This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Application Group for DC to DC communication

I have 2 domain controllers across 2 dmz's and i need them to talk. I have a list of ports I want to open but I want to keep it neat and create a application group. I dont see an easy way to search applications by ports.

Does anyone have a list of PA

...

jhickey by L3 Networker
  • 2684 Views
  • 3 replies
  • 0 Likes

Resolved! Why do "incomplete" sessions show as "allowed"

Hi.

I've got some pretty specific firewall rules for machine in our DMZ, and I noticed some intriguing log entries while checking into an (unrelated) issue today.

I get a log entry which reads like this

02/27 11:42:30      end     outside     DMZ     <s

...

darren_g by L4 Transporter
  • 27390 Views
  • 14 replies
  • 1 Likes

Blocking via file extension (Text only)

Am I able to block via file extension, the text file extension ony, without any inspection and/or identification by the Palo Alto unit?

I want to block jar files but the PA keeps telling me they are zip files and then allows them. I would like to bloc

...

choff123 by L3 Networker
  • 4293 Views
  • 5 replies
  • 0 Likes

Polycom Real Presence issue

Hi (it's my day for asking questions, it seems).

We have a client who desires that we connect to a Polycom video conferencing system using some software called "PolyCom Real Presence".

The trouble is - it doesn't work, or works intermittently - sometim

...

darren_g by L4 Transporter
  • 3466 Views
  • 6 replies
  • 0 Likes

Resolved! Help: how to use dynamic block list

Hi all.

I want use " Dynamic Block List" to block some IP.

I creat a IP list on a local web servers

But I can't import list in to Palo Alto?

Something wrong?

Pls help me.

Thanks

dat.tran by L2 Linker
  • 4276 Views
  • 4 replies
  • 0 Likes

PBR on 5.0 with redundant internet connections questions

Hello All,

New to Palo Alto.  I think PBR is working right.  But functionality is not what I wanted to happen.

I have Cisco DMVPN from all my remote sites to my corporate site.  This tunnel is created inside of the firewall.

my desired affect is to have

...

JColby by Not applicable
  • 1859 Views
  • 1 replies
  • 0 Likes

Resolved! Cant select app to clone

This might be a dumb question but I am having trouble cloning the Oracle application in the GUI. I have admin rights, there are no pending changes, and I've tried this from 2 different browsers. I find the application and there is a clone button belo

...

jickfoo by Not applicable
  • 6006 Views
  • 7 replies
  • 0 Likes

Resolved! PBF Interface Choices

I want to set up a policy-based forwarding rule to send all traffic from a particular Source IP out through port ethernet1/8.  I can't figure out how to get "1/8" in my list of interface choices.  All I have to choose from is vlan, loopback and tunne

...

wildfire and security policy - problem

I have enabled wilfdire protection on polisy for NAT (also antyvirus/antyspyware/Volnerability).

From time totime I get email with information that someone from my network downloaded some files infected ie. by malware.

Until now I think that this file

...

_slv_ by L4 Transporter
  • 6284 Views
  • 5 replies
  • 0 Likes

Blocking a site hosted malware

A new "parked domain" company and come to surface, and they seem to own a LOT of domain names, none of which brightcloud has correctly classified as "parked domain".  The server in question is hosting a piece of malware called seedabutor.b.  Our AV i

...

cenders by L3 Networker
  • 2212 Views
  • 2 replies
  • 0 Likes

Resolved! Virus install high CPU on Active, not standby?

Hi.

Configuration : 2 x PA2020, Active/passive, running 4.1.11, trying to install AV release 957-1328

I noticed today while pushing a virus definition update that the active node in my active/standby takes an absolute age to install/update, with the ma

...

darren_g by L4 Transporter
  • 1770 Views
  • 1 replies
  • 0 Likes

Resolved! Can I get all managed devices to show in Panorama Maps?

Do anyone out there know if it is possible to display all managed devices in Panorama in either the Threat or Traffic Maps?

We have branch firewalls in locations all over the country and it would be nice to see which were getting hit with more traffic

...

test security-policy-match

Hi

Somebody help me write command test security-policy-match....... which WORKS and search that rule:

     VIP-TEST {

        from zone-v586;

        source any;

        source-region any;

        to zone-v8;

        destination 192.168.81.81;

        destin

...

Wbm by L2 Linker
  • 4012 Views
  • 6 replies
  • 1 Likes
  • 24008 Posts
  • 102 Subscriptions
This widget could not be displayed.
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks