This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4121 Views
  • 0 replies
  • 0 Likes

How to Lock down Search Engines to Safe Searches

Here are some custom vulnerabilities and one custom application I wrote to block unfiltered (Bad) searches on the big search engine sites.These were written in 3.1.0 software.UPDATE: See attached for 4.0 version of these vulnerabilities and custom application.Here is what they do:Bing:· Blocks all explicit content in images and videosGoog...

u2913 by Not applicable
  • 8323 Views
  • 3 replies
  • 0 Likes

Help on Global Protect using LDAP Authentication..

Hi,I been having trouble with GP authentication using LDAP server..It seems like if i didnt set the SSL on the LDAP configuration, the AD is not able to communicate with the PAN..Even if i did set both of non SSL or SSL, it still didnt show any users and authentication at GP page failed..tail mp-log useridd.logJan 17 16:56:24 Error: pan_ldap_ctr...

samsk by Not applicable
  • 4793 Views
  • 2 replies
  • 0 Likes

Resolved! PAN-OS 5.0.1 No Graph on QOS statistics

No graph are being shown in my QOS statistics. Just upgraded from 5.0.0. Previous issue that I was being prompted that statistics for the interface is no available was solved and now this. Please confirm if you also encounter the same.,

icagh by L1 Bithead
  • 6750 Views
  • 10 replies
  • 0 Likes

Issue with Global Protect and HP 6510b laptop

the GP client software will install (v1.1.6) however, keeps connecting and then disconnecting.. seems to only be happening with our HP 6510b 32bit laptops. Any other people experiencing this?

rrau by L3 Networker
  • 3512 Views
  • 5 replies
  • 0 Likes

Resolved! Lookup URL in Custom Categories

I'm currently trying to verify a list of URLs is blocked in my configuration. So far I have tried the following commands:test url <URL>and test custom-url url <URL> rule <rule name>The first command returns what the site is classified as by Brightcloud. The second command does not return any output.Is there a way to look up a...

c_luck by L0 Member
  • 6023 Views
  • 1 replies
  • 0 Likes

How to block Skype VOIP, Video only

Hi,Microsoft is going to retire MSN and replace with Skype. Is there any way to allow only Skype messaging and block skype video, VOIP calls and file transfers?It seems that the current PAN apps ID does not have any specific apps for Skype VOIP and etc..Thanks in advance. Regards,Aaron

Resolved! block-url threat level

I am trying to set up notification for blocked urls. I can see block-url syslog messages when I set log forwarding to log severity level informational. Is there a way to modify the threat level for blocked urls? I would like to use a higher threat level as an indication of when to send an email alert.Thanks.

oshcomp by Not applicable
  • 2975 Views
  • 2 replies
  • 0 Likes

Resolved! Static nat commit warning valid...?

When I commit my configuration, I am currently getting the following commit warning:· - Rule '<public ip removed>-snat' shadows rule '<public ip removed>-snat'I know why I am getting this and its because I have 2 bi-directional static source NATs with 2 different public IPs that go to the same internal IP. I understand that in the o...

Rjschultz by Not applicable
  • 4187 Views
  • 4 replies
  • 0 Likes

Failing close..

I think Palo Alto refers to "Failing Close" as still allowing traffic through in the event of a failure. And by default, I think the Palo Alto 4020 Fails OPEN. Is there any way to set it to fail closed?We are using our Palo Alto as more of a sensor/monitor, not so much as a Firewall. We would like to put the Palo Alto inline with some parts o...

jambulo by L4 Transporter
  • 7117 Views
  • 4 replies
  • 0 Likes

Resolved! URL filtering allow_list configure without URL license(BC-url database)

Hi all,We have try to configure the URL allow list in policy without the URL filtering license.but we fail because we just config the allow list.In URL filtering process execution1. black list2. allow list3. custom categories4. BC URL categoriesSo, if we just configure the allow list, another URL would not be control it because the database is e...

Resolved! High rate on "flow_host_ha_encap_err"

Hi folks,By chance (okay, we were troubleshooting another issue) we found a potentially strange issue on our active PA-2050 (there is a secondary (HA passive) PA-2050 in place as well).1) We issue the following command on the prompt: show counter global filter delta yes severity drop2) We get the following output:Global counters:Elapsed time sin...

oschuler by L4 Transporter
  • 7423 Views
  • 5 replies
  • 0 Likes

Resolved! New Java vulnerability, CVE-2013-0422, released 1/11/13

Hello all,Just wondering if anyone might be able to tell me whether this vulnerability, CVE-2013-0422, is being addressed? And, if so, when could we expect to see a patch for this? Thank you!http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0422&utm_source=dlvr.it&utm_medium=twhttp://msisac.cisecurity.org/advisories/2013/2013-006.cfm

u13987 by Not applicable
  • 3828 Views
  • 4 replies
  • 0 Likes
  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks