This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 2185 Views
  • 0 replies
  • 0 Likes

User identification (AD)

Dears,

We have PA2020 implemented (w/ HA) and sometimes the user identification doesn't work well.

In the picture below we can see the following scenario

1st line - PA2020 doesn’t relates my IP w/ my user and I got blocked accessing youtube.com (rule “B

...

Resolved! Allowing Skype through the PA

We have a business group that wants to use Skype. I am very concerned about allowing unknown-udp or unknown-tcp ports out through our PA. Has anyone allowed Skype through their PA and if so, can you offer any suggestions as to how to do it securely?

Resolved! Unable to install Applications / Threats 360-1705

Hi all,

Is anybody else having problems installing Applications / Threats definitions 360-1705 please?

One half of my HA pair of PA-2020s has installed this OK but the other has not.  The install and push completes OK but the active version remains at

...

Resolved! Mega service

Is programmed a content update during next week for the new application mega (mega.co.nz)?

Right now the service is recognized as ssl, web-browing and unknown-tcp and becomes urget its new calssification due to the high bandwidth consumption and down

...

NGS_SOC by L3 Networker
  • 5076 Views
  • 6 replies
  • 0 Likes

What to do with Large Logfiles

I have two PA4060s and Panorama on our internet border.  I need to retain logs of all outbound traffic for at least three months.  After watching the log retention on Panorama for a couple of weeks and running the debug log-receiver statistics comman

...

djr by L4 Transporter
  • 3529 Views
  • 4 replies
  • 0 Likes

Resolved! Panorama Logging Backfill

I have had to upgrade both my firewalls and Panorama from 4.1.9 to 4.1.10 about a week ago. I updated the firewalls and subsequently cleared the logs for them, however, I failed to do that with the Panorama. Yesterday, I realized this important misse

...

dhill6 by L1 Bithead
  • 2455 Views
  • 1 replies
  • 0 Likes

Resolved! All user activity for last 30 days

Hello,

I've done some searching and also have engaged support but I believe I've hit another black mark for our PA.  Has anyone figured out a way to get all user activity for a certain frame exported?

I need simply:

user

Date/time

site visited (full url,

...

mlaporte by L1 Bithead
  • 3299 Views
  • 2 replies
  • 0 Likes

Resolved! Creating Custom Applications

Greetings,

Am I missing something, when creating a custom application why can't I create my own custom category and subcategory?  Also, I'm surprised PAN doesn't detect intouch (wonderware) as an application?

thx,

Bill

Wildfire Depth

The first question I have is how many layers will the file blocking inspect? For example, a zip in a zip has an exe that is malicious. If the PA doesn't inspect that far down wouldn't I be able to get through the firewall inspection?

If the above is t

...

das by Not applicable
  • 2973 Views
  • 2 replies
  • 0 Likes

Issues getting ip-user mapping with probing error

Hello,

I've got UI agent 4.1.6 configured on PanOS 4.1.9.

We have around 3000 users and in agent we see only around 700 user-mapping count.

in the logs we get the below error for a lot of IPs and i guess that's why we dont get all users. I've tried to d

...

vinesh by L2 Linker
  • 5341 Views
  • 3 replies
  • 0 Likes

miniduke

I got the question from de security dept, to investigate miniduke.

This was is detected by kaspersky labs, as an exploit of an Adobe flaw CVE-2013-6040

I dont' find anything on PaloAlto about miniduke , or CVE-2013-6040

LucVdb by Not applicable
  • 1842 Views
  • 1 replies
  • 0 Likes

Report on attempts to access unsuitable content

Hi All

I have been tasked with creating a report that shows if a user has attempted to access or find a way of accessing unsuitable content.

While I can obviously run a report on pages that have been blocked by the filtering system we want to see any

...

Resolved! Eicar and Palo Alto threat-db

First a question:

Where and how can I see what is the default action for a particular threat, vuln or spyware threatid?

Preferly from within the box itself...

And now for an observation:

I tried searching for eicar in the threat vault and obviously there

...

mikand by L6 Presenter
  • 4551 Views
  • 4 replies
  • 0 Likes
  • 24251 Posts
  • 119 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks