This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4116 Views
  • 0 replies
  • 0 Likes

Multicast IP-tv streaming thru PA ?

I am struggeling to find information about multicast and PA.I would like to get may multicast running on my lan forwarded to my external site. Currently I have a IPsec tunell running between but the multicast do not need the IPSEC security. I have a WAN connection with pure L2 from my WANprovider. Is it possible to use VWire , policybased forwar...

stig by L1 Bithead
  • 3797 Views
  • 2 replies
  • 0 Likes

Baseline of Firewall Throughput (Performance)

Hi,I need to be able to create a baseline of firewall throughput. I know that I can view the throughput real time with the "show system statistics" command, but does anyone know a way of monitoring this over time to use in graphs or reports. I would like to have this data so that I know as new projects come up, the firewall can handle the addi...

Milamber by L1 Bithead
  • 10990 Views
  • 8 replies
  • 1 Likes

Resolved! NTLM URL in PANOS 4.1

We have just recently upgraded our firewalls from 3.1 to 4.1Does anybody know what the ntlm URL is in 4.1?Old link: http://firewall:6080/esp/ntlm.espNew link: ???Each time an admin user logs on remotely to someone’s machine or enters their admin credentials inside their current windows session, the firewall will continue to use those admin crede...

adevine by L1 Bithead
  • 2614 Views
  • 1 replies
  • 0 Likes

SSL Decryption in PAN 4.1 fails - Firefox warns "ssl_error_rx_unexpected_new_session_ticket"

Since upgrading to Palo Alto Networks 4.1 we often have warnings in several firefox and thunderbird clients. Then we get the error mesage "ssl_error_rx_unexpected_new_session_ticket". This example is from thunderbird:Additionally the behaviour of the firewall to let some SSL communication undecrypted - for instance: on the first click https://ww...

mhuels by L3 Networker
  • 5773 Views
  • 6 replies
  • 0 Likes

Global Protect client can't be disabled

HiI've just rolled out the Global Protect client (version 1.1.6) to some contractors that need remote access to our network. I've got it setup as follows:Portal config - Client ConfigurationOptions:- On DemandAgent: Enable advanced view - true User can save password - true Passcode - blank Confirm - ...

TDC by L1 Bithead
  • 5645 Views
  • 5 replies
  • 0 Likes

Administrator Accounts

When I create new administrator accounts the accounts cannot login. The palo alto system logs shows invalid username/password, but the name and password are being typed correctly. anybody have any ideas why.

snormoyle by Not applicable
  • 3322 Views
  • 3 replies
  • 0 Likes

Pan vs proxy???

Hi all!I am newer and I meet some problems with PA 2050I want use PA 2050 to monitor traffic in my network.I setup PAN in Mode Layer 1 ( virtual wire)I setup Polices is aler ( not block - i sure it)I have a proxy, client can access internet through Proxy or not, all ok!But after i put PAN, client can't not access internet through Proxy,but if cl...

dat.tran by L2 Linker
  • 2471 Views
  • 2 replies
  • 0 Likes

Global Protect ios,iphone

Hi,I want to use my iphone and ipad devices automaticly to connect throught Global Protect to internal network and they will use as internet their own connection.Just for internal access they will use Global Protect.The real question is : when we configure this for the phones, Do we have a option that iphone user will always be connected to Glo...

Wildfire automatic signature via daily AV updates

When the Wildfire Automatic Signature gets distributed via the daily AV updates, is it safe to assume that the only AV Profile that gets the block action for the new signature is the "default" or do all of the AV Profiles that have been created get the block action?

jwolach by L4 Transporter
  • 2571 Views
  • 3 replies
  • 0 Likes

HA2 problems

Hello together,We have a A/A cluster with PA-5050 boxes running PAN-OS 4.1.5At the moment one node is suspended due to another problem. We had the problem that we lost the HA2 connectivity (main/backup) between the cluster nodes and traffic through the active box where stopped.From my point of view this should not happen as this link is for sync...

muellerm by Not applicable
  • 6291 Views
  • 7 replies
  • 0 Likes

Resolved! What is policy order inspection on Palo alto?

Hi All,in policy tab there are a few policy like security, NAT, Qos, PBF, Decryption, Application override, captive portal and DOS protection. my question is what is policy order inspection on Palo alto.which policy palo alto will look first?thanksIndra

el by Not applicable
  • 10179 Views
  • 6 replies
  • 0 Likes

Resolved! Merge XML configs in Panorama?

Hi -I was wondering if it's possible to merge a portion of the Panorama config that I'm manipulating offline (say in Notepad++) with the existing Panorama running config? Specifically, I've got objects I'm defining in a device-group and I'm defining those in an XML file offline. What I'd like to do is upload/import this XML file and merge it i...

DLP and Custom Reporting

I was wondering if there was a way to create a report off of any DLP policies that are triggering daily so you can get a username and ip of anyone triggering this policy. Just was curious if anyone had any success in custom reports doing this.

netslh by Not applicable
  • 3674 Views
  • 3 replies
  • 0 Likes

Resolved! Erros when update software and signature in PA 2050 v 4.16

HI all,I am newbeeWhen i update software and database for Antivurs, threat preventionBut i met a erros:Failed to install with the following errors. Image File Authentication Error Failed to load /opt/pancfg/mgmt/sw-images/PanOS_2000-4.1.7 Pls hepl me!Thanks

dat.tran by L2 Linker
  • 3270 Views
  • 4 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks