L1 Bithead
  • 5890 Views
  • 8 replies
  • 0 Likes

Resolved! Blocking Google Images Content

Hi,

We have blocked Sex, and Nudity in the Category section.
And that works fine for all the users on our PAN 4.x

But when the users go to google.com, and search for sex,
they can still view unwanted content in the "Images" table of google.com

How can I s

...

rz185016 by Not applicable
  • 6674 Views
  • 2 replies
  • 1 Likes

VM-100 L3 subinterface responding issue

Hello All,

almost a year I have production VM-100 deployed on 5.1 ESXi infrastructure. One interface is divided to 2 subinterfaces and configured like L3 with one virtual router. Policies was deployed and everything working fine until users complain t

...

Tician by L3 Networker
  • 1817 Views
  • 1 replies
  • 0 Likes
  • 24086 Posts
  • 116 Subscriptions
Labels