This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4246 Views
  • 0 replies
  • 0 Likes

API call to clone multiple URL Filtering categories

Hi,I am trying to clone 2 URL Filtering Profiles "testProfile1" and "testProfile2" into "testProfile1-1" and "testProfile2-1" using the following REST API call.https://HOST_IP_ADDRESS/api/?key=LUFRPT1mQUJoTjh4S05rbkpBcWtLb2pZRERJekJTcDA9U2F1cU8ybzFzajFiaG5DSXV4UHJOOUdRWTJOaTVEQmU0eVY2VkZlMlVwQT0=&type=config&action=clone&xpath=/confi...

vp194m by L1 Bithead
  • 3122 Views
  • 2 replies
  • 0 Likes

Resolved! Problems with xauth and iphone vpn

Hi,I have a iphone (ios 7) what i am trying to connect to our global connect vpn setup.Android have the same problem, and computers using the global connect client is working fine.This worked fine some time ago, but now I am not able to pass any traffic through the vpn. Looks like there is a issue with default route.We have not the global connec...

klumpen by L1 Bithead
  • 7136 Views
  • 8 replies
  • 0 Likes

Resolved! Blocking Google Images Content

Hi,We have blocked Sex, and Nudity in the Category section.And that works fine for all the users on our PAN 4.xBut when the users go to google.com, and search for sex,they can still view unwanted content in the "Images" table of google.comHow can I stop this for Google, as well as other search engines...Regards,Tau

rz185016 by Not applicable
  • 7605 Views
  • 2 replies
  • 1 Likes

PA-200 with DHCP assigned Internet IP and GlobalProtect using self signed certs

Hello everyone, trying to find a how-to or config guide on how to configure PA-200 that has 2 interfaces configured, eth1/1 and eth1/2 runnin PANOS v5.0.8, downloaded and activated 1.2.7 GP client on the PA-200. eth1/1 is in untrust zone and setup with ip using dhcp from the ISPeth1/2 is in trust zone and setup with 192.168.1.1/24I would like to...

VM-100 L3 subinterface responding issue

Hello All,almost a year I have production VM-100 deployed on 5.1 ESXi infrastructure. One interface is divided to 2 subinterfaces and configured like L3 with one virtual router. Policies was deployed and everything working fine until users complain that they don't have internet access. After initial troubleshooting I noticed that from PAN perspe...

Tician by L3 Networker
  • 2101 Views
  • 1 replies
  • 0 Likes

Resolved! Upgrading from 4.1.6 to 5.0.0

Hi,i have several bug in my actual version 4.1.6. Yestedary my Pa rebooted suddenly because this bug "this was the last error 'infra-group: restarts exhausted, rebooting system'"So i would like to upgrade my device.Can i pass from 4.1.6 to 5.0.0 directly or i need a inteediate version???thanks

Custom report on certain file types?

Hi there,I want to be able to do a custom report showing me who has been downloading certain file types (avi for instance) on my network. Or at least, how I would be able to interrogate the data filtering logs to be able to show me this?The file types in question are all set to Alert on the data filtering profiles we use, but I want to be able t...

JRussell by L3 Networker
  • 4054 Views
  • 3 replies
  • 0 Likes

Global Protect - OS X 10.9 Mavericks

Has anyone had any issues with Global Protect and 10.9 Mavericks when trying to access SMB shared drives?If you have, have you found a solution or work around?Thank you

eputnam by L1 Bithead
  • 3388 Views
  • 2 replies
  • 0 Likes

Online Cloud Storage

Hi, I want to put together a policy to manage our user's access to online storage. We would like to restrict access to all but a few storage companies (DropBox, Hightail) and wondered how others manage such a task. Also, I'd like to accurately pull a report on the applications that fall under this umbrella. The difficulty I see is that not all o...

nickcx1 by Not applicable
  • 3347 Views
  • 1 replies
  • 0 Likes

Resolved! Enabling Jumbo Frames

Enabled jumbo frames at Device, Setup, Session. Question is, do I still have to go to each interface and specify the MTU size per interface or is the default value what I set at the device level? Basically, if I don't touch the interfaces what MTU will each interface use by default (assuming I enabled jumbo's)?Thanks!!!

fma by L1 Bithead
  • 15328 Views
  • 4 replies
  • 0 Likes

Why pdf file action is forward on wildfire?

Hello.I am seeing data-filtering logs for wildfire and have found some logs.It is pdf file log that action is forward.Wildfire configuration is any application and action forward.But PDF is not PE file.I don't understand Why pdf file action is forward.forwardData plan detected a PE file on a WildFire-enabled policy. The PE file is buffered in m...

Resolved! PA-500 - Error: Number of profiles (4294967292) exceeds vsys capacity (50)

I've inherited the management of a PA-500 that was previously linked to a Panorama server. When I try to commit I receive the following errorVSYS1 Error: Number of profiles (4294967292) exceeds vsys capacity (50)(Module: device)Commit failedI've looked through the the configuration and there only appears to be a handful of av, malware, threat...

Smi12 by L2 Linker
  • 4202 Views
  • 2 replies
  • 0 Likes

Resolved! Configuring CRLs

All,I am using a microsoft CA to issue machine certificates for global protect authentication. All is working, but the downloading of my internal CRL. Is there something I need to configure besides checking the "User CRL" option in my certificate profile? I have changed the publish time on my CA, have revoked a working cert, but still able to...

dan731028 by L3 Networker
  • 4539 Views
  • 1 replies
  • 0 Likes

Using client certificates with an authentication sequence for Global Protect

Hello,Is it possible to use client certificates for both AD and local users for global protect? I have a working authentication sequence, but have a requirement to use client certs. If it is possible, would it be better to generate the certificates from the domain microsoft CA or could I generate them on the PAN device? I would prefer to use ...

dan731028 by L3 Networker
  • 3882 Views
  • 2 replies
  • 0 Likes
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks