This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4473 Views
  • 0 replies
  • 0 Likes

incomplete

Hello,I need urgent help. I dont know why but from one moment during the day is one website unreachable from our internal network(only this website). There was no change in configuration PA500, no changes in web server configuration. From outside of company is website reachable without problem. What I see in log is for this session application:i...

oitspa by L2 Linker
  • 10327 Views
  • 15 replies
  • 0 Likes

Resolved! Commit not showing who did it in system log

Dears,I have a serious issue, yesterday the internet became down suddenly, when i check the firewall, i find out their is big changes happened on the firewall without us knowing, no one have change anything, when i went to the system log to see the commit for which admin, i find the commit is showing without the user?it should show in this way: ...

yousef by Not applicable
  • 6655 Views
  • 6 replies
  • 0 Likes

Resolved! IPSEC VPN implementations

Hi this is one the sample output that i captured when i established a VPN tunnel between 2 PA firewalls.As far as my knowledge goes Ike SA's are bi directional and IPSEC SA's are uni directional correct me if i am wrong.But here i see 2 SA's in Phase 1 , but all i establised was only 1 VPN tunnel .Can some throw some light on this please . Thank...

srikanth by Not applicable
  • 4377 Views
  • 4 replies
  • 0 Likes

Resolved! Re: Upgrade Process Using Panorama

Hi do we need to activate the devices first time from Panorama is that mandatory? I already activated the devices and now when i try to add auth codes for rest of the devices its not happening and throwing error saying auth code already used.Can some one help? Thanks,Srikanth

srikanth by Not applicable
  • 7121 Views
  • 11 replies
  • 0 Likes

stunnel download triggering Virus/Win32.WGeneric.bpzq alert

Has anyone using a Palo had need to download stunnel and, if so, did it trigger a Virus alert for Virus/Win32.WGeneric.bpzq?Would like to confirm that the download has not been compromised before I bypass this alert - and I'm assuming it's not just been marked as 'grey-ware' as I would have expected a more definitive alert based on the applicati...

apackard by L4 Transporter
  • 2136 Views
  • 1 replies
  • 0 Likes

blocking traffic with User-Agent header, ie Mobile

We have a need to block mobile devices from getting to a particular host with active-sync, imap or pop3. From what I have read looking for and blocking traffic based on User-Agent is possible. Anyone ever do this with the PA ?Thanks,Justin

jhickey by L3 Networker
  • 2821 Views
  • 1 replies
  • 0 Likes

Resolved! UIA 4.1 - Monitor multiple domains

Hi,Simple question, resulting from mixed messages I've received:When using UIA 4.1 is it or is it not possible to monitor user/ip mappings for multiple domains (with trust between them) using a single User-ID agent?Thanks.

sdw by L1 Bithead
  • 2608 Views
  • 1 replies
  • 0 Likes

Firemon

Hi all, I have just installed a firemon appliance and have added the palo alto firewalls.they all seem to be pulling the configs but I see no change in the Audit log.Also the Log Status is red on all of them (In Firemon)Has anyone got this working?I know they are an official PAN partner but I dont see any feature lists anywhere.....Thanks in adv...

Resolved! User Agent

Installed the user agent on a windows 2003 server. every time you try to start the service you get the windows box stating the service was started, but then stopped.

snormoyle by Not applicable
  • 3804 Views
  • 4 replies
  • 0 Likes

Resolved! Questions on Palo Alto safe practices

Hi i have a few outstanding questions on Palo Alto devices. We just migrated from Juniper to PA line. So these might sound silly for people who already are on PA line.Do we have any primary and back up images on PA firewall . Just like in JUNOS if one image is corrupt it tries to load from the back up image file.How many rollbacks does the PA de...

srikanth by Not applicable
  • 12146 Views
  • 20 replies
  • 0 Likes

Resolved! Static Routes AND BGP on Same Vritual Router?

Could not find explicit answer in manual but Im pretty sure this is possible.Can I use Statiuc Routes AND BGP protocol on the same Virtual Router?Also, if Im able to do this is it a smart idea or am I asking for trouble?Thanks!--CH

choff123 by L3 Networker
  • 2661 Views
  • 2 replies
  • 0 Likes

Resolved! Need to learn of reports

Hi,I am new to Palo Alto. I was wondering if there is any information that can show me if there is a way to write a search without using the threat Id's on the website.for example if I would like to search for all forms of Zeus how can this be done without haing to put in all 15000 threat Id'sthank you

Resolved! DMZ and Destination NAT using same subnet

We have migrated from a TMG (ISA) and Cisco Firewall deployment to a PAN firewall with the TMG being used to do proxy and URL redirection. We have a /25 IP range from our ISP that is used for public addresses. We currently have the environment configured so that the PAN does Destination NATs to our internal web non-sharepoint sites. The TMG is u...

craymond by L4 Transporter
  • 7128 Views
  • 5 replies
  • 0 Likes

Resolved! Want to create a security policy based on domain user group.

Hi, I would like to set up a security policy based on a group a user belongs to on my AD. I've set up the LDAP, and USER ID client on the server, but when I go to create the security rule, nothing shows up in the add box for the user. Even if I click the drop down, or start to type the domain/username info. I'm thinking I missed a step, or somet...

  • 24379 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks