General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 304 Views
  • 0 replies
  • 2 Likes

application vs url categories dependencies

I want to allow access to Twitter, but block all other social-networking services.

The obvious approach is to allow the Twitter application and then have a rule blocking the social-networking category for web-browsing and ssl, but this doesn't work, T

...

Resolved! How to handle jdownloader?

Hi guys,

I was wondering what the best way to handle jdownloader or other download managers? Are they treated as seperate apps? Is the only way to deal with this via QoS policies? I'd love to hear about your experiences.

Alex

Abs by L3 Networker
  • 6095 Views
  • 12 replies
  • 0 Likes

Resolved! execute command on other device

Hi, Live Community,

Can you please tell me whether or not it is possible to execute a command on the other device in PAN-OS, and see the output (without logging into the other device, for example)?


Thank-you so much,


Dan Sullivan

dsulli99 by Not applicable
  • 1960 Views
  • 1 replies
  • 0 Likes

Google Docs Phishing Issues

So I dont know if its just us but we are getting hammered with phishing requests to google docs web sites. The latest is:

https://docs.google.com/a/smps.k12.ok.us/spreadsheet/viewform?formkey=dGdKTFpTcW5KVVF1UGxJTFJ0aF9UdHc6MQ

My URL Filter wont block

...

jhickey by L3 Networker
  • 3495 Views
  • 6 replies
  • 0 Likes

PA 5050 Shadow Rule Error

Hi all,

I am configuring PA 5050 and populationg the security policy rule base. While i am making ule bases , and during commit , i am geting the error message that the Rule3 (suppose rule 3 ) is shadowning Rule 4 in the sequence. I am getting this e

...

itsecll by L1 Bithead
  • 5268 Views
  • 4 replies
  • 0 Likes

Resolved! How HA active/passive 2000 series works

Hi Guys ,


I have a dubt about HA Active/passive

How it`s works ? i need to  have  a float IP ?

OR my 2 appliances need to have the same configuration ?

I see some docs , but i don`t understand how HA works.

So if somebody can help me I`m using 4.1.3 PAN

...

Thiago by L3 Networker
  • 5430 Views
  • 12 replies
  • 0 Likes

User ID agent / User-IP-Mapping issue

Hello,

I have simple request: created access rule based by group.(and this part looks clear and working to me). Problem that i can make User-IP mapping to work correctly. With desktops i do not see any issues because their users do not change mostly a

...

rimbalt by L1 Bithead
  • 2446 Views
  • 3 replies
  • 0 Likes

PA-2050 commit frustration

Hello,

We have 2x PA-2050 devices in HA running 3.1.10 and I'm frustrating about commit time, it takes like 5-10 min.

Can I expect significant improvement, commit time speaking, with upgrade to 4.1.5 ?

Field experiences in commit time with 4.1.5 ?

Or sho

...

Resolved! Delay in SSH prompt

Hi, All,

I have a hopefully quick question regarding my Palo Alto 5050 firewall pair; whenever I go to log in via SSH, I get a delay of approximately 5-10 seconds before I am actually prompted for a password.  Is this normal?  This is more of a nuisan

...

dsulli99 by Not applicable
  • 4451 Views
  • 4 replies
  • 0 Likes

Monitor throughput of dataplane using snmp

Hi all

is there a way to monitor the throughput of the dataplane?  I would like to turn on threat protection on my Palo's but I need to be able to log the throughput so I can see the effect it has.  I am monitoring the Dataplane CPU but would like to

...

BBHLTD by Not applicable
  • 4251 Views
  • 2 replies
  • 0 Likes

Block a particular Google Document

Greetings,

One of my users forwarded me a phishing email that points to Google Docs to collect information (username/password). The URL looks like:  "https://docs.google.com/a/b/c/viewform?formkey=asdfasdfasdfasdf" (not the real url). Is there a way t

...

dmarion by L1 Bithead
  • 2363 Views
  • 3 replies
  • 0 Likes

QoS Markings

I have a couple pa-500's. I have a voip system that right now sits in front of the FW. I would like to put it behind the FW. If I have my switches and routers currently marking the voip traffic with an ip precedence of 5. Once I move the VOIP systme

...

jsanchez by Not applicable
  • 2317 Views
  • 3 replies
  • 0 Likes

Resolved! SSL VPN user limit

Hello.

In technical description for PA-500 (each type has own) is limit 100 SSL VPN Users.

This is concurrent (in same time) capacity?

Can be defined 100+ users (from AD) but only max 100 will have connection?

What’s happen with 101 connections?

Than

...

noviko01 by Not applicable
  • 7250 Views
  • 1 replies
  • 0 Likes
  • 23650 Posts
  • 107 Subscriptions
Top Liked Authors
Labels