This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4235 Views
  • 0 replies
  • 0 Likes

Resolved! Get FQDN table using XML-API?

Does anyone know if it's possible to get the current FQDN table (CLI> request system fqdn show) using the XML-API? We recently had an issue where a bad FQDN mapping was retrieved and I want to set up monitoring to catch it if it happens again.

User-ID Agent & Desktop PowerManagment

We have User-ID agent setup and running, Where it polls the machines every 20 minutes, to track the users.Since we are now trying to implement Power management on the Desktop. It appears that the USER-ID agent system is waking the machines up. Has anyone else run into this problem? And if so what solutions have you found?So far these are the sol...

Resolved! How can I publish a Server via a public IP from the same Subnet of the WAN Interface?

Hi guys,I'm new to PAN Firewalls and currently I am trying to publish a customer's SBS Server via a PAN200. The Firewall has the public IP 218.1.1.218(of course i posted a fake one ) and the server shall be accessible via 218.1.1.220. - I've configured Accessrules allowing traffic from WAN to LAN + SBS internal IP- Static unidirectional NAT for...

vertical by L2 Linker
  • 7564 Views
  • 8 replies
  • 0 Likes

nat with port forwarding issue (migrating from MS-TMG)

Hi,when migrating rules from MS-TMG to PAN i have encountered folowing situation:a. web server A is in private dmz zoneb. web server B is in inside zoneBoth are listenig on port 80. Problem is in the fact that both are published on the same public IP address. This is supported on TMG, with some kind of url forwarding but i dont know if PAN can s...

agrgic by L1 Bithead
  • 3815 Views
  • 3 replies
  • 0 Likes

Resolved! Is it possible to create a custom report that mimics Browsing Summary by Website in a User Activity Report?

Community, I'm trying to create a custom report that mimics the browsing summary available under the user activity report but the custom report does not group results the same way. For example, if I have a user visit multiple news stories at www.nbcnews.com, each page will count toward the main URL link of www.nbcnews.com in the user activit...

Resolved! Blocking Spotify P2P function

We want to allow the use of Spotify for our clients, but Spotify does not only download files, but it also shares files through P2P to other users of Spotify.We wish to only allow download/streaming, and we wish to block the P2P upload feature.Please see more information here: Lithium's blogAnyone?

Resolved! User ID Mapping Directly to Firewalls

Good afternoon,Previously we used the PAN-UID perl module to update User ID Agents running on servers, which would in turn update the firewalls.With version 5.0, there is not this capability:2.9 User-ID mapping Beginning with PAN-OS 5.0.0, you can apply User-ID mapping information directly to the firewall using the API with the type=user-id para...

Resolved! what do people search ?

Hi,Is there a way to track especially google searches from url filtering ?From url filtering logs it cannot be seen the same url as a person visit when searches for a word.we need search stats

Unknown Application Packet Capture

HiI want know about Unknown packet capture.Q1. Where is unknown pcap stored? [Device] > [Setup] > [Management] > [ Logging and Reporting Settings] App Pkt Capture ?Q2. I want know Unknown Pcap Usage.Q3. When is capture unknown packet in PA packet flow?Regards,

smaekawa by Not applicable
  • 4658 Views
  • 2 replies
  • 0 Likes

Resolved! Captive portal not redirecting for some users

Hi thereWe've just enabled Captive Portal for all of our users but I'm getting a small number of users who are simply not being redirected to the captive portal to authenticate. I've noticed that Safari on Mac is a common theme but there are a number of PC users with the same problem.I have a small selection of trusted IP addresses which do not ...

Domain is pointed as Malware

Hello,today we had a suspicious DNS Query warning because we tried to reslove a domain (pandaro.be).So Palo Alto gets information about domains and checks some information about these domeains.My questions about this:1/ What is PA using to decide which status a domain gets2/ What is PA checking at a domain to decide about the status2/ If a dom...

wolfrene by Not applicable
  • 3996 Views
  • 2 replies
  • 0 Likes

Resolved! link aggregation down

Hi,We configured link aggregation but although switch side ports become up, on PaloAlto they are down.Any idea ?show interface ae1--------------------------------------------------------------------------------Name: ae1, ID: 48Link status: Runtime link speed/duplex/state: unknown/unknown/down Configured link speed/duplex/state: auto/auto/auto ...

vpn issue

Hi,After side to side vpn established correctly after sometime(I do not know how many hours) Phase1 becomes passive.Side1 cannot access Side2.when we try to use test vpn command for ike it becomes up and it works.What can be reason for that ?

  • 24358 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks