General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Problem: Management Session Getting Hang Frequently

Hello All,

The below model appliance Management Session gets hanged frequently

Firewall Model: Palo Alto PA-5050

PAN OS Version: 5.0.3

iPad browser scrolling issue

I want to manage my PAN from my iPad however, I'm running into scrolling issues. Anyone been successful with the iPad browser?

High Management CPU

Hi

Since upgrading a PA-2050 to 5.0.8 I noticed that the management CPU is always above 70% and DataPlane is under 5%. Do this behaviour is normal? Management CPU sometimes goes to 99%.

Best regards

Gonzalo Arroyo

Script to switch on/off captive portal by script

Hi,

I'm still interested in finding a solution to manage my PA500 captive portal feature to switch on and off during certain times of the day. I have heard in another setting that one can switch captive portal on and off from a script. Which command

...

What triggers an autocommit?

What conditions will trigger an autocommit?

Resolved! Can the number of profiles supported be increased by license?

Hi,

We have a PA-FW PA-3020. I checked the parameter: cfg.general.max-profile and its value = 100. Means that only 100 profiles can be created on the device. Can we increase this limit by going for a higher license? or is this model dependent and we h

...

Resolved! Mask Security Policy User Field?

Is it possible to mask or obfuscate the 'User' field of a security policy rule? I am testing monitoring user url activity, but I don't want other firewall admins to know who I am monitoring.

Mike

Alert at unauthorized DHCP server activity..

Hi,

It happens from time to time that students succeeds to connect a private router to our dorms network and it starts to propose leases that lead nowhere to our clients.

I wonder if my PA500 box can be configured to alert us if it discovers such DHCP

...

Resolved! Threat,virus Log

Oct 27 23:00:32 10.208.35.87 Oct 27 22:57:23 PA-VM 1,2013/10/27 22:57:22,007000001148,THREAT,virus,1,2013/10/27 22:57:22,192.168.1.73,192.168.2.71,0.0.0.0,0.0.0.0,Test,,,ftp,vsys1,Trust,Untrust,ethernet1/1,ethernet1/2,Log Forwarding,2013/10/27 22:57:

...

what cli command to allow does 'ip ttl reaches zero' drop count ??

Hello

FW tust interface don't reply to traceroute.

traceroute reply traffic drop by 'ip ttl reaches zero' drop count.

what cli command to allow does 'ip ttl reaches zero' drop count ??

Resolved! Tracking Youtube activity

We have a user that is uploading a great deal of traffic to youtube.

How can I drive down into the logs to find the user's account info, youtube channel name, or the URL where the content got uploaded to.

thanks

Paul

Troubleshooting HA Sync

Hi All,

I've a HA Active/Active pair of PA-3020's managed via Panorama.

All was well until I had to replace one of the pair, I brought the new device into Panorama, added it to the correct group/templates and then finished the device config (IP address

...

Resolved! Same object different details

We've a number of firewalls managed via Panorama.

A number of those filewalls will have the same policy, except that the source or destination address will change depending where the firewall is deployed.

For example a rule to allow the remote sites (o

...

DNS service route doesn't work ?

Hi,

I am having troubles configuring dns service route for DNS.

DNS servers are behind tagged internal interface of PA-2050 device.

I was able to configure that for syslog and it sends all the traffic PA outbound to the server.

I was trying to do the sam

...

Resolved! Forwarding with ICAP

Is the Palo Alto Panorama able to forwarding using ICAP protocol to an code green. I was unable to find any document in the KB on if it is possible.

Discussions