This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4132 Views
  • 0 replies
  • 0 Likes

Best way to update app and content without impacting traffic...?

Hello All,I am posing this as a question to the community, but in the latest release of app/content updates for PA, a new more focused signature was released. The new more focused signature was ms-wmi, and it was previously identified as msrpc.So....What's the problem? The problem is that if I update content, I will essentially be blocking an...

btwright by Not applicable
  • 3283 Views
  • 1 replies
  • 0 Likes

Resolved! Replacement of PA Management Certificate

I asked this in a recent class (201/205) but the instructor wasn't sure of the answer so here goes: Can the management certificate be replaced? We use a private CA for internal sites, as well as public certs for some devices. Thanks.

joehansen by Not applicable
  • 2833 Views
  • 2 replies
  • 0 Likes

Resolved! ssl decryption with upstream proxy

We have a squid server behind our pa fw like this:Client <-> PA FW <-> Squid Proxy <-> ASA FW <-> InternetDecryption of site https://addons.mozilla.org adds the IP address of our squid proxy to the exclude-cache list and all following ssl connection are not decrypted anymore. Is this expected behaviour?

azwicker by L1 Bithead
  • 7596 Views
  • 7 replies
  • 0 Likes

Resolved! Custom App Cloning

Last question for today (but thanks for the previous responses - you all are very patient with the newbies): Is it possible to copy application definitions in order to make a custom one? I was looking for a clone app process that would save time for custom apps that were similar in design. Thanks again.

joehansen by Not applicable
  • 3425 Views
  • 2 replies
  • 0 Likes

About schedule reports error messages

Hi All,We run a PA-500 with PanOS 4.0.8 and setup a schedule report profile to sendout daily custom reports. However sometimes it works and sometimes doesn't.I would lke to find out something wrongs, and see many error messages in the mailclient.log by cli "less mp-log mailclient.log".admin@PA-500-2(active)> less mp-log mailclient.logNov 04 ...

Resolved! About ftp passive mode App-ID insufficient-data

Hi All,We find that if ftp runs passive mode and go through paloalto fw, in the fw monitor -> logs -> traffic, we'll see the application should be identified as insufficient-data.I also find that there are just few bytes for every logs in the Bytes column.Anyone knows how to explain those results ?

Resolved! Live site nav question

Newbie here wanting to know where to report site issues. I tried clicking on the info center link from the home page and got a navigation error. Thanks.

joehansen by Not applicable
  • 2897 Views
  • 3 replies
  • 0 Likes

Resolved! Exporting traffic logs via CLI - scp

Is there a way to group by source or destination address from the cli. for example:scp export log traffic query "(port eq 514) and ( proto eq tcp ) and ( app eq insufficient-data ) or (app eq unknown-tcp)" start-time equal 2013/03/18@01:00:00 end-time equal 2013/03/26@01:00:00 to foobar@x.x.x.x:/home/orlando/unknown-tcp.csvThis returns tons of v...

opiedrah by L0 Member
  • 11362 Views
  • 5 replies
  • 1 Likes

Resolved! 5.0.1.h1

what does this fix with 5.0.1, i noticed that it is not available for general download.

Destination user

Why does “Destination user” is coming up on my traffic logs? There is no description, Tab or filed on the policy rule where I can add.

wesa by Not applicable
  • 3684 Views
  • 2 replies
  • 0 Likes
  • 24337 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks