This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4116 Views
  • 0 replies
  • 0 Likes

Resolved! User ID agent issues, one user logs off, another user "logs in" a gets the previous users ip address", times out eventually

3 questions:Why does the Agent (and PAN) not get updated when a new user logs in?What is the purpose of the “Enable user Identification Timeout” and the corresponding “User Identification Timeout (min.)” in the Agent? What will be the result if we disable this setting altogether? We do not use NetBIOS or WMI probing at this time.User Identificat...

tstores by Not applicable
  • 4874 Views
  • 2 replies
  • 0 Likes

Resolved! Web Server .js files not loading to outside clients

Our WebMaster is working on implementing some .js files on our WebServer. He has a few specific .js files loaded onto our Web Servers.They load up with no problems internally (Our PA allows ALL traffic from internal to our DMZ, Internal and External traffic both flow through an A10 Load Balancer to our two physical servers).From the OUTSIDE, the...

Resolved! How to change pan-agent priority?

sw-version: 3.1.12Given the command below, how do I force server01 to be the primary pan-agent without any disruption?> show user pan-agent statisticsTimer: interval of group membership retrievalState: *:primary pan-agent to retrieve group membership---------------- --------------- ----- ------- ------------------ ------ ------ -------- -----...

etnerual by L1 Bithead
  • 2915 Views
  • 1 replies
  • 0 Likes

Resolved! Remote site internet

Hello- Just recently migrated from an old Checkpoint to a PA-500. PA is setup in a Layer 3 configuration. So far so good with the exception of one thing. My remote location isn't able to get internet access. This remote location gets internet from my head end location as they do not have their own internet circuit. Everything for internal access...

Resolved! Vulnerability false positive uptick? 32128

All of a sudden we've started tripping 32128 Pidgin MSN Integer Overflow Vulnerability. It started yesterday morning. Most of the traffic is coming from live.com to large assortment of our internal users.I'm guessing that this is a change on Microsoft's part. Any ideas?Message was edited by: Rand Hall I added a couple of packet captures.

MCmgt by L2 Linker
  • 11124 Views
  • 8 replies
  • 0 Likes

Wildfire subscription logs

I am setting up my lab PA-200 for Wildfire. I had a question about the monitoring logs. I understand that using the Wildfire portal, you have to configure the global settings of what meta information to send to the Wildfire servers to see that info. (URL, src-dst IP, username, etc)If you have the subscription is this information still sent? ...

ftboomer1 by Not applicable
  • 3270 Views
  • 3 replies
  • 0 Likes

Where is PAN User Identification Agent data stored?

Hello,We currently utilize the User Identification Agent to send usernames to the PA's. However, recently, the app has been locking up. It continues to run and send information messages in the log but it does not collect usernames. I cannot monitor the service because it is still running, just not communicating. I'd like to write a script to...

Does PA have any documentation for their IPS/IDS system?

Just went throught the PA administrator 4.1 guide and there isent much regarding how to use the IPS/IDS system. I have a spare PA-200 at the shop and wanted to learn more on how to use the IPS/IDS system and Wildfire. Can someone direct me to the right direction?RW

How to track current number of SSL VPN users?

I am looking for a way to report on the number of current SSL VPN users. I would prefer a solution that let's me track this via snmp. I have looked in the MIB for 4.1 and I do not see this anywhere listed in the MIB, I am hoping that someone can point it out to me.Bonus points, does anyone know if there is a way to have the VPN portal change t...

kdebreuil by Not applicable
  • 9318 Views
  • 1 replies
  • 0 Likes

AppID Cache and recent Security Bulletin: App-ID Cache Pollution

Hello Everyone, I was having a closer look at the APP ID cache pollution issue that was addressed in the above mentioned bulletin.It states that , "The App-ID cache is a mechanism for caching the App-ID associated with a destination IP/port pair. When enoughconsecutive connections are established to the same destination IP/port with the same App...

Resolved! Overriding Panorama Template settings

I am reading in the Admin guide on the specifics of the Panorama and creation of templates.To override device and network setting applied by a template, you simply change to the device context, or access the device directly, navigate to the desired setting and then click theOverride button. The setting will be copied to the local configuration o...

scantwell by L4 Transporter
  • 3635 Views
  • 1 replies
  • 0 Likes

Resolved! SNMP QoS

Wondering if it’s possible to get QoS (per queue) throughput stats via SNMP?

Captive Portal and speed limit for users

HelloNow I have 3 Mikrotics routers with WiFi and HotSpot service connected to dedicated VLAN on PA200. On the HotShot I have profile that limiting download/upload transfer to 500kb/s per user.Id like to change Mikrotic routers to AP mode and on PA200 make captive portal. But Im looking for solution how to make session limit to every logged pers...

_slv_ by L4 Transporter
  • 3787 Views
  • 3 replies
  • 0 Likes

Resolved! Panorama does not display saved configurations

Ok, I just getting started on Panorama, and I have 10 FWs in Panorama now.When I click on Managed Devices, then go to Backups, I see the history of my past committed FW configs listed by version number.I should ALSO be able to see the saved configurations (saved named configurations) on the various FWs.For some FWs, I do see a saved config (but...

scantwell by L4 Transporter
  • 2945 Views
  • 2 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks