This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4228 Views
  • 0 replies
  • 0 Likes

vpn-ssl Global Protect

helloMy problem is that when a user connects to the overall ssl vpn-protect this lifetime login settings in 1 day and the settings I have for inactivity logout is 3 hours and although the user activity during those three hours it off after that time is not respecting the settings that. I can do about it?

itstrap by Not applicable
  • 3101 Views
  • 2 replies
  • 0 Likes

Resolved! Session Timeouts

So my question is pretty simple.How are timeouts handled on these devices. Does it matter if I have rules based on services vs. applications?We have our global settings on the box set for TCP 3600. We have rules that are service based and ones that are application based. When the firewall identifies the application is seems like it defaults t...

smccall by Not applicable
  • 5066 Views
  • 4 replies
  • 0 Likes

Use x-forwarded- for to apply policy?

Dear all,I have a very important question and need your fast reply please.Can I use x-forwarded-for to show the ip address of the coming users behind a proxy and THEN apply policies based on these users?This scenario intends to apply policies per users while reaching the Firewall with the ip of a proxy. Can I?

gshaker by L1 Bithead
  • 3447 Views
  • 3 replies
  • 0 Likes

Resolved! Webbrowsing on non-standard http ports....

What is the best way for me to implement a rule that allows http traffic over non standard ports?Our security standards require that we use a feature similar to what is available in Checkpoint that allows us to lock the port down based on protocol. Ex: port 55000 is open and allowed assuming the traffic is http or https.Any help would be appreci...

smccall by Not applicable
  • 5176 Views
  • 3 replies
  • 0 Likes

Resolved! Duplicate Syslog Messages

Hi. We're running 4.1.9 on our firewalls and have an issue where all Syslog logging is being duplicated.I've seen an old bug fix report saying that 4.1 fixed an issues with some Config messages being duplicated, but was wondering if there is a known issue with 4.1.9 duplicating messages?I'm going through the config at the moment to see if I can...

apackard by L4 Transporter
  • 5177 Views
  • 3 replies
  • 0 Likes

Resolved! GlobalProtect SSL VPN User Access Filtering

Hello, I am fairly new to the Palo Alto firewalls so I figured I would pose a question to everyone while I continue my own research into the issue. Basically, in our test setup we have SSL VPN set up so that everyone in the office can authenticate via AD and access servers and resources through the tunnel. We want to be able to segregate this in...

Resolved! Panorama 32-bit/64-bit

I was just wondering if there is a 64-bit version of Panorama to run on a virtual machine? Right now we are running a 32-bit version and would really like to increase the RAM. We are limited to how much memory we can add since the VM recognizes Panorama as "Other Linux (32-bit)".

Resolved! Download GlobalProtect for Testing

I cannot see a way to download the GlobalProtect client for Mac and Windows, without activating it for the entire environment. I would like to download the latest version to a client for testing before release. How do I do this without activating it for everyone?

Resolved! What Event ID is the PAN-OS User Mapping Looking For?

In the PA 5.0 Admin guide the following is stated:"In Windows 2008 or later domains, you can add an account to the “EventLog Readers” group to access event logs to obtain user to IP mapping informationfrom event logs."What AD event ID is it looking for? I do not have a deep knowledge of AD and asking as I am being asked.

Viewing Drop Packets/Log on FW.

Is there another method to view logs/packets that are drop on the firewall without having to do a packet capture. Is there a command that could be used in the CLI to view all drops data. If anyone know if this is possible please comment.

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks