This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4237 Views
  • 0 replies
  • 0 Likes

Resolved! Installing an Intermediate CA

I'm getting the following error when I perform a commit on a PA-3020. PAN-OS 5.0.1. I know I'm doing something wrong. I'm new to installing certs so feel free to point and laugh.I had a certificate signed by GoDaddy for use by Global Protect. It came signed by an Intermediate CA.I've created a chained certificate to make sure the Intermediat...

Intermittent Group Membership problem

We are currently having a problem with a new domain where the group membership intermittently disappears. If you run the command "show user user-IDs match-user domain\" (4.1.x) or "show user pan-agent user-IDs match-user domain\" (4.0.x) it shows users mapped to AD groups.This is happening on a single new domain where all other domains are worki...

rds by L2 Linker
  • 3210 Views
  • 3 replies
  • 0 Likes

Resolved! How to import device configuration into Panorama ?

Hello,We have a customer who has installed and configured a PanOS 5.0.0 A/P cluster of devices a few time ago.Now he has bought a Panorama licence to centrally manage and report his devices.Is there a quick and straight way to import devices congigurations into Panorama ?I have seen this documentation that describes how to manually import a conf...

ldormond by L3 Networker
  • 3416 Views
  • 3 replies
  • 0 Likes

BGP Route Table

So in discussions with a few customers the BGP functionality has come up when peering with ISPs and replacing dedicated BGP equipment. The route table size on the PAN5060 is roughly 64000 routes. Most Universities have tables upwards of a 1/2 Million. Also Dynamic routing is currently unsupported on IPv6 as of PANOS5.0.2. As a workaround we...

amansour by L4 Transporter
  • 3401 Views
  • 1 replies
  • 1 Likes

two factor authenticaton tokens with PAN firewalls...

I am looking for a two factor authentiction solution for PAN firewalls (Global Protect). particularly interested in a Mobile phone base app to provide security token or OTP to authenticate users via Global Protect. Anybody have any good or bad experiences with these?

sns.jon by L0 Member
  • 4745 Views
  • 5 replies
  • 0 Likes

Global Protect Client

Hi I'm using radius (rsa) to authenticate GP users and can't get me head around the GP client configuration - specifically the section where you need to put a username and password. How can this be possible when the RSA token changes every minute?Can someone shed some light on this please ThanksRod

djrodb by L3 Networker
  • 6284 Views
  • 7 replies
  • 0 Likes

Policy Based Forwarding (PBF) problem

I’ve got problem with policy based forwarding. I have 2 ISP - traffic to the 1st ISP is forwarded by pbf, to the 2nd – via default route. PBF rule monitors the remote target’s IP and availability of nexthop address. My question is: how the pbf is checking availability of the nexthop address. I have sniffer open on nexthop address host but I can’...

How to Lock down Search Engines to Safe Searches

Here are some custom vulnerabilities and one custom application I wrote to block unfiltered (Bad) searches on the big search engine sites.These were written in 3.1.0 software.UPDATE: See attached for 4.0 version of these vulnerabilities and custom application.Here is what they do:Bing:· Blocks all explicit content in images and videosGoog...

u2913 by Not applicable
  • 8374 Views
  • 3 replies
  • 0 Likes

Help on Global Protect using LDAP Authentication..

Hi,I been having trouble with GP authentication using LDAP server..It seems like if i didnt set the SSL on the LDAP configuration, the AD is not able to communicate with the PAN..Even if i did set both of non SSL or SSL, it still didnt show any users and authentication at GP page failed..tail mp-log useridd.logJan 17 16:56:24 Error: pan_ldap_ctr...

samsk by Not applicable
  • 4827 Views
  • 2 replies
  • 0 Likes

Resolved! PAN-OS 5.0.1 No Graph on QOS statistics

No graph are being shown in my QOS statistics. Just upgraded from 5.0.0. Previous issue that I was being prompted that statistics for the interface is no available was solved and now this. Please confirm if you also encounter the same.,

icagh by L1 Bithead
  • 6868 Views
  • 10 replies
  • 0 Likes

Issue with Global Protect and HP 6510b laptop

the GP client software will install (v1.1.6) however, keeps connecting and then disconnecting.. seems to only be happening with our HP 6510b 32bit laptops. Any other people experiencing this?

rrau by L3 Networker
  • 3565 Views
  • 5 replies
  • 0 Likes

Resolved! Lookup URL in Custom Categories

I'm currently trying to verify a list of URLs is blocked in my configuration. So far I have tried the following commands:test url <URL>and test custom-url url <URL> rule <rule name>The first command returns what the site is classified as by Brightcloud. The second command does not return any output.Is there a way to look up a...

c_luck by L0 Member
  • 6078 Views
  • 1 replies
  • 0 Likes

How to block Skype VOIP, Video only

Hi,Microsoft is going to retire MSN and replace with Skype. Is there any way to allow only Skype messaging and block skype video, VOIP calls and file transfers?It seems that the current PAN apps ID does not have any specific apps for Skype VOIP and etc..Thanks in advance. Regards,Aaron

  • 24358 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks