This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4112 Views
  • 0 replies
  • 0 Likes

Resolved! Global Protect license question when using different PAN OS versions

Please let me know what the license situation is for Global Protect when using different PAN OS versions:4.04.15.0Do you I need a Global Protect license when using PAN OS version 4.0?Do you I need a Global Protect license when using PAN OS version 4.1?Do you I need a Global Protect license when using PAN OS version 5.0?Thank you!

bbsoc by L2 Linker
  • 2386 Views
  • 1 replies
  • 0 Likes

botnet-domain alert in GUI

Hello,on the cli show command I see under "XX Anti spyware" profile the botnet-domains policy but I'm not able to find it on GUI under object-securityprofiles -> antispyware.Where botnet-domain behavior is configured on GUI ?thank's .. here below the Cli output:spyware { "XX Anti Spyware" { rules { simple-critical { severity c...

Resolved! Blocking Single URL

Our students have decided it is fun to install the nCage Chrome extension which changes all images on a web page to a picture of Nicholas Cage. What is the best way to block a single URL from being accessed -- they are installing it via the Chrome Web Store.We have a PAN-500.The url in question is: https://chrome.google.com/webstore/detail/ncag...

Reverse-Proxy

How can I use Palo-Alto as reverse proxy. Suppose I have a DMZ zone that has all the web servers and I want the DMZ interface to act as reverse proxy.The untrusted interface facing the internet would do the NAT translation. Then send the traffic to Dmz1 interface. At this point I want the Palo-Alto to act as reverse-proxy.

knesan by Not applicable
  • 4838 Views
  • 1 replies
  • 0 Likes

Resolved! How can I detect and stop 3rd party VPN tools used to bypass my network security

We are a private high school with a growing laptop population but these kids work hard trying to circumvent our security. They have found using 3rd party VPN tools, mostly single exe's they hide in their recucle bin when they fear exposure. This tool comes with statements telling the user it is illegal and it will get them around the "best sec...

Sessions aging , scaling , app tricking etc

Hi,Could someone briefly describe the significance of these values shown in the output for "show sessions info" and how they may be tweaked from a performance perspective ?-Session accelerated aging: True Accelerated aging threshold: 80% of utilization Scaling factor: 2 X--...

Resolved! App-ID number mapping to App-ID name

Does anyone know how can we get the App-Id name from an App-Id number? We can get statistics of the running App-ID cache ("show running application cache") but i can't find an easy way to map the App-Id number to the App-Id name.Thanks,Adriano Carvalho

adcar76 by Not applicable
  • 3495 Views
  • 2 replies
  • 0 Likes

Vulnerability Vs Successful Expolit

Hi,I would like to know how easy or hard it might be to link a vulnerability to an actual successful exploit. The threat details are provided below and a screenshot of the actual threat incident seen in attached. I am assuming this is just a random attempt at the recent timthumb attack. As I do not see the next stage which would have been , as ...

Local admin accounts on PAN firewalls?

Hi,We use Panorama to manage or configure individual PAN firewalls. There is however times when we need to connect to the individual firewall for troubleshooting or faster response while monitoring. The Panorama is configure with Authentication Profile to authenticate against Active Directory. We would like to have the same facility for the indi...

Need help in OID

Hi Guys, I like to know the exact OID to find interface IP. Using RF-1213 MIB, I am able to find the bytes transferred or up status, how how do I find the IP of an interface using an OID?Regards,M.Viswesh

Saravanan by Not applicable
  • 4782 Views
  • 4 replies
  • 0 Likes

Resolved! Hi..~

Hello,,~I was worried about os updateWhen I updated pan os ,, Suddenly Device did not process downloading,,I did check CLI Command> show jobs prcesseddownload 20 % stop,,and then I tried to wait for a whilebut,, Device still did not working about pan os downloadand so I would like to kill process (download pid)I would not like to Reboot Paloa...

How to block Ultrasurf?

Hi guys,i create a rule to block Ultrasurf on top and a rule to allow any below it. but ultrasurf still can bypass. surprisingly once ultrasurf connected to its server, PAN unable to logged the traffic. No traffic looged in URL filtering, Threat and Traffic log.this tested on 4.1.x to 5.0.x with the latest content definition.anyone can share som...

afiq by L1 Bithead
  • 11439 Views
  • 8 replies
  • 0 Likes

High Ping times on Speedtest.net and slow web browsing

We have been experiencing very high ping times on speedtest.net (6336+ seconds) and very slow web browsing to international websites (National sites appear to be running fast).(I understand that speedtest.net cheats and sends very small HTML files to determine ping time to sites)We placed a PC directly on the external side of the firewall and pi...

jenkinsp by Not applicable
  • 4347 Views
  • 2 replies
  • 0 Likes

Resolved! New Palo Alto User - Dynamic Block List

Hi there,I just got a new Palo Alto and I would like to load some IPs in a Dynamic Block List. I have set up a Windows IIS Webserver on an old Server 2003 box with an IP 192.168.1.33 I have the site up and working and anoymous users can connect to it by going to http://192.168.1.33/test.txt. The document test.txt and is formatted like so:192....

dmodien by Not applicable
  • 5127 Views
  • 5 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks