This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4245 Views
  • 0 replies
  • 0 Likes

Globalprotect and Lenovo/Stoneware's Lanschool

Good morning, all!For the past several months, we've had an ongoing issue with our student's take-home 1:1 netbooks. Once they attach to the globalprotect portal/gateway, they won't work with LanSchool any longer.First, the environment background:PA-2050 running 4.1.9, GP 1.1.4. GP is configured to recognize internal to the network, and does w...

bau55536 by L0 Member
  • 3184 Views
  • 2 replies
  • 0 Likes

PanAgent support

After upgrading to Panos 5 from panos 4.0.11 ; Can we use panagent or should we use user-id agent ?panagent version 3.1.2

Resolved! Block users

Is there a way to block Guest users using their personal device with the virus or malicious software on it from accessing our network and notify them immediately using response or some sort of redirect page to contact support. Can PAN do this? If so how

wesa by Not applicable
  • 2822 Views
  • 2 replies
  • 0 Likes

5.0.3 - Panorama Hanging on Commit

Has anyone else, with a 5.0.3 install, seen Panorama hang - requiring a hard (in the VM sense!) reset?Twice within 48 hours of upgrading to this version have I had Panorama freeze totally when commiting. First time was a local commit (saving a policy change) - GUI froze, SSH console hung after accepting credentials.Second time was when pushing a...

apackard by L4 Transporter
  • 3873 Views
  • 5 replies
  • 0 Likes

What are recommended storage retention thresholds for URL Filter logs to achieve custom detailed date range reporting?

What are recommended storage retention thresholds for URL Filter logs to achieve custom detailed date range reporting?Depending on the hardware and disk sizes e.g PAN-5020, what are recommended URL Filter logs retention durations.Most often we'd get requests for 90 day custom date range reports.Also, what is the groups experience with sending lo...

Resolved! PanVPN agent

Hello admins.I read in documentiotion that there is VPN client software for Palo Alto devices.I wanted to try it out, but my licence expired and I can`t access to software page (if there is one).I would like to know if system supports "client VPNs" (and not only "server VPNs").Thx

Internet load balancing

Hi i have 5 internet connections (two dedicated links with different ISPs and 3 shared links with one ISP) , I need to configure the 5 untrust zones for internet and one for trust how i can configure the VR and how i can i use PBF per group of users. and create a backup link in case the first internet link goes down.Regards,

Resolved! Deploying LSVPN ( Large Scale VPN) with NAT !!!

I'm newcomer with Palo Alto. I have project to deploy PA using LSVPN . But there is a problem because The Internet Link from ISP & MPLS must Via Router Cisco.But I wonder , when using Router at Border , that means you must NAT Public IP to Private IP of PA. So when deploy LSVPN, Traffic is encryped , that mean Router cann't NAT . So how to s...

MinhTuan by L0 Member
  • 5951 Views
  • 5 replies
  • 1 Likes

Resolved! GlobalProtect certificates

In my company we have AD and our internal CA. I want to use our internal CA for GlobalProtect. What I have done so far: I've import our root CA to PA500 (PANOS 5.0.3). I've generated web server certificate and imported it in PA500 I've created GP gateway and portal.When I try to submit changes it says "invalid certificate chain".We h...

marjan by Not applicable
  • 3135 Views
  • 2 replies
  • 0 Likes

Monitoring and Blocking eMail

Hello,I want to know how I can do the following questions:1.- How can I block in gmail application the access to all the mails like this xxxx@gmail.com, but allow the access to emalis like this xxxx@domain.ec that also are associated with Gmail.2.- How to monitor the users who access to public mails and know what are the access account and the d...

Angel by Not applicable
  • 2289 Views
  • 1 replies
  • 0 Likes

Resolved! Global Protect Usage Report

I have created a custom report to track all VPN users by subnet.. I parsed it to user and total bytes.. however, I can only get maximum 500 lines.. we have 1000 GP users, anyway around this?

rrau by L3 Networker
  • 2490 Views
  • 1 replies
  • 0 Likes

Resolved! FIPS mode IPSec cipher suite subset

When you enable FIPS mode on the firewall, what are the subsets of cipher suites available that the admin guide is referring to?Admin guide - "When configuring IPSec, a subset of the normally available cipher suites is available."

Mail server getting blocked when downloading files

I have an exchange server that is getting block-continues for file types that are not being explicitly blocked...pdf, jpg, etc.It has no way to continue.....I believe it must be some default behavior I am not aware of in the AV or AS profiles?Where are these actions defined?I had to move the exchange server(name= domain\barracuda_ldap) into an E...

Resolved! Unable to connect Global protect portal,..

Hi All,I am able to download GP client software, But using the same credential not able to connect to portal, giving error : portal error - unable to connect to portal. Only through one machine i am able to connect to portal using same credentials what i have used for others.Thank you,.Regards,Gururaj

Gururaj by L4 Transporter
  • 2499 Views
  • 1 replies
  • 0 Likes

Resolved! Tunnel Interface IP Address

Can somebody explain to me the need for the tunnel interface IP address? Apparently a VPN tunnel requires a tunnel interface configured with an IP address when using dynamic routing. Is that a dynamic gateway the PA is connecting to or the PA is using a dynamic IP? Also, does this IP address have to live on the same network as the local network?...

  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks