This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4113 Views
  • 0 replies
  • 0 Likes

Ipad detection

We've configured the PA500 to accept IPAD connections using IPSEC, but is there a way to detect the fact that an Ipad is connected using HIP rules? We would like to only allow traffic to certain systems.Version PA OS = 4.1.4

Clearing URL Continue Timeout

Hello, Converting from BlueCoat ProxySG's to PAN URL Filtering... Within a BlueCoat environment when you "coach" a user... you can have the Bluecoat use a cookie to tell when next to "coach" the user. This can be cleared by deleting cookies... Can a person 'clear' the URL Continue Setting for a user causing the user to see the continue page...

Art by L3 Networker
  • 3049 Views
  • 1 replies
  • 0 Likes

Destination NAT with PBF

Hello all,I have a question if Destination NAT with PBF is supported.I have two site A and B. All internet bound traffic is supposed to go out site A. Site B sends its traffic over a VPN tunnel to site A due to a default route. There are however some devices that rely on the public IP's given to us so I had to maintain the static NAT locally.The...

andrew85 by L0 Member
  • 3242 Views
  • 3 replies
  • 0 Likes

Problem with certificate after upgrading GlobalProtect 1.1.7

Hi everybody.Up to now, I've had working a Globalprotect configuration, with only a Server Certificate, and it worked very well.After upgrading to version 1.1.7, I've received the message: "The paloalto.xxxxx.es certificate is not signed by a trusted certificate authority.". That is a problem for "no on demand" VPN connections, because you have ...

NTop NetFlow

Hi all,Does anyone have experience feeding NTop via NetFlow from their PA firewalls? I have it setup and sending flows but NTop sees all of the received flows as either "Flows with zero byte count" or "Flows with zero packet count" and discards them. Perhaps someone knows a fix for this?Thanks,Chris

GV27 by L1 Bithead
  • 5619 Views
  • 5 replies
  • 0 Likes

Resolved! APP-ID detection capabilities in IP64 tunnels

Hi, I placed a PAN device in VWIRE mode on the WAN side of a internet connection. I planned to test the APP-ID capabilities of detecting IP64 tunnels. Over this WAN link, a 6-4 tunnel exists with Hurricane tunnel-brooker. The APP-ID is able to detect the 6-4 tunnel and identifies it as IPV6 application. But when a native IPv6 client is surfing t...

wimjuste by L1 Bithead
  • 7118 Views
  • 5 replies
  • 0 Likes

Resolved! NAT Translation to web server in 4.1.2 when WAN in DHCP Client

Hello,I have a PA-500 and need to setup some NAT Translation so external users can access some internal web and VMware View Servers in my lab.Since my Ethernet1/1 (WAN) has to be setup as a DHCP Client, what do I use in the "Originating Packet" - "Destination Address"?I was able to trick it by creating an address entry and specifying the IP I cu...

mbehlok by L0 Member
  • 5332 Views
  • 6 replies
  • 0 Likes

Resolved! Panorama multiple interface

Hello,I would like to know if it's possible to configure multiple ip interface on the panorama server ?One interface to administer the server, and another one for communication with the PANs .Regards,

IPS - set up packet logging

Dears,I would like to know if there is a possibility to collect some packets before and after the packet that trigged the attack signatureit will be helpful in case of troubleshooting and confirm if this attack is a false positive or real attack( knowing that this option is available from other vendors )Thanks and regardsSamir.

Resolved! PA 2050 device cannot boot

Hidevice cannot boot and waiting below mode******************************************************Autoboot to default partition in 5 seconds. Enter 'maint' to boot to maint partition.size: 7208960, sector_size: 131072Scanning JFFS2 FS: . done.Full fpga programming SUCCESSUnknown command 'fsload' - try 'help'## No elf image at address 0x200...

lildeniz by L3 Networker
  • 3899 Views
  • 2 replies
  • 0 Likes

SNMP/QoS Questions

I had recently configured a Cacti server to monitor my bandwidth usage of my PA-500. All was working fine for a few weeks until I worked with support to configure and enable QoS to monitor bandwidth on the PA-500 without actually implementing QoS. Since then my Cacti server is not displaying the SNMP information it was receiving from the PA-50...

Configuring the firewall time-out values for HTTP(S) requests to the Exchange Server Microsoft-Server-ActiveSync virtual directory

I have getting 1040 event id on the Exchange 2010 CAS server. Event details as exampled below.Log Name: ApplicationSource: MSExchange ActiveSyncEvent ID: 1040Level: WarningUser: N/AKeywords: ClassicDescription:The average of the most recent heartbeat intervals [526] for request [Sync] used by clients is less than or equal to [540]. Make sure tha...

cbret by Not applicable
  • 7239 Views
  • 4 replies
  • 0 Likes

Resolved! loosing link between an user and is AD groups

I opened a case in this regard, but in the meantime I would like to know if anyone has the same problem as me.-I'm using version 4.1.8 of PA, the PA-2050 appliance.-User ID agent v.4.1.4.3 is use for authen users.- ad windows, on server 2008, for LDAP.I regularly lose the link between a user and the group associated with that user.Result: I have...

report top websites export to PDF: host name not resolv

When i doing a custom report, using template : Top WebSites, then I export report to PDF, hostname show IP instead of real host name.I use PA 4.1.9 .Any clue on that?There is a way to show real hostname ? Or maybe i can use URL filtering database instead of traffic?

  • 24333 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks