General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

New Product mention feature

Hey everyone, We just enabled a feature on the LIVEcommunity that allows for products to be linked inside of discussions or articles.. this helps cross link information throughout the site, especially useful if you are looking for specific informatio...

jdelio by Community Team Member
  • 166 Views
  • 0 replies
  • 4 Likes

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 23088 Views
  • 43 replies
  • 32 Likes

Resolved! IP to user mapping issues with Pan Agent

We run McAfee which does some user authentication on AD for group policies. The problem is that when this happens, the ip to user mapping shows this service account as the user instead of the actual user that is logged in. The actual user is then una...

hallk by Not applicable
  • 1134 Views
  • 3 replies
  • 0 Likes

Errors with Cosutm Reports

Hi Guys,Since I have upgrade to 3.1.6 (December 2010), the PA-500 is unable to run Costum Reports longer than 1 week or last 7 days, I downgraded to 3.1.5 but this does not work. Right now I have version 3.1.6, an every time I try to run a Custom Rep...

IPS Default Protections?

I need a techincal answer for default protections with PAN IPS enabled. If possible, think in a CP-to-PAN conversion. I know...apples to oranges. TIA - Jeff

jhill by Not applicable
  • 820 Views
  • 1 replies
  • 0 Likes

Control android and other smartphones

I managed to use the setup for blockin iphone/ipad trafic. https://live.paloaltonetworks.com/docs/DOC-1503Some questions... How do we do this for other smartphones?And is it possible to control this with IP range for instance? Or other methods?Thinki...

oddmbjer by Not applicable
  • 1328 Views
  • 1 replies
  • 0 Likes

URL Block Question

So I have a need to block almost all internet access for a certain group of folks. They are in a warehouse and only need access to a few websites (time clock, shipping sites, etc) related to their jobs. How I'm doing this currently is to use a Active...

What is Trusted CA Certificate used for?

According to the PA-3.0_Administrators_Guide.pdf:"Trusted CA certificate—Import an additional intermediate certificate authority (CA) certificate to trust when doing SSL decryption. If the firewall encounters a certificate that is not signed by a tru...

rps by L3 Networker
  • 3143 Views
  • 9 replies
  • 0 Likes

Custom URL not working

Hi,I have a PA2020 system with Custom URL category defined and it was working fine on 3.1.4.When we upgraded to 3.1.6, the Custom URL category was not working and URL present in the custom category were being blocked, even if they were in the allow l...

vinesh by L2 Linker
  • 1110 Views
  • 5 replies
  • 0 Likes

Resolved! Using LDAP/AD names for firewall GUI login

HiI believe I've successfully set up LDAP authentication in our Palo device. All of our groups and users are appearing when searched for using "show user ldap-server server all" and they show up in Authentication Profiles when changing the Allow List...

SMB URI Filtering (Custom Applications)

I'm wondering if it is possible to define an 'application' based on an SMB URI path?Example - I have two shares on a SMB SAN server \\san\public and \\san\secret; is it possible to apply a firewall rule to a Palo device that sits between this server ...

apackard by L4 Transporter
  • 759 Views
  • 4 replies
  • 0 Likes

SYN Flood

hi : I have a question in regard to Flood Protection Thresholds under Zone Protection. Do the thresholds for Alert/Activate/Maximum apply to counting SYN packets directed at a partuicular host or to counting SYN packets directed at all the hosts in t...

wlu by Not applicable
  • 1170 Views
  • 4 replies
  • 0 Likes

Checkpoint FW-1 Telnet Authentication - PA Alternative?

HiWe will be installing 2x PA4050s into our datacentres to replace our current Checkpoint Alteon Switched Firewalls. We use Checkpoints "telnet authentication" on TCP port 259 to allow super users access through the firewalls based on their IP addres...

fmd by L3 Networker
  • 826 Views
  • 4 replies
  • 0 Likes
Top Liked Authors