This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4155 Views
  • 0 replies
  • 0 Likes

Resolved! Eicar and Palo Alto threat-db

First a question:Where and how can I see what is the default action for a particular threat, vuln or spyware threatid?Preferly from within the box itself...And now for an observation:I tried searching for eicar in the threat vault and obviously there are four different (?) eicars registered:2739329 Virus/Win32.eicar-av-test.b2459563 Virus/DOS.ei...

mikand by L6 Presenter
  • 4881 Views
  • 4 replies
  • 0 Likes

Resolved! Getting an application definition modified?

Folks.I have run into an issue with the way a specific application passes the firewall, and I need to put in a request to Palo Alto to have it modified.The application is Subversion, and when I set the firewall to allow only "application default" services, the firewall blocks connections because this particular installation is running off an Apa...

darren_g by L4 Transporter
  • 5168 Views
  • 5 replies
  • 0 Likes

URL Filtering - Continue Action on Terminal Server

Hi,I have a customer who has deployed a PA-2020 with 3 Terminal Server agents at this seems to be operating well with one exception.They have configured a URL filtering policy that has a Continue action on a number of categories.When a standard LAN user accesses these sites, the continue operation works fine. The problem is when a user on a Term...

Resolved! SSL Decryption on Apps.

Outside of SSH and SSL applications can anyone if there is a lookup in applipedia to tell whether the SSL decode applies to an application?

amansour by L4 Transporter
  • 2099 Views
  • 1 replies
  • 0 Likes

Is there a reason to hide hotfixes in Software Update?

I was curious to know if there was some prevailing notion as to why PA would keep the hotfixes hidden or at least not readily available from the Software section of the firewall itself.It is displayed where deployment without the hotfix is a very bad idea such as 4.1.8.But for in cases like 4.1.7, where the PA tech informed us that we should abs...

Palo Alto Vmware image

Hi,I am planning to replace my company's firewalls with Palo alto instead of Checkpoint however I need try it out in a lab or something before I provide further information to my management team, Is there a way I can get a vmware image to try it out on Esxi,???Thnx Krishna

Krishna by Not applicable
  • 3415 Views
  • 3 replies
  • 0 Likes

Resolved! 5.0.2 upgrade question

I want to upgrade from 4.1.7 to 5.0.2, I am currently running Global Protect v1.1.6.. and pan agent user-id agent v4.1.4-3. Can I perform the upgrade without updating the GP client and user-id agents?

rrau by L3 Networker
  • 2815 Views
  • 2 replies
  • 0 Likes

BGP Dampening Profiles

All,Does anyone know the CLI command to use to view the dampening profiles status on flapping routes? There looks like a way to clear the status with clear counters bgp ... but I cannot find the available show command.Thanks in advance,Jason

4.1 series GUI dashboard

I have one box presently on 4.0.8 and one on 4.1.1. If I compare the dashboards, the 4.0 series one has the dates in the widgets in an international format (2012/01/12), which I have no trouble with. The 4.1 has the widget dates in a partial American format (01/12), which I read as 1 December for just a moment until I think. The times on the 4.0...

Resolved! DHCP / DHCPD server stopped working 5.0

PAN OS 5.0App Version 342-1602 (12/04/12)Uptime 22 daysPAN-OS DHCP server stopped working today (worked earliar only change wildfire & global protect updates)DHCP server status shows it is not enabled although configured.<says not configured>admin@PA-200> show dhcp server lease ethernet1/4dhcp server is not enabled on interface 'eth...

jkim2 by L3 Networker
  • 7670 Views
  • 7 replies
  • 0 Likes

Agentless User-ID with PAN5.x - AD Configuration

I have read the tech article "How to Configure Agentless User-ID in PAN- OS 5.0.x"I'd love to see this document broken into two docs - one that I can send out to customers to prepare for POC - the AD user account setup portion without the PAN firewall config portion . . . does this already exist somewhere?

cindyb by Not applicable
  • 5570 Views
  • 6 replies
  • 0 Likes

CP Policy

I'm trying to setup a captive portal and authenticate users via a user certificate, but I cannot get it to work in 5.0.1.I already have a client certificate profile created but which setting do I need in the CP policy (action):web-form => does not work since the user needs to specify username/passwordno-captive-portal => does not prompt th...

loosj by Not applicable
  • 4290 Views
  • 6 replies
  • 0 Likes

User Identification Agent Capacity

In your Pan Agent 2.1 documentation you did an excellent job of documenting User Identification from start to finish. I have yet to see one document such as this for 3.1.Please reference page 7 of the Pan Agent 2.1 document and confirm or correct what the current User Identification capacity is.Please consider updating the Pan Agent 2.1 document...

  • 24342 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks