This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 317 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3664 Views
  • 2 replies
  • 14 Likes

Resolved! Basic fundamentals

Hi,

Just have some queries on Palo Alto firewalls posting some questions. Help on these is much appreciated.pi

1)  How to initiate a ping from GUI

2) As per my knowledge Vwire Sub-interfaces must be acquiring the properties from parent interface, and we

...

Captive portal doesn't show with Firefox

Is anyone out there having issues getting captive portal to show when using Firefox.  All I get is a blank screen, the URL does not change to the redirect address and it appears to be stuck doing something.  The environment is the following:

* Firefox

...

victormg by Not applicable
  • 2422 Views
  • 2 replies
  • 0 Likes

Resolved! Push dynamic update through Panorama

Hi all,

Does anyboby know if it's possible to either push dynamic (scheduled of course, don't want to do that manually every day) update from panorama to managed palo or configure palo for requesting their dynamic update to panorama ?

of course palo do

...

VinceM by L5 Sessionator
  • 2898 Views
  • 5 replies
  • 0 Likes

Just skype

Hi,

An environment like LAN - PAN - Proxy - Router - Internet

is there a way to block everything but allow just skype.No web browsing, nothing allowed except skype.

I tried some rules but skype couldn't connect.

Thanks.

panos by L6 Presenter
  • 3344 Views
  • 6 replies
  • 0 Likes

Palo Alto blocking Symantec Antivirus

My URL filter on my PA2050 is blocking https://143.127.102.40/mrclean as malware-sites.   This is Symantec SEP talking to the Symantec cloud.   A discussion of the URIs used by Symantec is located here: Clients connecting to an IP. | Symantec Connect

...

EdwinD by L3 Networker
  • 1923 Views
  • 1 replies
  • 0 Likes

SSH proxy presents two different keys seemingly randomly

Has anyone ever seen the Palo Alto present multiple different SSH keys to the clients?

I'm testing SSH proxy and it seems that the palo alto vacillates between two different keys that it presents to clients.

This won't work because the scripted applica

...

bfperez by L1 Bithead
  • 1240 Views
  • 0 replies
  • 0 Likes

cluster question

Hi,

Device1 Active

Device2 Passive

When a failover happens...it takes about 7-8 timeouts(45 second) : device1 passive device2 active

When a failover happens again  it takes about 1 timeout(good time):  device1 active  device2 passive

Any ideas ?

Thanks.

panos by L6 Presenter
  • 1788 Views
  • 3 replies
  • 0 Likes

SYSTEM ALERT: Version 5.0.5

Hi All,

After upgrading to version 5.0.5 i have a strange thing....

---

severity: high

opaque: HA Group 1: Peer version of 5.0.5 not compatible with the HA2 keep-alive setting; disabling HA2 keep-alive

---

severity: critical

opaque: HA Group 1: All HA1 conn

...

Oleksandr by L3 Networker
  • 2904 Views
  • 9 replies
  • 0 Likes

Resolved! M-100 Panorama Mode Collectors in HA

Probably an obvious question but the documentation doesn't seem to reference this directly...

If I have 2 x M-100s in HA, by default they are in a state where the primary is listed within the "Managed Collectors".  From what I understand the logs are

...

dmeier2 by Not applicable
  • 2527 Views
  • 2 replies
  • 0 Likes

Resolved! Global Protect with Active Directory Accounts

Hello all,

I have what might be a simple question. I want to authenticate to Global Protect SSL-VPN using my current Active Directory users. Do I need to have the User ID software installed on a domain server to do this? If thats needed for LDAP can o

...

jnunham by Not applicable
  • 2639 Views
  • 5 replies
  • 0 Likes

Resolved! Bi-directional NAT is still requiring a /32 static route

I have two VPN tunnels established with a vendor.  1 is in San Digeo and 1 is in Las Vegas.  The subnet in SD uses 10.220.1.0/24 and LV uses 10.220.2.0/24.  With both tunnels they want me to NAT my IP of 172.16.1.235 to 10.200.249.30.  I have a NAT s

...

nthen by L3 Networker
  • 3173 Views
  • 4 replies
  • 0 Likes

Resolved! HA PORT CONFIGURATION IN 4.1.12?

Hello world,

I have done an upgrade of PA2050 cluster in 4.0.9 to 4.1.12. In 4.0.9 the link speed and duplex for HA PORT was forced.

after the uprade in 4.1.12 I lost a lot of packet and when I tried to do a commit I had an error message.

Commit failed

...

alle by L3 Networker
  • 2446 Views
  • 2 replies
  • 0 Likes

Communication within different Trust Zones

Hi,

I am working with PAN-500 3.0.9.

I have configured 2 trust zones and 2 untrusted zones.

l3-trust IP 192.168.0.254/22; l3-untrust 200.78.x.x

l3-trust2 IP 192.168.10.254/24; l3-untrust 201.161.x.x

I need that users from l3-trust get access to servers lo

...

Resolved! Block but don't log

Is there a way to block some vulnerabilities or spyware without logging them? For instance I would like to block all the Microsoft SQL Server Stack Overflow Vulnerability but I am tired of them skewing some of our charts and stats. it looks like I ca

...

jmayne by Not applicable
  • 2184 Views
  • 3 replies
  • 0 Likes
  • 24190 Posts
  • 100 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks