This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! CERT_DATE ERROR SSL-VPN Global Protect PanOS 4.1

Hello,I configured the VPN-SSL on PANOS 4.1 using the "Configure Global Protect tech notes" document and the migration from Netconnect to Global Protect. Following these manuals I got this error.(T5448) 01/19/12 12:21:10:825 Debug( 392): CPanHTTPSession::PostRequest: WinHttpSendRequest...(T5448) 01/19/12 12:21:10:887 Error(4909): CPanMSService::...

Resolved! Seperate policy for IPSec VPN and SSL VPN?

So I would like to have different policies based upon what device a user comes in from. If they use Globalprotect with HIP checking, they are given a less restrictive policy. Where as if they come from an iphone with ipsec, they are given a more restrictive policy. Both ipsec and SSL are hitting the same GP gateway. I see no way to differentiate...

Possible false positives - ASP.Net Information Leak Vulnerability

Starting on September 4th we've been seeing multiple "ASP.Net Information Leak Vulnerability" warnings in our logs. They are showing as originating from multiple sources within our internal network. Malware scans come up with nothing on these workstations and we haven't made any changes to anything. Is anyone else seeing these?

Resolved! Mac GlobalProtect = Detected another instance

I just setup SSL-VPN access on our PAN-2020s and downloaded the latest Global Protect Bundle that was released on June 20th, 2012 - v. 1.1.5. I logged into the portal in my mac and installed the version for Mac running OS X 10.7.4 (64bit) and once the application was done installing I get a popup that says "An old GlobalProtect instance exists,...

cmateam by L3 Networker
  • 25377 Views
  • 12 replies
  • 0 Likes

Resolved! Captive Portal - identify user with certificate

Hello everybody.I have a question regarding captive portal user identification.As everybody know user like Mac, iPhone, Android are difficult to identify and manage without insert credential in captive portal.For wireless policy in all my company device I've installed a user certificate who grant wireless access. i would like to use it for user ...

Will FQDN names work when the name resolves to a content delivery service?

For example:H:\>dig www.microsoft.com; <<>> DiG 9.2.3 <<>> www.microsoft.com;; global options: printcmd;; Got answer:;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 41;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 0;; QUESTION SECTION:;www.microsoft.com. IN A;; ANSW...

jraleigh by L1 Bithead
  • 3835 Views
  • 5 replies
  • 0 Likes

Resolved! Adobe Flash Player download showing as virus

The Adobe Flash player download page is being blocked as the following threat:Name: Virus/Win32.encryptedcontainerdeleted;.dwfID: 2488533Severity: MEDIUMDescription: This signature detected Virus/Win32.encryptedcontainerdeleted;.dwfIs there something bugged in the latest Antivirus release? Our PA-500 is on Antivirus release 833-1147.

Captive Portal with VASCO SMS OTP

Hello folks,I hope everyone is doing well, I have been stumped over this issue that I am trying to find an effective solution for. One of our customers have requested the need to verify Guest Wireless Users that connect to the network via a Cisco Wireless LAN Controller. What they want to do is force the Guest Wireless users to register their Ph...

Tintin

How many milsec/sec does it take for the active PA-5020 to switch to Passive in a HA environment?Regards

DendreT by L1 Bithead
  • 2669 Views
  • 2 replies
  • 0 Likes

System resources log ?

Hello,Is there a way to record system resources (mgmt CPU, datapalce CPU and sessions count) ?Indeed, we have to perform load test on the devices and it would be quite boring to refresh the dashboard page repeatedly during the test... Also is there a way to set a snapshot that records these resources values with a customizable refresh ?Regards,L...

ldormond by L3 Networker
  • 3855 Views
  • 3 replies
  • 0 Likes

Active Directory Users

Hello to all, I am currently using active directory in a virtual machine with the User ID 4.1 version installed, and using a PA 2050 for testing, it was working fine until yesterday but now when I create a policy I am unable to select the users from active directory anymore, I click on the dropdown list and it seems to be loading then it stays b...

asaldana by Not applicable
  • 4313 Views
  • 2 replies
  • 0 Likes

Resolved! TFTP Host in export command

Is there a way to specify the "to" filename in the tftp export configuration command? for example: tftp export configuration from running-config.xml to x.x.x.x:running-config-date.xml

jprosba by L1 Bithead
  • 3807 Views
  • 2 replies
  • 0 Likes

Captive portal, manage authenticated users

Hi All,I am new to the palo Alto community and would like to say that it is looking good. We have a demo unit installed on our network at the moment, but have a few questions that I sure the people in this forum will be able to answer. Is there any way to manage the currently connected users that have logged on using the captive portal ( is ther...

Billy_G by L1 Bithead
  • 7136 Views
  • 2 replies
  • 0 Likes
  • 24381 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks