This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4105 Views
  • 0 replies
  • 0 Likes

Resolved! Possible issues with Application update version 396

We are seeing issues with Google ssl traffic being identified as Ultrasurf. Problem went away when we backed out the update (which included updates to the ultrasurf application definition). Ticket is into Support. May want to avoid updating to 396 for now.Phil

HITSSEC by L4 Transporter
  • 10974 Views
  • 17 replies
  • 0 Likes

PanGP- Connection verification

Hey guys,Anyone has had this issue with GP?The PanGP virtual NIC is making a "connection verification" for "ages" and nothing happens.I have made a workaround to solve this problem but would like to know what is the reason for it.Of 100 clients, I have about 20 having this problem.We aren t using any Proxy.//Ron

ron_maiga by Not applicable
  • 4217 Views
  • 5 replies
  • 0 Likes

User loses privileges...UserID

In our company we have two internet browsing profiles.Users who belong to the AD Domain users have limited access to internet and users AD group belongs to UsuariosInternet can access anywhere.My AD user is canopr and I have internet access from my PC (10.5.1.149), when I log on to a server by remote desktop (mstsc) and I identify with the user ...

Cleaning obsolete firewall rules

Hi all,We have recently migrated from Juniper to Palo Alto firewall and there are numerous firewall rules that are obsolete and potentially a security risk to me. I tried to use "highlight unused rules" button but it does not seem consistent to me. Are the highlighted rules unused since the firewalls start running or simply not currently used at...

Globalprotect msi

HelloIs there a difference between the Globalprotect msi files you can download from the software support site and the Globalprotect msi files you can download from your own Globalprotect portal ?The reason why I ask: I'm testing deployment of the GP client through Group Policy. I've noticed after installation, sometimes the portal address is no...

dieter_b by L4 Transporter
  • 5030 Views
  • 5 replies
  • 0 Likes

App-ID updates break existing rules

Howdy,How do most of you manage situations where App-ID updates break functioning rules? This just happened to me: I have Lync 2010 and the internal clients need to connect to the edge server. I had a rule in place that allowed ms-lync, ssl, and stun. That worked fine until last weeks update (396), at which point ssl was now identified as "ms...

msullivan by L3 Networker
  • 8777 Views
  • 8 replies
  • 0 Likes

Cisco VPN Client and PAN NAT

This is an obscure problem.I've got visitors from another company on our network trying to VPN back to their office with Cisco's VPN client to a Cisco ASA appliance. They are unable to connect, randomly. Most of the time, at least one can connect, but never all 5 of them.All my users (including these visitors) are NAT'd to the same IP address....

aglej by Not applicable
  • 9532 Views
  • 9 replies
  • 0 Likes

GP Portal Config

We need to create multiple GP portals mapped to the same physical interface on the box . We have setup the first one but we can't select that same interface to setup the second portal . How do we setup multiple portals on the same physical interface .

usvi by L3 Networker
  • 5221 Views
  • 7 replies
  • 0 Likes

mail/dns/www/ftp server in DMZ - need advice

HelloI'm preparing to move my server that is mail/dns/www into DMZ zone. I did some tests and it seems to be working - but as good as I can test...Do I should use application (dns,smtp,pop3,imap,ftp,web-browsing) or use a services on ports 53,25,110,21,80,465,993,995)? What are you using and why?My NAT rule:My security policy:I have of course U...

_slv_ by L4 Transporter
  • 3297 Views
  • 3 replies
  • 0 Likes

Global Protect Slow

I've been experiencing the Global Protect Agent to be extremely slow. Just upgraded to 1.2.6 hoping for some change, well it got even slower. Connecting via IPSec and I go from my Comcast home connection being 25Mbps down / 10Mbps up with speed test to less than 1Mbps up and down. Anyone else experiencing the same thing? Any words of wisdom?

gheimer by L0 Member
  • 2617 Views
  • 2 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks