This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4123 Views
  • 0 replies
  • 0 Likes

Captive Portal and speed limit for users

HelloNow I have 3 Mikrotics routers with WiFi and HotSpot service connected to dedicated VLAN on PA200. On the HotShot I have profile that limiting download/upload transfer to 500kb/s per user.Id like to change Mikrotic routers to AP mode and on PA200 make captive portal. But Im looking for solution how to make session limit to every logged pers...

_slv_ by L4 Transporter
  • 3791 Views
  • 3 replies
  • 0 Likes

Resolved! Panorama does not display saved configurations

Ok, I just getting started on Panorama, and I have 10 FWs in Panorama now.When I click on Managed Devices, then go to Backups, I see the history of my past committed FW configs listed by version number.I should ALSO be able to see the saved configurations (saved named configurations) on the various FWs.For some FWs, I do see a saved config (but...

scantwell by L4 Transporter
  • 2945 Views
  • 2 replies
  • 0 Likes

Rule to allow Client based email

I'm trying to figure out the best way to write a rule to allow mobile devices access to their personal email. Browser based email works fine since it's mostly on 443(or 80) which we allow out. But what about Client based email not on 80/443? For example...-Using the iOS Exchange client to retrieve gmail or yahoo mail, it uses Secure IMAP on TC...

jambulo by L4 Transporter
  • 4532 Views
  • 1 replies
  • 0 Likes

Getting around url redirects and safe search

Hello,I'm fighting a losing battle trying to get forced safe search working. I'm currently trying to put a dans guardian and squid filter on the outside of my PA to handle just searches to as many search engines as I can find redirects for. Has anyone else tried to do this or anything like it? There has got to be a better way to handle safe ...

mlaporte by L1 Bithead
  • 3347 Views
  • 3 replies
  • 0 Likes

Resolved! How to discard changes on a PAN?

Let's say I log into the management website of the PAN and make a couple changes to see the way it would look in the ruleset.If i want to discard those changes, are my only options to "revert to last saved configuration" to make sure that none of those changes go into effect?I've noticed that the PAN tends to keep the changes, even after logging...

PAN-OS 5.0.0 Upgrade failed

Upgraded a box from PAN-OS 4.1.10 to PAN-OS 5.0.0. During installation was prompted to reboot, chose reboot. The device did not come back online. Consoled into management port sees the following messages loop over and over:Welcome to PanOS Setting clock (utc): Wed Jan 23 15:12:59 EST 2013 [ OK ] Starting udev: [ OK ] Setting hostname 5000: [ OK ...

Resolved! Web Proxy behind PAN firewall and application recognition

I know this question has been asked in other posts but I figured I would give it another try. I would like the PAN to sit between my users and my web proxy *and* for the applications to be recognized instead of just reported as proxy traffic. Is there any setting to force the PANOS to do this?

dustintodd by Not applicable
  • 14095 Views
  • 16 replies
  • 0 Likes

Resolved! PA-500 webserver crash

Hi,Can someone please tell me how to troubleshoot extremely slow web reports? Logs are fine, but ACC and Monitoring -> App Scope items just keep loading and loading and loading and im basically locked out of management every time i click on a menu item for 30min atleast. Error messages:Server Not RespondingThe server is not responding. Pleas...

gert by Not applicable
  • 7501 Views
  • 8 replies
  • 0 Likes

CVE-2012-4607

Does the Palo firewall (version 4.1.10) with threat update version 351 block vulnerability CVE-2012-4607"Buffer overflow in nsrindexd in EMC NetWorker 7.5.x and 7.6.x before 7.6.5, and 8.x before 8.0.0.6, allows remote attackers to execute arbitrary code via crafted SunRPC data."

ERIKS by L1 Bithead
  • 2151 Views
  • 1 replies
  • 0 Likes

Resolved! Setup SSL Inbound Inspection with 3rd party certs

Greetings!I have a SharePoint server in a DMZ and would like to setup SSL Inbound Inspection. Is it possible to set this up if I am using third party (GoDaddy) certs? I tried exporting the cert from IIS and uploading to PA; it allows me to select in the inbound decryption policy but it is NOT decrypting the traffic.

SDorsey by L4 Transporter
  • 10878 Views
  • 13 replies
  • 0 Likes

Cert authority to use

We got a wildcard cert built off of a CSR from a windows machine. However attempts to put it on the palo alto device have all failed.previous tickets on that were a run around between here and go daddy. PA believes it look all good and go daddy cant do anything when i try to build a CSR off of the PA device, GD just doesnt recognize it and the...

rhawley by L0 Member
  • 3209 Views
  • 2 replies
  • 0 Likes

user reporting per domain - user.src wildcards

Hi,we have an environment existing out of a forrest containing 15 different domains, all managed by different admins.Since we want to inform local domains on their users internet behaviour, but we don't want them to look into the numbers of other domains, i would like to apply a wildcard to user.src so we would be able to set for example user.sr...

moorken by L0 Member
  • 2630 Views
  • 1 replies
  • 0 Likes

Netconnect and Zscaler issue

Hi,somebody tried to use a cloud based proxy provider like zscaler to use together with Netconnect.ssl vpn ?The proxy uses AD authentication to make sure the client is a member of....customer. No problem so far.When the user wants to initiate a Netconnect session, the panconnect crashes with an unknow software exception....Only way to bypass thi...

gejac by Not applicable
  • 4201 Views
  • 1 replies
  • 0 Likes
  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks