This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4455 Views
  • 0 replies
  • 0 Likes

Resolved! Always get "likely" pre-shared key mismatch

I tried to configure Site-to-site VPN from PAN 5.0.5 to Juniper Netscreen OS.Even I type very according easy pre-shared key. On PAN it always shown"IKE phase-1 negotiation is failed likely due to pre-shared key mismatch"Anyone have any suggestion?Thank you.

Amnuay by Not applicable
  • 12722 Views
  • 6 replies
  • 0 Likes

Resolved! Scheduler should cut off sessions immediately

Hi,We have set a schedule on some security policies, but at the moment the schedule should switch off the traffic it seems that live sessions are not immediately denied, The scheduler only prohibits the creation of new sessions. Is this true? We are on 5.0.4 witgh our PA500 box and I wonder if I can configure the scheduler to immediately cut ...

How to get DHCP statistics from PAN

HelloI have WiFi network for students, it using APs as a bridges with Captive Portal authentication using Radius server and also PAN is a used as a DHCP server..I'd like to know how many IPs are in use in a time. Is it a way to do it by SNMP?The second option is to how many students authenticated during time - maybe this is also possible to moni...

_slv_ by L4 Transporter
  • 3778 Views
  • 3 replies
  • 0 Likes

Resolved! Custom Reports contained in Group reports

Has anyone else had issues with creating custom reports and then having them emailed via the scheduler? I have built an extensive custom reports list that allows us to see into the detailed traffic to discover infections, spyware, and an assortment of other information to discover things that the PAN does not alert us on. The problem is, that th...

craymond by L4 Transporter
  • 7048 Views
  • 7 replies
  • 0 Likes

PA-500 - Insane Commit Times

We have a PA-500 running 4.1.11.I wouldn't say we do anything special, it has some certs installed for forward and reverse SSL decryption, we do dynamic URL filtering and probably have something like 30 security policies in place on it and at any given time in terms of admin nobody is doing anything.Commit times seem insane. I don't think I've ...

Benefits of using DNS proxy?

Are there any Security benefits to using the current implementation of DNS proxy on the PAN? I have seen on the ver 6.0, a new feature called DNS sinkhole, but I don't think it will require the DNS proxy feature. Watchguard checks DNS headers and a couple of other criteria for DNS based attacks, but I don't see anything in PAN documentation that...

craymond by L4 Transporter
  • 4742 Views
  • 2 replies
  • 0 Likes

Resolved! Does FW use ospf version 3?

HelloI am facing ospf issue so need some help.Please look at the routd.log as below."OSPF 3 Non-Hello packet could not be matched to an active neighbor" -> What does it mean?And does FW use ospf version 3 as above message?I found out "RFC 1583 Compatibility" in ospf menu.If I will set up enable "RFC 1583 Compatibility", Does FW use ospf versi...

webpage displays improperly

I am using a PA-500 software vers 5.0.10 with BrightCloud filtering package at vers 4231. I am having problems with getting some webpages to load in the proper format. Classroom20.com (categorized as Computer and Internet Info; Personal sites and Blogs) will load fine for a user that has no filtering restrictions. However, it will not load p...

Resolved! BGP Configuration

What is the impact of not selecting 'Exact' when entering prefixes in the import or export tab in BGP configuration? I assume the exact must match the prefix entered.But if exact is not selected, what is permitted through? If 10.0.0.0/8 is the entered prefix and exact is not selected, is this saying 10.0.0.0/8 le 32, basically any prefix in the ...

RFalconer by L3 Networker
  • 9457 Views
  • 1 replies
  • 0 Likes

Resolved! GlobalProtect and logon scripts

Hello. Is it possible to launch a logon script to map drives after connecting with GlobalProtect in on-demand mode? I know we could create a script to launch manually after a connection to map the drives but would like an automated method.Thanks!

ldavie by L2 Linker
  • 8161 Views
  • 5 replies
  • 0 Likes
  • 24376 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks