This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 314 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3660 Views
  • 2 replies
  • 14 Likes

Use x-forwarded- for to apply policy?

Dear all,

I have a very important question and need your fast reply please.

Can I use x-forwarded-for to show the ip address of the coming users behind a proxy and THEN apply policies based on these users?

This scenario intends to apply policies per use

...

gshaker by L1 Bithead
  • 2517 Views
  • 3 replies
  • 0 Likes

Resolved! Webbrowsing on non-standard http ports....

What is the best way for me to implement a rule that allows http traffic over non standard ports?

Our security standards require that we use a feature similar to what is available in Checkpoint that allows us to lock the port down based on protocol. E

...

smccall by Not applicable
  • 3481 Views
  • 3 replies
  • 0 Likes

Resolved! Duplicate Syslog Messages

Hi.  We're running 4.1.9 on our firewalls and have an issue where all Syslog logging is being duplicated.

I've seen an old bug fix report saying that 4.1 fixed an issues with some Config messages being duplicated, but was wondering if there is a known

...

apackard by L4 Transporter
  • 3512 Views
  • 3 replies
  • 0 Likes

Resolved! GlobalProtect SSL VPN User Access Filtering

Hello,

I am fairly new to the Palo Alto firewalls so I figured I would pose a question to everyone while I continue my own research into the issue. Basically, in our test setup we have SSL VPN set up so that everyone in the office can authenticate vi

...

Resolved! Panorama 32-bit/64-bit

I was just wondering if there is a 64-bit version of Panorama to run on a virtual machine? Right now we are running a 32-bit version and would really like to increase the RAM. We are limited to how much memory we can add since the VM recognizes Panor

...

Resolved! Download GlobalProtect for Testing

I cannot see a way to download the GlobalProtect client for Mac and Windows, without activating it for the entire environment.  I would like to download the latest version to a client for testing before release.  How do I do this without activating i

...

Resolved! What Event ID is the PAN-OS User Mapping Looking For?

In the PA 5.0 Admin guide the following is stated:

"In Windows 2008 or later domains, you can add an account to the “Event

Log Readers” group to access event logs to obtain user to IP mapping information

from event logs."

What AD event ID is it looking f

...

Viewing Drop Packets/Log on FW.

Is there another method to view logs/packets that are drop on the firewall without having to do a packet capture. Is there a command that could be used in the CLI to view all drops data.  If anyone know if this is possible please comment.

How to do URL Whitelists?

I am trying to figure out how to do Whitelists for a list of URLs and I am not having much luck.

By default all outgoing is allowed on everything internal.

I have a group of addresses that should only be allowed to view certain websites with wildcard

...

jeffm by L0 Member
  • 6540 Views
  • 4 replies
  • 0 Likes

Allowing "Save" function in a limited Admin Role

I have created an Admin Role for helpdesk users, limited to URL log, URL Objects and Custom URL Category.

However, the users do not get the "Save" Option in their login.

Anyone know which part of the tree I need to allow access to in order to get the S

...

DNS in IPv6 RA

I think it is time to start the first IPv6 only setups. What I missed in my testing setups was the DNS option in the RA (RFC 6106).

Has anybody IPv6 only setups routed via PA?

Unibw by L2 Linker
  • 2025 Views
  • 3 replies
  • 0 Likes
  • 24189 Posts
  • 100 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks