This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4112 Views
  • 0 replies
  • 0 Likes

Resolved! url filtering speed

Hi,When enable url filtering page loads late.Same page loads very quickly when disable url filter.All sites same issue.any idea about that ?

What is 'cotp' ?

Hi,-----------------------------------------------------------------------A new 'cotp' App-ID will be available in the upcoming content update for the ISO transport protocol 8073 over TCP. When allowing applications such as ms-rdp, t.120, and iccp, that use the COTP protocol, a policy change will be required to handle the dependency.------------...

komure by Not applicable
  • 23205 Views
  • 2 replies
  • 0 Likes

Resolved! How to create custom response pages

Hello,I know that the Device -> Response pages menu allows to modify response page, but how can I add my own response page ?What I would like to do is displaying an advertisement page when traffic is blocked during working hours (using schedules).Is there a way to configure such feature ?Kind Regards,Laurent

ldormond by L3 Networker
  • 6586 Views
  • 6 replies
  • 0 Likes

Inbound NAT with DHCP

Hi,Is it possible to do a inbound NAT when the outside/untrust interface is a DHCP client?Here is the NAT rule i`m trying to commit, but thats not working.../kristian

kristian by L3 Networker
  • 2780 Views
  • 2 replies
  • 0 Likes

Migrate subinterface config to another interface

Hi,here is a sample of my configuration.I have trunk link (from a cisco device) to the 1/6 interface, where i configured several subinterfaces.You can see that we have the 1/6.3 in the Virtual Router vr-recette in the Virtual System Recette.And after that I have 1/6.206, 1/6.207,1/6.208 in the Virtual Router vr-sante in the Virtual System Sante....

CRF by L1 Bithead
  • 6835 Views
  • 5 replies
  • 0 Likes

Policy Based Forwarding for Application "Ping"

Hello,i want to make a policy for "Policy Based Forwarding" to route only ping traffic to a different router. Is this possible?I testet a rule with a service "tcp/udp Port 0" -> Don't workI tested another rule with an application "icmp" -> Don't workFor testing suppose i create anoher rule with service "any" and application "any": This rul...

Resolved! When not to use agentless user-id ?

Hi,For big environments it is advised to use user-id agent.How will we be sure ?is there a comparison for this.User number, DC number , ??? any number ? etc...When we should install agent software ?Thanks.

Restricting Application Port

I would like to create a custom App for SMTP submission. All I really want to do is restrict the "smtp" App to use 587/tcp only. It's usual "default ports" action is to allow 25/tcp or 587/tcp.I just tried to create a Custom App based on "smtp," but have the only default port be "tcp/587." As I seemed to vaguely recall the other times I've tried...

cosx by L2 Linker
  • 3952 Views
  • 2 replies
  • 0 Likes

Resolved! Split internal and external DNS lookups

I am wanting to split internal and external DNS lookups on my PAN appliance to cut down on some traffic hitting our internal DNS servers. I think I can use a DNS Proxy to specify where the resolution occurs and what interface. Does anyone have experience in splitting DNS lookups in this fashion?

nthen by L3 Networker
  • 4794 Views
  • 3 replies
  • 0 Likes

Resolved! System Alert:Failure to check wildfire content upgrade

In last two days, I started getting system alerts that says "SYSTEM ALERT : high : Failed to check WildFire content upgrade info due to generic communication error" and another that says "SYSTEM ALERT : high : HA Group 1: Anti-Virus version does not match" from PA-3020 HA pairs. the HA alerts comes always at 1:31am. The system's health seems ok...

awarsame by L1 Bithead
  • 9278 Views
  • 5 replies
  • 0 Likes

Resolved! zabbix

Hi,anyone has a document configuring an already installed Zabbix snmp for PaloAlto device ?Thanks.

Delete Antivirus Dynamic Update

Hello,I tried threats & antivirus license on a PA 4020.My license was end, so I deleted it using CLI -> works fineBut how to delete antivirus dynamic update package ?? I can't by using web, I tried with CLI : delete anti-virus update (but the pack is not listed).I'm on PANOS 4.1.11Thanks,Franck.

Can PAN device publish client certificates?

I made 5 users into LocalDB, and I configured GlobalProtect Portal & Gateway.It works fine so far.Now I want to generate 5 client certificates for each user and use Client Cert Profile and Local DB as two factor auth. when I connect to GP.My PANOS is 5.0. Is it possible to publish client certs?I could confirm I can configure CA under Device ...

emr_1 by L5 Sessionator
  • 3857 Views
  • 4 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks