General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 328 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3685 Views
  • 2 replies
  • 14 Likes

Resolved! New Palo Alto User - Dynamic Block List

Hi there,

I just got a new Palo Alto and I would like to load some IPs in a Dynamic Block List.  I have set up a Windows IIS Webserver on an old Server 2003 box with an IP 192.168.1.33  I have the site up and working and anoymous users can connect to

...

dmodien by Not applicable
  • 3636 Views
  • 5 replies
  • 0 Likes

Source user not showing in traffic logs

I have the agentless user-id configured in my PA-500, software is 5.0.4.  If I do a "show user ip-user-mapping all", it retrieves a list of usernames.  However, in my traffic logs (which is currently only limited to a few machines that are running th

...

uscit by Not applicable
  • 13661 Views
  • 9 replies
  • 0 Likes

Resolved! PAN OS 5.0 and AD authentication problem

Hello

I have a little problem with my PA-5020. After upgrading OS to a 5.0 version my user authentication to log on as an administrator from ldap and kerberos doesn`t work. I had user mapped to an allowed list by AD group:

cn=administratorzy paloalto

...

Resolved! User Activity Report Size Limitation

Is there some built-in limitation as to the maximum size of any given User Activity Report? It seems to max out at around 120 pages and just stops at that point, even when there is plenty more data to report on. Has anyone else experienced this? Any

...

shopeman by Not applicable
  • 4271 Views
  • 7 replies
  • 0 Likes

GlobalProtect performance questions

More questions on GlobalProtect (PAN 5.0.4, GP 1.2.2):

1) I have GlobalProtect currently set up with access routes to two internal subnets.  My understanding is that this "Access Route" section is split tunneling, where only traffic destined for those

...

uscit by Not applicable
  • 1576 Views
  • 0 replies
  • 0 Likes

Reverse direction in threat logs

When looking at the threat logs the vulnerability for spyware shows my servers as the attacker in the outbound direction. I have an inbound/outbound anti spyware policy and it caught jboss trying to access my network. Why does it show my servers as t

...

das by Not applicable
  • 2373 Views
  • 3 replies
  • 0 Likes

Multicast Packets forwarding

Hi Guys,

Looking for some help!

Quick simplifiy overview of the setup.

PA is the DHCP Server for two subnets:

Subnet A

10.101.0.0/16

Subnet B

10.102.0.0./16

All wireless clients are in subnet A  conencted via seperate enterprise Wireless LAn Controller and A

...

JAG by L1 Bithead
  • 6645 Views
  • 9 replies
  • 0 Likes

Login failure notification

I am looking for a method to send a notification by email when authentication to the firewall management is attempted but fails.  It would be acceptable to get an email for successful authentications as well.  Overall I am looking for methods to help

...

bogleric by Not applicable
  • 2620 Views
  • 2 replies
  • 0 Likes

Resolved! GlobalProtect Port 80 ,443 Incomplete


Hi

I'm Trying to set an enviorment to my mobile users (Laptops of Salesman), I used the Globalprotect to provide a secure tunnel to the office Firewall and

then gave the users access to terminal server, and it worked fine.

last week we installed a new S

...

ShayBar by L1 Bithead
  • 8396 Views
  • 11 replies
  • 0 Likes

Resolved! Cisco Guest Wireless - Issues?

Hi all,

I recently installed a PAN 5050 cluster in-line between my internal Cisco Wireless Controllers and the DMZ guest access mobility controller and saw the control and data paths flap constantly.  I put in an application override rule (along with

...

Packet Capture (VLAN)

    How can i capture the packets for only one VLAN? I have a virtual Interface ethernet1/6.40 and if i use a filter for only the interface (ethernet1/6) the PA doesn't capture anything.

  • 24193 Posts
  • 100 Subscriptions
Top Liked Authors
Labels