This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4227 Views
  • 0 replies
  • 0 Likes

Resolved! PA-5050, Agent-less user-id to AD, exclusions not working?

Working on setting up a 5050 with user-id mapping against 2 domain controllers. the agent-less, WMI based setup is working fine thus far, except I cant figure out how to exclude certain IP ranges.For instance. We have a VPN appliance that does Kerberos authentication to the AD Domain. Everytime a user logs in, it associates the IP of the devi...

Resolved! March Madness and QoS

Every year our network is brought to a crawl by users watching March Madness. I am wondering what I can do to minimize the impact on our network this year?We currently have QoS setup up limiting traffic for certain apps. I am wondering what apps others have applied to QoS and perhaps other methods to limit the amount of bandwidth going to those ...

Howto validate security policies for content inspection enabled ?

Dear all,How would it be possible to validate the security policy rules to have all a content inspection profile enabled?Because the "option" field does not allow to be selected as filter in the editor tab. (as this is the case for e.g. addresses or zones)Custom reports do also not include the ability to select content profile as an attribute.Th...

wimjuste by L1 Bithead
  • 3975 Views
  • 5 replies
  • 0 Likes

IP-RBLs for firewalls

Riddle me this…We have issues with malicious traffic coming from Open Proxies, Known Bad Hosts, etc. Is there such thing as an all IP, Realtime Blacklist for firewalls. There are certain external servers I dont want to be accessible by known bad networks. I’d love to write a rule like this:Source = RBL-or-Block-of-BAD-IPs-maintained-by-someone-e...

jhickey by L3 Networker
  • 3870 Views
  • 3 replies
  • 0 Likes

Active/Active 5.0.2 management interface shutdown

We are running 5520's A/A. Today we experienced an issue with one of the boxes managment interface shutting down. We had to power cycle the box to get the mangement interface back up.Is this a known issue?We are running 5.0.2Thanks

Resolved! Manual FQDN Refresh

Hi AllI am using PA 5050 with PAN OS 5.0. PA is automatically refreshing FQDN evrery 30 min. I want to refresh the FQDN manually or reduce the refresh time less than 30 min. How can I do this . Please can anyone suggest me how to do it .Thanks

itsecll by L1 Bithead
  • 8172 Views
  • 3 replies
  • 0 Likes

Resolved! Wildfire Forward action

Hello, I was wondering if anyone knew exactly how the "forward" action for Wildfire worked. Does it forward the file to Wildfire and then disallow the user to access that file, or does it forward it and allow it to pass through for the user to access the file?Thanks!Jared

Application Dependencies for MSRPC

Does anyone else feel that the application dependencies for MSRPC are incorrect?PA currently lists MSRPC as dependent on MS-DS-SMB and NETBIOS-SS. However, those protocols are not actually necessary for MSRPC to work. They are distinct protocols with different purposes. To my mind, including those dependencies encourages administrators to includ...

Resolved! Questions on logs export

Hello,I am setting up Palo Alto Firewall and want to export logs in CSV format to a UNIX filer daily at a specified time of the day. I have these questions:How do I schedule log export job so that it exports logs of only that particular day (and not all log history)?What is the default size of the log buffer? If log buffer gets full before the s...

deshaw by Not applicable
  • 5559 Views
  • 5 replies
  • 0 Likes

Resolved! PA Device Interfaces Fail Open

Greetings,Will PA device interfaces fail open if the device has a power failure, similar to IDS/IPS sensors which have relay in the interfac?thx,Bill

Resolved! Issue with facebook pictures being blocked

Hey guys got one I am stuck on. We are not blocking facebook at the moment and it was working just fine until Friday afternoon. No config changes were made. No updates to the PA5050's we have. Facebook comes up still but certain pictures on it will not. Just the ones that are in the users albums seem to be having issues. Pictures in links still ...

JeffTQT by L2 Linker
  • 3300 Views
  • 1 replies
  • 0 Likes

Third Party VPN Clients

There is an option for 3rd party VPN clients in the interface and there used to be articles on Cisco Anyconnect as an option for 3.1. We have tested this without the use of these parameters, how do these adjust the communication to the firewall, is there any documentation on supported version for this component of the GlobalProtect configuratio...

amansour by L4 Transporter
  • 4546 Views
  • 3 replies
  • 0 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks