General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 666 Views
  • 0 replies
  • 0 Likes

Resolved! Adding a Custom Application/Ports to Security Policy

Maybe my thought process is wrong so I am hoping somebody can set me straight. I have a few non-standard ports that need to be opened on the firewall. They don't belong to any application so I need to allow the ports. What I have done is created cust

...

Resolved! Block IP address

Hello,

Is there a way to block a specific IP address if you detect multiple threats coming from this IP? For example block an IP address after the detection of 5 threats coming from this IP within 1 minute.

I know you can block an IP  but only as an ac

...

GlobalProtect Internal/External Network Detection Status

I have a firewall setup as a gateway/portal allowing users GlobalProtect client to prelogin and/or automatically log in when not on the corporate network.  This is in the early testing stages and what I am noticing is the following.  If I am on the i

...

ccaruso by Not applicable
  • 2388 Views
  • 1 replies
  • 0 Likes

PBF: unused rules

Hey all,

I am using multiple PBF rules and am 100% sure that nearly half of them have been hit after the last reboot. However, when I select "Highlight unused rules", it highlights all my rules..

Anyone else seeing this?

Kind regards,

Bob

bdeschut by L4 Transporter
  • 4111 Views
  • 5 replies
  • 0 Likes

Resolved! Trying to unblock one website from a blocked country

I have several countries blocked in our firewall but due to business reasons I need to allow one website from one of those countries. I added a custom URL category and added the site. I then created a URL filtering profile and added that category to

...

JeffTQT by L2 Linker
  • 4356 Views
  • 2 replies
  • 0 Likes

QoS and VLAN

Hi,

is it possible to assign a QoS Profile to a L3 Subinterface? In my configuration on 5.0.2 there is the possibility only to physical interfaces.

Best regards,

Robert

Resolved! Scheduled captive portal and byod..

Hi,

We use a PA500 box on 5.0.3 in a boarding school environment.

I want CP only to be active during lessons and not in the afternoon / evenings..  However I cannot find how to apply a schedule to my CP.  How do I do that?

Also the students are complain

...

Resolved! decrypt ldaps traffic

hey all,

I would like to decrypt my ldaps traffic that is now showing up as ssl in my traffic logs.

I can not seem to get it to work

- with ssl forward proxy decryption, I break the ldaps connection altogether and my ldap connection just fails.

- with in

...

mr.linus by L4 Transporter
  • 3666 Views
  • 2 replies
  • 0 Likes

crilock.a (CRYPTOLOCKER HIJACK)

Does any one knows if this has been detected and addresed by PAN, just trying to stay informed, could not find it in the latest virus definitios update

Thanks

Luis Cabrera

Resolved! Monitor incoming and outgoing network traffic

We are going to switch over to a new CRM system Monday that will be hosted in the cloud.  I am wanting to monitor the network traffic to see what the increase is once we switch over and where there are any bottlenecks.  Can someone tell me how to set

...

Dropped traffic - no log

Hey,

Setup:

LAN network on interface eth1/2, security device on interface eth1/3 and vpn on interface tunnel.1.

Zone L3-LAN contains eth1/2

Zone L3-VPN contains eth1/3 and tunnel.1

Traffic flow:

A client in the LAN sends a packet to a device behind the VPN

...

bdeschut by L4 Transporter
  • 6469 Views
  • 2 replies
  • 1 Likes
  • 24114 Posts
  • 117 Subscriptions
Top Solution Authors
Labels