General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Resolved! PANOS 5.0

PAN seems tho have quietly released PAOS 5.0 a few days ago. Some nice new features in the release notes, but nothing beats real world feedback.5.

If you are already running it, what enhancements do you value most ? What issues do you experience ?

Resolved! configuration help-vwire subinterfaces with different policies per vlans

Hi all,

Its my first post here so I hope someone can answer my question regarding vwire subinterfaces.

As I was looking through the older topics the thing I want to achieve is similar to this.

https://live.paloaltonetworks.com/message/9679#9679

howe

...

Resolved! PA 5000 series grounding?

The PA 5000 series hardware reference guide does not show anything about the grounding lug that is present on the PA-5020 AC power firewalls. Is the grounding information the same as the PA-3000 series? 14 AWG, certified Lug crimpted, using a size #8

...

Resolved! x-forwarded-for header parsing.

With the command "set system setting ctd x-forwarded-for yes" the x-forwarded-for header is parsed to populate the source.user field in the logs.

However, which exact header is actually being parsed with this command?

Is it "x-forwarded-for" ? ( accor

...

Adding Threat Exceptions

Hi, I wonder if somebody can help me with a query?

I am running a 2050 as my firewall (I am new to looking after Palo Altos!). I have colleagues building workstations at another site coming across a VPN to access resources at my site. The router a

...

OID of the CPU and memory of PA-2050

Hi All,

I have an OP manager (network monitoring tool). I want to integrate it with Palo Alto. Does anyone have the OID for the CPU and OID for the memory of PA-2050?

Regards,

Eugene

Restrict VPN access to AD group

Hi,

I want to give a VPN ipsec access to a group of users.

In GlobalProtect Portal | Client Configuration, I set the AD group in Source User.

My problem : all the users in the AD OU have access to the VPN despite they're not in the group.

I must have mis

...

Resolved! block youtube highdef videos?

Anybody know if there is a HTTP header / URL or custom application signature which can be created to prevent users from playing back higdef youtube videos? e.g limiting them to only standard definition.

Cheers,

Feature Request - Automatic Configuration Backup

Hi all,

pls add a feature to allow automatic and scheduled (daily,weekly,monthly) configuration backups to be made to local HD, remote ftp/tftp/scp server.

kind rgds

Roland

Blocking YouTube but still showing the video player

We do not want to allow access to YouTube, however if I just block streaming-media in the URL filter, any page that has embedded YouTube videos get a block message confusing users. They are thinking that the page is blocked not realizing it is YouTu

...

Captive Portal for more than one security zone

Hi

Few months ago I sucessfully configured CaptivePortal (in redirect mode) with SSL certyficate from StartSSL for one of my local network connected to PA200.

Now I need to do the same for another local network, but on PAN I can only make one CP config

...

Resolved! Routing question - MPLS between two sites, with one of those connections being a failover ISP

Hello,

I've got a scenario in which I'm not sure how to proceed.

We have two sites, both sites just got new circuits.

In Site A, we have two new circuits (ISP #1 and ISP #2). I've set up in my PA-500 Policy Based Forwarding to have ISP #1 as the primar

...

Automatic switching between main and emergency link

Hi,

We have two link between our PaloAlto (PA 2050) and a Fortinet. I'd like that when our main link get down, that data goes through the emergency link, i've found how to do it on the Fortinet but no way on the PaloAlto. All I can do is changing the

...

DHCP, Captive Portal and strange behavior

Hi

In every security zone where I have Captive Portal enabled PA working as a DHCP server for clients.

Configuration of DHCP: (lease time is - 1day)

On clinet ipconfig /all show:

In system logs I have a lot of entries (this is from my test VM), other cli

...

Resolved! OSPF ERROR

Hello,

I have configured ospf in ha with PA4060 in V4.1.11

I can see my neighbor but my palo-alto with low priority stay DR and I can see the following error in log:

PA-4060-1(active)> tail follow yes mp-log routed.log

i/f idx 0 Hello packet dropped bec

...

General Topics

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free