This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4253 Views
  • 0 replies
  • 0 Likes

Resolved! VPN client-to-site

Hi!I wonder if anyone managed to configure the IPsec VPN with AD authentication.Note: No license Global protect.At.,

Bismarck by L1 Bithead
  • 4244 Views
  • 5 replies
  • 0 Likes

How to force generating a daily pdf report?

Is it possible to force generating a daily pdf report? I am working on fine tuning reports to be send out on a daily bases, but I really don't want to wait 24 hours to wait for the result. Is there a way to force sending our the daily reports? There is a button to send a test email, but that only sends a plain text email. (Please see attached sc...

bbsoc by L2 Linker
  • 4415 Views
  • 4 replies
  • 0 Likes

Resolved! How do I reset a PA activated address block action?

Since you are able to Block the source and/or destination IP address as an action taken in a protection rule (IPS, Spyware, Zone protection etc...) is there a way to reset the timer before the elapsed time has been reached. If you block for 3600 seconds and find out 5 minutes after the event took place that it is a false alarm do you have the a...

HITSSEC by L4 Transporter
  • 2449 Views
  • 2 replies
  • 0 Likes

VPN tunnel config question

I'm running PANOS 4.0.13. Can I set up a tunnel where the peer IP is 1.1.1.1 and the remote proxy id is the same IP as the peer? I think I tried this before on an earlier release and it didn't work, so I had to NAT. Thanks!

iguarino by L0 Member
  • 2557 Views
  • 2 replies
  • 0 Likes

OCSP query

Hi,We are implementing a SSL-VPN solution using Global Protect and our own CA. From what I have seen the OCSP queries are made on demand, when the certificate is presented for the first time, and then at a fixed interval(60 minutes). I tried changing the interval using the "debug sslmgr set ocsp-next-update-time" but did not have any effect on t...

sslvpn 4.0.x issue

Hi,When configuring sslvpn we tried to use an Adsl modem which makes its public 1.1.1.1 NAT 443 to a local ip 172.16.2.1this ip is PaloAlto's L3 interface.Default gateway of PaloAlto is 172.16.2.2 which is modem.People can access to internet from PaloAlto with modem's public ip (NAT enabled on modem)When we access to public ip of modem with http...

Resolved! Blocking files by URL Category and Zone direction

Hello,I currently have a security rule that blocks the downloads of ".exe" files from the "unknown" URL category (which sits above my general Internet/WildFire Forward rule). It works extremely well in dropping a huge amount of the garbage out there. However, occasionally the garbage makes it past that rule and sends up a WildFire event. Agai...

MGoodnow by L4 Transporter
  • 3237 Views
  • 2 replies
  • 0 Likes

Days needed for Palo Alto subscription to release

Hi All,Our palo alto subscription currently near the end of subscription expiration date.We've ask quotation for the new license from PaloAlto distributor, and based on information from the distributor it will take 4 - 6 weeks for new subscription to be issued after the payment.Does it takes that long for issuing new subscription?regards,

Resolved! Wildfire report

I like wildfire, but I think the web frontend must be more elaborated. I'd like to customize and export reports to text to obtain statistics about ip origins, filenames, ...

aojea by Not applicable
  • 2401 Views
  • 1 replies
  • 0 Likes

Resolved! url filtering update error

Hi,I searched about this but couldn't find anything to solve an issue about upgrade brightcloud databese.On dashboard version is 0First installation and we get error.On the pcap we seeHTTP/1.1 401 UnauthorizedTransfer-Encoding: chunkedServer: Microsoft-HTTPAPI/2.0Date: Sat, 30 Mar 2013 17:40:54 GMTMar 30 19:40:54 Failed to download 'full_bcdb_4....

Did anyone succesfully connect with globalprotect through the IOS App ?

Hi,I just downloaded the app from the appstore, and just at the point where i got enthusiastic, i got a certificate error which should not be there because the chain is correct.After clicking OK, i got the error "Cannot connect to Globalprotect. Your internet connection or Globalprotect network appears te be offline." But if i try to connect thr...

Best Practices Agent configuration of many DC

Hi all,There are 18 seperate Domain Controllers on different cities.using 2 user id agent with all DC's make very high traffic between these sites and affect voip packets.When we disable the agent we saw that this is the issue.So how can we configure this ? Should we install 1 agent to every city DC or ???Thanks.

PA200 replacement fan

Aside from an RMA on the whole box, what can be done about a noisy PA200 fan (without getting a void warranty of course ) ?

BCH by Not applicable
  • 2811 Views
  • 1 replies
  • 0 Likes
  • 24362 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks