This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4230 Views
  • 0 replies
  • 0 Likes

Cisco - trunk- PA - trunk - Juniper SRX

Cisco - trunk- PA - trunk - Juniper SRXPlease help to configure PA-2050 for trunk ports between cisco and juniper.Which type of interface I should to use for this config.We can not use VirtualWire interfes, because from one side one port is connected to Cisco and for Juniper we have two ports. (Juniper Cluster)Thanks in advance.Bek.

Ulugbekyu by Not applicable
  • 4327 Views
  • 5 replies
  • 0 Likes

VPN Two-Factor Authentication integration into PAN ?

Hello all,recently I learned the Two-Factor Authentication solution from DUO Security. Basically it requires a PAN FW, an AD/Radius Proxy software provided by DUO Security and an Account/API Key.The Proxy software is the interface between AD/Radius and DUO Servers.Since PAN already connects to an existing AD/Radius I am asking myself whether it ...

gafrol by L4 Transporter
  • 7800 Views
  • 11 replies
  • 0 Likes

SMB: User Password Brute-force Attempt 40004

Hello all. I have a PA-5020 operating as our Layer 3 router between all of our VLAN's. For the past month or so the ACC on the Palo shows SMB: User Password Brute-force Attempt (ID:40004) as the #1 entry in Threat Prevention section. The attacker is our Antivirus (Kaspersky) Administration Server on VLAN 199 and the victim is a kiosk PC that ...

sadams by Not applicable
  • 23804 Views
  • 3 replies
  • 0 Likes

Is there a list of options / filters I can use in the Web GUI ?

Hi,Is there a list, a document that would explain how I can use filters in the Web GUI ? I know how to apply simple filters by clicking on a field -> filter, but I would like to use more advanced features.As exemples :- (tag/member eq 'TEST') will list all security policies that have "TEST" in their TAG list. How can I negate that so that onl...

PatrickD by L1 Bithead
  • 4258 Views
  • 4 replies
  • 0 Likes

brightcloud vs Paloalto URL DB

Hello,I'm thinking to migrate from brightcloud to Paloalto URL DB since I had to request a lot of recatogorization.Where can I find Categories list migration ? Does all categories match ?To migrate is enought to follow this doc https://live.paloaltonetworks.com/docs/DOC-4388 ?Can be reverted back ?Does anyone has feedback about migrating from br...

Global Protect Client Error Message

Hello all,I don't connect GP. GP client display error message.It is 'An error occured int the secure channel'.I use Window XP service pack 3.Only this desktop doesn't connect GP.Other desktop(window 7 , same account) connect.Please let me know resolved way.loThanks.

Is it possible to configure Agent User ID or Firewall or not to map a user?

Hello everyone, I have a communication tool on each PC users that perform LDAP queries to my AD to retrieve information from other users.This tool is using the same account (\ ccm), explain how to Palo Alto or rather the agent does not back this user?The current problem is that in my logs all IPs of my users are raised with In User \ ccm name.Th...

Resolved! Where can I download db data (PAN-DB)

Hello~for the first time I use url-filtering from PAN-DB and OS 5.0.4so I have to choice regionsI've been living in koreaand so Does I choose APAC regions?If url-cloud choose APAC reginoDose PA Device perform update or searching on APAC URL Cloud?

Resolved! How can I check DB Cloud entries?

HiBrightcloud urls support 100million entries.We can check URL MP Entries in pa box>debug device-server bc-url-db db-infobut I can't find brightcloud entries from cli commnadIt seems that There is no cli command,,I looked up manual, brightcloud site, documents;;Ones did not specify any where;;Some body help me Cli or site, documents, etcI wil...

Modifying application threat levels

Greetings,I'm trying to sort out if there is a way in PAN OS 5 to either squelch known hosts from appearing in the ACC risk factor list (one is my web content filter, another set of hosts are my web load balancers) or reduce the risk factor for particular hosts (under application web-browsing / general-internet/internet utility/browser based for...

eDub by L1 Bithead
  • 3548 Views
  • 2 replies
  • 0 Likes

Resolved! Using application-default with application override

According to product help for application-default: The selected applications are allowed or denied only on their default ports defined by Palo Alto Networks. This option is recommended for allow policies because it prevents applications from running on unusual ports and protocols, which if not intentional, can be a sign of undesired application ...

nthen by L3 Networker
  • 10259 Views
  • 6 replies
  • 0 Likes

Virtual-Wire Link Aggreagaion

HelloI installed about virtual-wire link aggregation. (image1.png & image2.png)all members of 'ae1' are ethernet 1/3 , 1/5 , 1/7.all members of 'ae2' are ethernet 1/4 , 1/6 , 1/8.all members of 'ae2' was disconnected when I had removed ethernet 1/3. (image3.png)They was connected after 5 seconds.(image4.png)The device is enabled link state p...

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks