This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4223 Views
  • 0 replies
  • 0 Likes

How to restrict a vlan to get only the 360p from youtube?

Hi There,Our's is a school and students are always watching youtube videos in full HD quality which makes the bandwidth utilization to the peak. We don't want the students to watch youtube in HD but force them to 360p which is comparatively less bandwidth consumption. Is there any way to accomplish this in PA 2050 with 5.0.3 OS version. I really...

ajay by Not applicable
  • 7145 Views
  • 7 replies
  • 0 Likes

Resolved! Is there a way to force the GlobalProtect client to not connect if the client sees certificate shenanigans?

What I mean by the title of this discussion is that when the GlobalProtect client goes to initiate an SSL VPN session, instead of prompting the user to "cancel or continue," can the client respond to the user with something like "Invalid certificate detected. Due to security concerns your connection cannot be established at this time. Please cal...

Create Policy based on workstation name and AD group membership?

I'm wondering if there is a way to create a policy based on workstations in a certain AD group. Here's what I'm trying to accomplish... I want to have a security group in our Active Directory, say "Privileged Workstations" for a name. Any workstation that is a member of the "Privileged Workstations" group will have a static IP and will need t...

promsos by L1 Bithead
  • 4452 Views
  • 4 replies
  • 0 Likes

Resolved! any way to inject a parameter into a url

Hi I am trying to resolve the issue with the new google safe search changes that have happened. I am from a school and we are having issues with students being able to search for inappropriate content on google images due to their recent changes of not forcing strict safe search on. Previously we have used the work arounds that are on articles 1...

Resolved! Global Protect does not work

HelloI'm running the PAN OS 5.0.2.I'm getting the following error with my GlobalProtect:(T4364) Error(11792): failed to SetDoc. Message: errors getting GlobalProtect configWhere is my problem?Here is my config:<global-protect> <global-protect-gateway> <entry name="GPG_xxx"> <roles> ...

Resolved! Has anyone had problems with random VMWare View client drops through the PaloAlto to the View Gateway?

We had issues with random session drops with VMWare View client connections through a View Gateway security server. After we moved from traversing a Palo Alto VirtualWire to the server in a Cisco ASA DMZ to just a straight L3 Palo Alto deployment the problem went away. We even had the drops with App-ID override but fewer.Now though with the 356-...

bspilde by L4 Transporter
  • 6982 Views
  • 7 replies
  • 0 Likes

Resolved! Possible to forward GlobalProtect HIP data to RADIUS server?

I would like to be able to forward certain information about the client (mainly MAC address and hostname) to my RADIUS server for use in authentication. Is this possible with the PaloAlto firewall? I've been digging through the docs for about a day but I'm not seeing any way to do it.

dshafer by Not applicable
  • 3562 Views
  • 3 replies
  • 0 Likes

Sending email alerts when thresholds are violated for data filtering

Is there a way on the PAN firewalls to send email alerts when thresholds are violated for data filtering? If SSNs are now going out of my network, is there a way to trigger emails to better alert me to the issue rather than continually refreshing the log files? I can get alerts via email for other areas. Maybe I am missing something

nthen by L3 Networker
  • 2913 Views
  • 1 replies
  • 0 Likes

QA new release

Hi,Anybody having much issues with latest release on 4.1.11 and 5.0.2,3,4?I think quality assurance should be increased. As we have a lot issues with those new releases.=> user id taking 100% mgmt on 4 and 5 releases.=> connection to user-id agents flapping=> custom url blocking page cause client browser to freeze=> app override caus...

Resolved! Streaming video server disconnecting every 30 seconds

Hi folks.I'm tearing my hair out with this one, so I'm hoping that someone can point me in the right direction.We have an installation of the Unreal Streaming Media server running in our DMZ off our Palo Alto firewall. This server is used as a central access point for both receiving and distributing streamed audio and video for business purposes...

darren_g by L4 Transporter
  • 18332 Views
  • 21 replies
  • 0 Likes

Resolved! is qos marking in security policies automatically applied bidirectionaly?

e.g If there is a security policy applied from just "untrust to trust" permitting Citrix traffic and giving it DSCP marking of AF4x .. will the return traffic from the connection that is flowing back from "trust to untrust" have the same AF4x DSCP marking automatically applied when it exits the untrust interface? or does that require another ex...

CMG by L2 Linker
  • 2918 Views
  • 1 replies
  • 0 Likes

Resolved! Asking about upgrade PANOS from 4.1 to 5.0.4 !!

I have Project with PAN 5020. After deploing Appliance to Customer site, they need me to make a test call UAT ( User Acceptance Test ) using Palo Alto.But when i working with UAT, i need using PANOS 5.0.4 , but the PANOS included in Appliance with PAN 5020 is 4.1 I have download 5.0.0 and 5.0.4, but i still can't update PANOS. The device alert...

MinhTuan by L0 Member
  • 2413 Views
  • 1 replies
  • 0 Likes

Resolved! PANOS 5.0

PAN seems tho have quietly released PAOS 5.0 a few days ago. Some nice new features in the release notes, but nothing beats real world feedback.5.If you are already running it, what enhancements do you value most ? What issues do you experience ?

dieter_b by L4 Transporter
  • 6990 Views
  • 8 replies
  • 0 Likes

Resolved! configuration help-vwire subinterfaces with different policies per vlans

Hi all,Its my first post here so I hope someone can answer my question regarding vwire subinterfaces.As I was looking through the older topics the thing I want to achieve is similar to this.https://live.paloaltonetworks.com/message/9679#9679however I want to use vwire subinterfaces instead of L2.According to course material it can be done.Basicl...

pkonitz by L2 Linker
  • 8791 Views
  • 4 replies
  • 1 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks