This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Traffic shaping and QOS clarification

Hello

I try to do some traffic shapping for a server to control the traffic used by this server over internet, generally this was easy done over our old netscreen/juniper FWs

when i tried to figure it out over our PA 2020, i passed throught a not that

...

daba1974 by Not applicable
  • 3899 Views
  • 2 replies
  • 0 Likes

URL filtering block page

I would like to customize our block page to show the ip address of the user.

How do we add this on the html code of the blockpage?

I have the entry <p><b>IP:</b> <user/> </p> in my block page, but it shows the username instead of ip address.

Any thought

...

Resolved! Block FTP Brute Force Attemps - Threat ID 40001


Hello,

I want to block Block FTP Brute Force Attemps.

The default rule in the PA alert only in theThreat log.

I added a new Vulnerabolity Protection Rule:

Action: Block

Host type: Any (also tried Server)

Category: brute-force

Severity: Any

CVE: Any

Vendor ID:

...

Resolved! AD Groups Not Showing Up

I'm using User-ID and Active Directory groups to identify traffic from specific people.  The User-ID part seems to be working because Source User shows up in the logs and I can configure firewall rules using individual user-IDs. 

However, I'm having

...

PSC_IT by L1 Bithead
  • 8886 Views
  • 4 replies
  • 0 Likes

Resolved! Multiple Block Pages?

Hello,

Is it possible to create/select/use a custom response/block pages for specific URL categories? For example: can I have one specific custom response page for "unknown" categories, and another block page for "malware" categories?

Thanks,

-Paul

apc050 by Not applicable
  • 6094 Views
  • 3 replies
  • 0 Likes

Resolved! Best practice for committing changes in active-passive HA?

When making policy changes in an active-passive HA pair, do you usually edit and commit the policy using the active device, or the passive?  I have always made my changes on the active device, but lately I've been thinking that because the management

...

abelgard by L1 Bithead
  • 7215 Views
  • 5 replies
  • 0 Likes

IPS \ Application Signature

Hi all

I need to write ips / application signature to recognize sender and recipient in SMTP

for example:

If smtp sender A send mail to recipent B - Allow.

If smtp sender A send mail to recipent C - Block

I will be happy if anyone know how to do it.

Alon

along by Not applicable
  • 1924 Views
  • 2 replies
  • 0 Likes

GP VPN dual factor auth, and contractor access.

I have two questions regarding the Global Protect Gateway / Portal (SAN the GP Licensing)

- I am wanting to setup two factor authentication for users to authenticate to Global Protect Gateway/Portal with a (common) client certificate installed on thei

...

cmateam by L3 Networker
  • 3414 Views
  • 1 replies
  • 0 Likes

Resolved! Commit issue - Error updating NAT IP pools

After updating Policy and Nat Rules, I got the follow commit errors:

- Error: Error: Error updating NAT IP pools

- Error: response from cfgpush.s1.dp1.comm.cfg-dp: Error updating NAT IP pools

This error still occurs if i disable (or even delete) the new

...

User_333 by L2 Linker
  • 2016 Views
  • 1 replies
  • 0 Likes

Resolved! Globalprotect iexplorer 9 Proxy

Hi All,

i've a globalprotect vpn to connect to office, when i'm at customer site. I use a macbook pro and vpn works well, on the other pc, a Dell with windows 7, the vpn works fine if i connect in thetering from my mobile phone, but if i try to connec

...

fcellini by Not applicable
  • 2087 Views
  • 1 replies
  • 0 Likes

GlobalProtect behind proxy

GlobalProtect is using SSL and IPSec. Is GlobalProtect proxy aware? Ie. if GlobalProtect client is located on a network that dictates the use of a http/https proxy to get internet access?

BR,

Nicolai

snaft by Not applicable
  • 3564 Views
  • 4 replies
  • 0 Likes
  • 23561 Posts
  • 106 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks