General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2947 Views
  • 2 replies
  • 14 Likes

Allow download of file types that show as ZIP

Hello,

I have had a few instances where I've needed to allow certain files types through the data filter.  One annoying case was native Office 2007/2010 documents that end in x.  What I did was add it to my file blocking profile with the action of ALE

...

gsvarney by L1 Bithead
  • 5142 Views
  • 6 replies
  • 0 Likes

4.0.9 to 4.1.6 - Issues to be aware of?

Are there any known issues to be aware of if I wanted to go from 4.0.9 to 4.1.6?

We had an issue when we went from 4.0.9 to 4.0.11 where the dataplane on our PA-500 randomly rebooted several times and support's initial suggestion was to do a factory r

...

Dual/HA IPsec tunnels with 2 ISPs ?

Hello,

I have 2 PaloAltos, one is running on robust and redundant Corp internet ISP, another one on a remote location with 2 public  ADSL (and miserable quality ofc !). My goal is to have a redundant IPsec link between the two PaloAltos :

How would you

...

essnet by L4 Transporter
  • 1870 Views
  • 1 replies
  • 1 Likes

Android Devices - Exchange Server - User Agent

Has anyone succesfully been able to get Android devices to successfully be recognized by the user agent via the exchange server logs?  It seems to be working fine for Iphones, but not so well for our Android devices.  Captive Portal works, but it's n

...

polgarm by Not applicable
  • 1546 Views
  • 0 replies
  • 0 Likes

Resolved! Hotmail Categorization Weirdness

Hey folks,

User reported MSN mail being blocked as phishing-and-other-frauds, but my Hotmail and her other MSN email accounts work fine.  I investigated and found that the server:

sn123w.snt123.mail.live.com

Is being categorized by the PAN device as phi

...

Negative lookahead regular expression not working

Hi

Bit of an advanced regex feature, but I would like to set up a custom vulnerability signature to detect browsers (user-agent) that are not Internet Explorer. True, one could detect Firefox specifically, but there are so many different browsers in t

...

SSL decryption and Http redirection

Hi,

I am testing SSL decryption and it seems to work fine  except when Http redirection is involved. E.g. when you try to connect to Https://gmail.com , google redirects you to https://www.google.com and it gives me a certificate error because of the

...

SLOW INTERNET

Hi GUys ,

I`m deploying a PAN.

Everything is OK , COnfiguration , URL Alerts , AV , AS everything on ALERT MODE.

But my problem , after COnfigure a L3 INterface to receive IP via dhcp client from my ISP router , my connection with internet becomes very

...

Thiago by L3 Networker
  • 4251 Views
  • 4 replies
  • 0 Likes

Antivirus Update Frequency

Is this specified anywhere?

I can't seem to find where the antivirus update schedule is stated explictly.

Or is it just part of the weekly content updates?

KGC by L3 Networker
  • 5807 Views
  • 7 replies
  • 0 Likes

HA Active/Active

Hi,

Can anyone tell me if HA Active/Active on a PA-500 requires three links in total? As there are limited ports on the PA-500 this may cause an issue.

Also, if this the case - is there any option on having an IPSEC VPN terminating on the passive firew

...

singersit by Not applicable
  • 3203 Views
  • 4 replies
  • 0 Likes

Blocking traffic from another country

Hello,

We have an Extranet server which sits on our DMZ... http and https are allowed through the firewall so that outside users can access the web app on that server.  My server admin asked me if I can block all inbound traffic from China and Taiwan

...

dwoolley by L1 Bithead
  • 3322 Views
  • 5 replies
  • 0 Likes

Interesting RSS feeds or blogs?

I am curious as to what blogs, RSS feeeds and/or forums others follow regarding security/corporate level firewalls/etc.

Side note:  Unless I am missing something, the RSS feeds in PA support don't work.

Thanks,

Bob

BobW by L4 Transporter
  • 2809 Views
  • 1 replies
  • 2 Likes

Resolved! Cannot sync two machines in HA mode

Hi,
Heres my case: Machine A and B was working in HA mode.Meanwhile their antivirus and threat licenses expired and we didnt renewed them. Both machines has valid and up-to-date URL filtering license.

Machine B went dead after some power problems and n

...

  • 24033 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors