General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 244 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 922 Views
  • 0 replies
  • 0 Likes

Resolved! How to detect DNS TXT messages

is it possible to detect and furthermore block DNS TXT messages via a Threat Signature?

The goal is to disable DNS Queries regarding TXT resource records.

Not sure if the context dns-req-section does the job...

Did anyone ever try this?

Thanks!

Stefan

Virtual Routers

We recently switched ISPs and they assigned as a 32 address block that sits behind 1 address. i.e 71.100.100.192/27 block behind 71.100.100.50/30. We are now connected to the ISP with the PAN addressed as 71.100.100.50/30 with a default route destina

...

Resolved! Difference between gtalk and google-talk?

In todays content update one can read:

"

Modified Decoders (6)

      Name

      gtalk-p2p

      ipsec-esp-udp

      jabber

      ssl

      google-talk

      oracle

"

How come gtalk-p2p isnt named google-talk-p2p or is gtalk something else?

Yeah I know thi

...

mikand by L6 Presenter
  • 2186 Views
  • 1 replies
  • 0 Likes

Resolved! PCI and WSUS

I need to create rules for a PCI firewall for a WSUS server. Microsoft does not publish IP's for their update points so this is problematic on a PCI firewall (or it seems to me). I can either:

1) create a rule which allows the server out to "any" usin

...

Gerry_RH by L0 Member
  • 4306 Views
  • 4 replies
  • 0 Likes

Resolved! Captive Portal Certain AD-Users

I have a unique situation.  Currently, I have a 10,000 + user based network and implemented Captive Portal Policy. We have certain AD accounts that auto login with certain machines. We want to always captive portal those certain logins.  So I am want

...

netslh by Not applicable
  • 2109 Views
  • 1 replies
  • 0 Likes

Resolved! help to configure a DMZ and NAT

hi,

i need a little help to configure a DMZ. here is our situation:

interfaces

ethernet1/1 - 1.1.1.1 (public - NAT clients)

ethernet1/1.1 - 1.1.1.2 (public - NAT DMZ)

ethernet1/1.2 - 1.1.1.3 (public)

.

.

ethernet1/6 - 10.10.30.1 (DMZ)

.

ethernet1/8 - 10.10.20.

...

assona by L0 Member
  • 3659 Views
  • 2 replies
  • 0 Likes

Resolved! Aggregate Ethernet interface: LACP and PaGP support

Hello, Everybody,

we would like to aggregate ethernet interfaces of our PA-5050 (4.1.7 PANOS) in order to have a redundant physical connection towards our Cisco Catalyst switches.

Sound like LACP is not working with PAN and we had to set PaGP, which, o

...

Bucche by L2 Linker
  • 10648 Views
  • 7 replies
  • 2 Likes

Resolved! URL/Application Blocking

Hi Guys,

Just wanna ask a few question. I was testing out the URL and Application Blocking. I was trying to block the facebook-chat, facebook-posting, etc.

to cut the story, I want to block the applications inside facebook but not the whole website. sa

...

HA email alert

hello guys,

does email configuration on pan allow you to receive email alert when primary or secondary pan (  in HA-mode ) when the primary firewall goes down? or when any of them stop responding ?

regards,

bp

Nike Plus

I have a Palo Alto 2050, software version 4.1.6

I have a user behind my Palo who can't log on to his Nike+ account. When he attempts to log on he gets redirected back to the sign on page continually. We've tested this outside the firewall and he has n

...

Decryption

Does the PAN still inspect secured traffic for all threats if it's not decrypting it?

jorge by Not applicable
  • 4087 Views
  • 7 replies
  • 0 Likes

Creating user activity report with all the username in AD

Hi All

I am trying to create a report that will display all my users in my active directory and their activities, the current user activity report only allow a single user. I have also try using the custom report creation but there is no tab for user

...

RIS by Not applicable
  • 2384 Views
  • 2 replies
  • 0 Likes
  • 24025 Posts
  • 115 Subscriptions
Top Liked Authors
Labels