This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4141 Views
  • 0 replies
  • 0 Likes

Securing IPSec VPN tunnel

Recently we are planning to roll out potentially hundreds of IPSEC VPN tunnels at our customer locations to access our own remote devices securely over the Internet. However, we don't have good control of physical access to these remote VPN devices managed by us and I don't want unauthorized access to our trusted network (in separate security zo...

Resolved! LDAP Server failover

Hello there.I configured two ldap server in one server profile like below, but it was failed to authenticate from second ldap server when first ldap server had gone down.When configure two ldap server in one server profile, how does failover work?Thank you.

namok77 by Not applicable
  • 5546 Views
  • 4 replies
  • 1 Likes

Weird thing custom report

Hi there,One of my custom reports is Top Users Last Month. The report gives 500 top users sorted by bytes. It worked just fine every month for almost a year now. For the last month (november 2013.) there is one user with over 2.6 milion terabytes of total data. Something strange happened when PA calculated total bytes which resulted in this enor...

marjan by Not applicable
  • 2293 Views
  • 2 replies
  • 0 Likes

How to monitor and alert on sessions

HI,I was wondering if anyone has done session monitoring on the network and management interfaces and then alerted as of when a threshold was breached?I would like to do this for TCP and udp sessionsIf you have what network monitoring solution did you use?

Ash_uow by Not applicable
  • 4491 Views
  • 1 replies
  • 0 Likes

Resolved! Blocking images with EXIF data

I have a customer that wants to block outbound images that have EXIF data (gps coordinates). Can this be accomplished with a customer app-id doing a pattern match perhaps?

What mean is 'no destination zone from forwarding' on global counters?

Hello,I failed to install FWs to custom.The FW was L3 mode with two interface(untrust , trust).When I installed inline, from untrust traffic did not go through to trust.Destination IP was just trust zone. In addition, FW did not have nat , vpn and protection configurations and security police was allow.At that time, I found out strange traffic l...

Captive Portal - NTLM without webform

Hi,I have PA 5020 running PAN OS 5.0.5, I've got user identification working fine using an agent, however when users transition between the wired and wireless networks sometimes they lose internet access momentarily as the agent hasn't picked up a logon event yet for that network. I can resolve this issue by enabling Captive Portal and NTLM auth...

Additional disk on PA-VM Series

Hi,I've found information that it's possible to conect additional hard drive on VM-series PA machines for logging. Does anybody know how to do it ?Thanks in advance for help,SP

slapyr by L0 Member
  • 2381 Views
  • 2 replies
  • 0 Likes

Resolved! Phishing - why not blocked?

HiOne of my users send me email with phising link inside. Message was badly translated to polish so I hope no one will be fooled.I try to see what will happend if I click on it on test VM. Webbroser open webpage without any warning!!Where I can report this webpage as a phising one? IT ADMIN CENTER. <<think twice before clicking! who know w...

_slv_ by L4 Transporter
  • 3442 Views
  • 2 replies
  • 0 Likes

how to block access to firewall

Hi .How to block access to firewall ?i have PA on public IP adress, but i want allow access only for 1-3 ip address.i need to add this addres in DEVICE--> MANAGEMENT -->MANAGEMENT INTERFACE SETTINGS in Permitted IP Adrressorcreate a policy ??

Global Protect and proxy

Hello,I'm using global protect to connect to some of our customers (using dual factor authentication).Inside my company, Internet access needs to go through a proxy.Because the proxy asked for authentication, we create exception inside the corporate firewall to allow Global protect to connect directly to customer site.Inside the proxy, I created...

licenselu by L4 Transporter
  • 2431 Views
  • 1 replies
  • 0 Likes

The connection status on global protect agent was not changed from 'connected' to 'not connected'.

I am glad to meet you.Some users was done time-out on global protect. The tunnel was expired.But GP Agent status was ‘connected’ not ‘not connected’. Why was not the connection status on global protect agent changed from 'connected' to 'not connected'??Please look at the attached file.And PANOS is 4.1.15 with GP agent 1.2.6.Thanks.

Resolved! Have a site being blocked I cannot seem to unblock

I am having an issue where just a download for a printer driver is being blocked but cannot get it to be let through and need some help.The site is ricoh.com and we can get there no problem. You can navigate the site as well but when you find the download you need and click it you get a web page blocked page. It points me to one of our custom UR...

JeffTQT by L2 Linker
  • 8905 Views
  • 2 replies
  • 0 Likes

TrendMicro Officescan Updates aren´t recognized correctly

Hey folks,I´ve been having some trouble regarding TrendMicro Officescan. I made a policy which allows ‘trendmicro’, ‘trendmicro-officescan’ and ‘web-browsing’. The reason for adding ‘web-browsing’ was, that trendmicro usually get updates via normal http on Port 8080. I did this even though ‘trendmicro-officescan’ lists tcp port 8080 as one of th...

VUGD by L1 Bithead
  • 3240 Views
  • 2 replies
  • 0 Likes
  • 24340 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks