This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! TCP Flood ID: 8501

On our user TAP interface (a TAP that collects user trafic only), we see 1000's of TCP flood events from 0.0.0.0 to 0.0.0.0 ; port 0 to port 0; Zone user to Zone user. It is always Session ID of 0. I have tried to do packet captures, but I never seem to get anything. It also doesn't show in session browser (probably because the session is 0!) An...

craymond by L4 Transporter
  • 16964 Views
  • 4 replies
  • 0 Likes

Multiple external IP's and Global protect (Not NAT)

HiI did a search on the forums for multiple IP's and found a lot of posts talking about how the Palo deals with multiple external IP's - i.e. if your ISP assigns you a /29 block and you need to NAT multiple application into your network. So basically you pick one IP, load that on the Palo interface and then just do NAT. Palo will ARP for any add...

Quinton by L3 Networker
  • 13170 Views
  • 7 replies
  • 0 Likes

Resolved! Public IP not accessible from internal addresses.

Hey All; When setting up GP and other external interfaces for access I found that any NAT inbound is not accessible when in the local network as well, only from outside. Can anyone explain if there is a NAT or GP gateway setting that will take internal users to the outside IP without failing. It is much easier to test setting up the firewalls...

amansour by L4 Transporter
  • 4265 Views
  • 3 replies
  • 0 Likes

Resolved! Set VM-100 as gateway on host.

So I am wondering if there is any way to use the VMWare workstation (I know the VM-100 is for ESXi) as the gateway on your host and if anyone has had success with just monitoring EAST-WEST traffic from the VM-100 on ESXi?

amansour by L4 Transporter
  • 2357 Views
  • 1 replies
  • 0 Likes

Resolved! ZeroAccess.Gen

Our threat monitor shows a lot of ZeroAccess.Gen Command and Control traffic, type spyware. The default threat action is to alert. I want to either block or drop. What is the best way to block traffic for a specific threat signature but to use defaults on all others with the same severity? The threat signature categorizes zeroaccess.gen, id ...

oshcomp by Not applicable
  • 7249 Views
  • 4 replies
  • 0 Likes

Netflow

Can a PA500 support netflow version 5 - I know it does v9 - but my collector needs v5. Thanks.

RCBTech by Not applicable
  • 2830 Views
  • 1 replies
  • 0 Likes

Resolved! How to find application in Palo Alto (by tcp/udp ports)

Dears,I am working on a migration from Check Point to Palo Alto. We used that PA Migration Tool for CP rules into PA.The main problem is all CP rules are based on services and we want to transform them into PA applications... BUT, the PA apps tool (applipedia) doesnt show the apps by ports...SOmetimes is hard to uderstand the name of PA applicat...

Multi-factor Authentication

Does the PAN Netconnect client or browser initiated VPN connection support multi-factor authentication? I know that you support AD and Radius but can it be done at the same time. I only see a Password field in the logins and cannot see how one can change/config this login so that it also has a token field for say an RSA SecurID solution.Thanks,Kim

kime by L0 Member
  • 11212 Views
  • 15 replies
  • 0 Likes

Resolved! services (http,https)

Please excuse my ignorance, new to FW support and PAN. What is the criteria for services, why is there only 2 http/https?thx,

User identification (AD)

Dears,We have PA2020 implemented (w/ HA) and sometimes the user identification doesn't work well.In the picture below we can see the following scenario1st line - PA2020 doesn’t relates my IP w/ my user and I got blocked accessing youtube.com (rule “Block R Sociais, Videos, Audio”)2nd line - PA2020 doesn’t relates my IP w/ my user so I could only...

Resolved! Allowing Skype through the PA

We have a business group that wants to use Skype. I am very concerned about allowing unknown-udp or unknown-tcp ports out through our PA. Has anyone allowed Skype through their PA and if so, can you offer any suggestions as to how to do it securely?

Resolved! Unable to install Applications / Threats 360-1705

Hi all,Is anybody else having problems installing Applications / Threats definitions 360-1705 please?One half of my HA pair of PA-2020s has installed this OK but the other has not. The install and push completes OK but the active version remains at 359-1703.Both devices were running OS 4.1.6 but these have both been upgraded to 4.1.9 today. I ...

DavePalo by L4 Transporter
  • 4122 Views
  • 4 replies
  • 0 Likes

Resolved! Mega service

Is programmed a content update during next week for the new application mega (mega.co.nz)? Right now the service is recognized as ssl, web-browing and unknown-tcp and becomes urget its new calssification due to the high bandwidth consumption and downloading legal issue. Brighcloud classifies correctly as personal storage but an application-based...

NGS_SOC by L3 Networker
  • 5689 Views
  • 6 replies
  • 0 Likes
  • 24381 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks