General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Threat exception for selected hosts

Hi,

We have defined vulnerability group which consists of AV, Anti-Spyware and Vulnerability profile. The vulnerability profile is configured to block critical events and alert on high and med. I have a need to except few hosts which are alerting for

...

Resolved! 4.1.7 inspection causes corrupt download and speed issues

I have two 2050's in an HA pair A/P on 4.1.7. I have a BGP setup with 100Mbps on one link and 250Mbps on another, and Gb to the LAN and DMZ. I have transferred just over 3G through the PA in the last 60 minutes.

When I turn on inspection (Antiviru

...

Exclude iTunes/App Store from decryption

I am using SSL decryption for all outbound traffic. Prior to the decryption rule I have a rule to attempt to exclude iTunes and App Store traffic from decryption. The rule seems to be working, but the App Store fails with "NSURLErrorDomain error -10

...

Resolved! Panorama - AV and Threat version on individual device in one view?

Hi,

Is it possible to view AV and Threat version running on all devices under Panorama on one page? Panorama -> Managed Devices shows IP address, serial number etc. I would like to know if the similar option is available for AV and threat versions.

Resolved! easy question, routing problem

Hello,

I think it's an easy question, but I can't solve it.

This is the situation.

We have two routers.

Router 1 (bintec RT1202) has two ethernet interfaces with different subnets sub1 (172.16.10.0/24), sub2 (172.16.20.0/24).

Router 2 is our palo alto PA

...

Netconnect can't install normally,after update to Java 7update9

Hi all,

After update to java 7update9 , when i use sslvpn and install pan.jnlp,my install windows display was not normally.(error.png)

Client Use Win7 X64 have this issue.

WindosXP work normally.

Has anyone face this issue?

Regards,

Jim

Resolved! Can AD User Agent 5.0.0-22 be used with PanOS 4.1.x?

I have a large number of AD servers at remote locations all running AD User Agent 4.1.6-5. I do have problems with PanOS 4.1.7 talking to this user agent; it forgets who is signed onto a PC.

Can I install User Agent 5.0.0-22 on my AD servers and exp

...

Resolved! Panorama 4.1.8 LDAP Failure

Having upgraded our Panorama from 4.1.7 to 4.1.8 - we can no longer use the LDAP user authentication.

The user constantly gets "invalid username or password" (same message on the Panorama) - yet this worked without any problems with 4.1.7

On Panorama -

...

Resolved! how to config data filtering profile?

Hi All,

I want to setup data filtering profile for security issue, however the document is too old that I have, it for PANOS 2.1.5.

Is there any recent update about how to config data filtering ?

Regards,

Joy

source nat with dual ISP configuration having issue.

Hi,

am running panos 4.1.7 on PA-500 , recently i configure two isp on the pa500 for redundancy , i followed the procedure in DOC-3579 everything is fine except for the source nat policy when clicking on commit , it returns that nat rule1 shadows rul

...

Resolved! Global Protect CLient "Startup Before Login"

Is there a way to have the Global Protect client interface show up before a user logs into Windows? For example, They want to manually connect to VPN before they login to their Windows machine. Thanks

NAT inside VPN Tunnel

I have to create a VPN Tunnel to an untrusted network (business partner).

I found out I will have to advertise all of our subnets to the parner, server nets, user nets, all of them...

I will make some firewall rules to restrict traffic but also ...

Is t

...

Global Protect - how to do it?

Hello

I havent licence for GP but I have a problem to solve ...

I have 3 types (groups) of clients:

(1) must have internet access with av/antyspyware/etc profiles.

(2) must have internet access like (1) plus RDP to some host in local zones. Every client

...

Hit-Statistics per Security/NAT Policy

Hi,

I would really like to see how often a security policy is hit. We came from Sonicwall to Palo alto, and this is one of the things i miss the most.

Maybe there's a CLI command for it ? I didn't find it so far.

Hope you can help me out.

Kind regards,

Re

...

APT Attacks

APT attack is one of the things the security industry is focusing on these days, and something that we should be aware of as well. In case a RAT (Remote Access Tool) gets installed on the user’s PC, an attacker can access and download all files withi

...

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free