This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4120 Views
  • 0 replies
  • 0 Likes

Resolved! Spoofed IP address zone protection of vwire

Dear,We have created a zone protection profile with protection against "Spoofed IP address".We have put this protection profile on a vwire interface.Question:What will happen since a vwire interface has no IPs?Will this "feature" be ignored, or what will happen / how can we configure this to apply the protection?KR

mr.linus by L4 Transporter
  • 5843 Views
  • 6 replies
  • 0 Likes

Suspicious DNS Query's

Hello,We are running version 5.0.6 for a few weeks now and looks very good.We see now also in our threat detection the following threat "Suspicious DNS Query : ......" and this is blocked.This is very cool to block at dns level spyware and malware but the disadvantage of this is that the source client ip address is always your DNS server.So you ...

obor by L1 Bithead
  • 4048 Views
  • 1 replies
  • 0 Likes

Cant login to PA-VM300 via ssh or HTTPS

Can anyone help me here.. I recently installed a PA-VM300 and all efforts to login via https/ssh has proved abortive. I had to work my way via CLI to connect via http. Also everytime i click on commit on the PA-VM300, I get logged off , and always need to re-login? anyone experienced this?Olu

Resolved! Client certificate and LDAP authenticate on Global Protect

HelloI have a question.My customer want to use Global Protect.He want 2-factor authentication.User authentication client certificate on 1-factor.And then user authentication ID/PW to Active Directory by LDAP on 2-factor.I have searched and seen below."We're not using another form of authentication" on page 7 in this DOC.Can Global Protect use bo...

Resolved! Are there way that fw forward url & data filtering logs to ESM system by syslog??

Hello,I know there are not log type of url & data filtering on syslog server profile.But my customer want to receive two logs to ESM system by syslog.Are there ways?Please let me know it if there are.And I have a question.Panorama is received this logs(url , data) from FW.Why is it able to receive?Thanks.

Resolved! Help setting up internet connection

Hi thereWe're in the process of cutting over to a new internet connection and I'm trying to get our PA 2050 configured to handle to new IP range but I'm a bit stuck. We've been assigned the 111.69.54.112/28 subnet with 111.69.54.113 being the default gateway.Currently I've set the external interface to 111.69.54.112/28 and configured a virtual r...

Log Type Unknown

How do I figure out what the log type I have is when its showing me "unknown" for the current type?*edit* Sorry they are assumed for the IDS/IPS

Global Protect Welcome Page with ActiveX

Hi Guys,is it possible to customize the welcome page of Global Protect with ActiveX scripts? I need this to run Active Directory login scripts automtically after a connect with Global Protect.CheersDirk

DirkSch by L0 Member
  • 3045 Views
  • 3 replies
  • 0 Likes

Global Protect too many outstanding keep alive

Hello guy'sdid Someone see this kind off message in global protect agent log on windows device.message :too many outstanding keep aliveand just after this message a logout is innitiated the VPN session is mount conntected and after less than 2 min a lougout occured.very strange situation with the 12.4 global protect agent and 5.0.5 PANOS on PA500.

Gregoux by L4 Transporter
  • 4144 Views
  • 1 replies
  • 0 Likes

Resolved! PAN as an explicit proxy?

Hi all,I have a simple question, is it possible to make my PA-3020 work like an explicit proxy ?I configured URL Filtering and I would like to adress web requests to the PA-3020 just like if it was a real explicit proxy...Many thanks in advance.Rudy

Is there a possibility of Palo Alto releasing rule content, similar to the way Sourcefire/Snort handle IDS rules?

We have Palo Alto appliances and we have Sourcefire IDS appliances running side by side in various configurations at work. I can't emphasize enough how convenient it is to be able to have an IDS event fire off from our Sourcefire boxes, and when I drill into the event I can actually see the rule that was written that matched on the event.In my e...

  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks