This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4253 Views
  • 0 replies
  • 0 Likes

Resolved! Limit Shared Objects

I have 8 5060s that I manage with Panorama, I share objects between all of these devices. I want to add a new pair of devices to Panorama that are completely separate from the other 8 and I don't want the shared objects to be on the new pair. I also want to prevent admins of the new pair from creating shared objects that will become part of th...

rob_moore by Not applicable
  • 12949 Views
  • 18 replies
  • 0 Likes

Resolved! Global Protect 1.2.0

Hi,I was trying to find if GP 1.2.0 is supported on 4.1.x releases. I can't find it in the release notes from GP nor PANOS. The GP 1.2.0 is shown in the list on the 4.1.x device and you can download it but is it supported?Is it available in different languages?Regards,Kevin

OCDBE by L2 Linker
  • 2445 Views
  • 1 replies
  • 0 Likes

Control outgoing per user with 2 ISP

Hello all!Newbie here on PA-500 (just installed yesterday ), PAN-OS 5I have 2 Internet provider connected to my PA-500 (configured and initial set-up done by reseller), and I am looking in a way to control (by user or device IP) who could go out via ISP2/Untrust2, in other words, not everyone going out by the "default" ISP1/Untrust1 interface.T...

Resolved! Unable to access PA-500 via GUI/SSH on v4.1.7

Greetings,I have a pair of PA-500s running HA version 4.1.7. The web interface (GUI) and SSH access to active device was lost for some unknown reason. The only configuration change done was to set action for a security rule to deny which otherwise was allow. The changes were committed and firewall was good enough for the next 90mins. After 9...

Resolved! Captive Portal Session Timeout

You can set the Timeout value of captive portal. Default is 60 min. In my case it is 240 min.But this is the max TTL. There is a default TTL of 900 sec(15min)So when a logged on user does not create any traffic for 15 min then the user must logon again.IP dent. By User TTL (s...

u2343 by Not applicable
  • 9349 Views
  • 6 replies
  • 0 Likes

Resolved! M-100 appliance

Hi there,Who can tell me more about this appliance? By the look of things this is a server where you can run panorama, capture syslog file ect on. I would use it to run panorama on so do I still need to run the panorama on VMware?Please provide as much information as possible.Thanking youDendre Theunissen.

DendreT by L1 Bithead
  • 3434 Views
  • 2 replies
  • 0 Likes

Resolved! Certificate import issues

I'm having terrible problems importing a trusted certificate into my PA.I've followed the following guide - https://live.paloaltonetworks.com/docs/DOC-3502I can create the key okI can create the CSR okI then submit the CSR to Thawte which then gets authorised and releasedIf I then try and follow the last command from the URL link above (openssl ...

djrodb by L3 Networker
  • 17492 Views
  • 5 replies
  • 0 Likes

Resolved! PAN-OS 5

so the long-awaited v5 is now available. What are the implications of upgrading to it?is rollback to v4 straightforward (we're on 4.1.8 now)?does it force you to use the new PAN web-filtering database, or can you continue to use Brightcloud?Do we need to make changes to our rulebase (in particular WRT to the changes in the way app dependencies ...

Auto-update not functioning

Currently whenever our palo alto 5050s do their dynamic updates they are not finding any new updates to antivirus, applications, or URL filtering. Updates are only found when I manually perform a check. I have all 3 set to download and install with all 3 staggered arround 1 AM. I can tell that they auto-update should have found the update based ...

cbolitho by L1 Bithead
  • 3293 Views
  • 2 replies
  • 0 Likes

Time based No-decrypt rule?

Hi All,On my site we have a Decrypt-all rule in place (apart from some no-decrypt rules for specific business related sites).The problem I have is that some users are having issues accessing sites like Easyjet and Ryanair's booking pages, this I am fairly sure is due to the Palo Box decrypting the info and the websites not liking that.Now this i...

JRussell by L3 Networker
  • 4069 Views
  • 6 replies
  • 0 Likes

UaService (PA User Agent) consuming 50% of bandwith capacity

we have since a couple of weeks detected an issue with our network bandwith which looked to be caused by domain controllers. if we looked further into detail the domaincontrollers were replicating CIFS at a speed of approx 200kbs/400kbs (which is about 50% of our 2Mbit lines which we have between our plants). Notice that we have the next setu...

moorken by L0 Member
  • 5292 Views
  • 5 replies
  • 0 Likes

Policies - Security - Rule shadowed by 2nd rule

Much like an access list on a cisco router top to bottom. I recently created 2 rules for our 3rd party ISP to connect internet sticks via our firewall.1st rule - Allow all traffic via TELUS internet sticks from Trust Vpn, Source (telus), Destination (Any), Actions (Allow), No profile type.2nd rule - Deny all traffic via TELUS internet sticks fro...

Is it PAN 4.1.8 ready for production environment?

HelloI find that in PAN 4.1.8 is new feature:"User/Group-based Portal Configurations – The GlobalProtect Portal now supports multiple agent configurations on a per-user or user-group basis within one portal configuration."I know that its fresh ... but I need this feature.Is it safe to put it on my PA-200 at the moment?With regardsSLawek

_slv_ by L4 Transporter
  • 7744 Views
  • 13 replies
  • 0 Likes

Resolved! configuring NAT with TAGGED subinterfaces

In order to overcome the limited number of physical interfaces on the PA-200, I need to have one physical interface handle traffic for two different zones, A & B. These zones need to talk to each other and to other internal zones (with security policies enforced by the firewall). In addition, they need to access the Internet using Dynamic-IP...

ewilen by Not applicable
  • 6087 Views
  • 5 replies
  • 0 Likes

Resolved! PA in VWire mode between trunked ports

Greetings,Before, I get to the matter, I have browsed through the discussions and did find solutions. But I am unable to understand a few concepts. I have a scenario where;1. The present firewall is a virtual firewall hosted on an ESXi Server.2. Links are from Core to the ESXi Server.3. Two ports used on the ESXi Server are trunked ports.4. Th...

  • 24362 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks