This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4469 Views
  • 0 replies
  • 0 Likes

Resolved! able to block tor browser proxy ?

Hi,I have block many proxy/anonymiser, like ultrasurf, freegate and many mores.But i cannot find a way to block TOR browser.The browser/proxy client is on this site :https://www.torproject.org/download/download-easy.html.enJust to let you know that i fill the form to get a new apps in the palo alto box.But will waiting for a new apps to be added...

How to create executive report by LDAP user group?

I have moved from a dedicated URL filter to the Palo Alto with the URL Filter add on. I now need to figure out how to create executive reports based on LDAP groups.I have LDAP groups such as Sales, Marketing, Accounting. I need to deliever a weekly report to managers which could allow them to see if they have any obvious abuses within their d...

EdwinD by L3 Networker
  • 2102 Views
  • 1 replies
  • 0 Likes

Resolved! packet capture for unknown-tcp

Hi,I'm getting a lot of unknown-tcp on the internal network and would like to capture some packets to get an idea what this is.I tried:debug dataplane packet-diag set capture trigger application from unknown-tcp to unknown-tcpbut I don't get any packets so far.I also tried from none to unknown-tcp, same result, nothing captured.Any idea what I'm...

Negate please

I am running PanOS 4.1.7, migrating from a Checkpoint R75 platform. I have a lot of rules in place, but we are heavy into excpetions. I keep running into situations that would be very easy to handle if I simply had the Negate option.For example, I have a rule that allows domain users out to specific web apps using my URL filtering, along with...

EdwinD by L3 Networker
  • 2803 Views
  • 3 replies
  • 0 Likes

Resolved! 4.1.7 LDAP lookup unstable

I have three active directory servers configured within the LDAP settings of my Palo Alto. I have tried using both 389 and the GC port of 3268 as per this doc: https://live.paloaltonetworks.com/docs/DOC-3120I have two 2050's in an active/passive pair. I have AD IP agents on each DC and the PAs are set to query them.The problem is that while I ...

EdwinD by L3 Networker
  • 2725 Views
  • 1 replies
  • 0 Likes

Resolved! Clear Traffic Logs command clears Traffic Summary logs as well?

I want to 'clear traffic logs'. If I go through with that will that also clear the traffic summary logs?I would like to clear traffic logs but keep the summaries.... reason being, im upgrading from 4.0.9 to 4.1.7 this weekend and I want to cut down upgrade (log conversion) time.thanks!

choff123 by L3 Networker
  • 3222 Views
  • 2 replies
  • 0 Likes

Resolved! Difference between Address groups and regions ?

I'm trying to find more details about the differences between address groups and regions.I added some regions to get a better reporting when I include src and dst countries.Initially I made a mistake of naming a region the same as an existing address group. I couldn't delete it, got the error message that this object is used in a rule.I know tha...

AndreasB by L2 Linker
  • 4598 Views
  • 3 replies
  • 0 Likes

Resolved! SQL Injection Lilupophilupop (Part 2)

Hi, recently a famous SQL Injection has started up once more.Will there be a vulnerability signature update which includes this new version of the Lilupophilupop SQL Injection code?More information can be found at ISC Diary | SQL Injection Lilupophilupop style, Part 2-Dan

dciccone by Not applicable
  • 4090 Views
  • 3 replies
  • 0 Likes

Resolved! system logs

Can anyone tell me what is going on in this log? It doesn't look like the RDC brute force attacks that i see all the time

Bagar390 by Not applicable
  • 2807 Views
  • 2 replies
  • 0 Likes

Resolved! Track IP

Hi all,I have a setup with two ISP's where one is active and the other is redundant sitting in a VR. The routing and failover works fine but only if my actual link goes down on my main ISP which will pull the static route. Is there a way to do a track IP type command in order to check for upstream failures of the ISP.Thanks!

Resolved! Device Upgrade 2020 to 5000

Hi, We are planning to upgrade PAN 2020 series to 5020 or 5050. I am wondering if we can simply restore the backup of a 2020 on 5020 and everything should work fine. We are running software version 4.1.7. Currently we are running with active/standby pair of 2020 and we have two vwire, two HA and one captive portal interface on each box. Thanks, ...

ahmedf by Not applicable
  • 3711 Views
  • 4 replies
  • 0 Likes

Resolved! SSH Config

I need to allow a one time SSH connection from the Internet to my LAN for the configuration of a device. So far I have created an SSH service and security policy, allowing any device to connect to the external I.P. address of my PAN. I have also created a NAT rule pointing my Internet facing I.P. address to the devices' I.P. address. When I try ...

Custom Gmail Signature

DearsI have followed the tutorial below to create a custom signature in order to differentiate personnal gmail accounts to our corporate gmail.https://live.paloaltonetworks.com/docs/DOC-1494My problem is my domain is like domain.com.brIn the tutorial example they said for domain loggedoff.org context: http-req-url-pathvalue: /a/loggedoff\.orgis ...

realtime bandwidth graph for interfaces

I'm looking for realtime graphing of bandwidth going through the interfaces.Compareable to QOS graphing, see attached screenshot. But instead of divided per QOS class, divided per interface.Is it currently possible ?

dieter_b by L4 Transporter
  • 4803 Views
  • 2 replies
  • 0 Likes

Resolved! SSH decryption policy

Hi All,We have recently deployed PA devices in our network as IPS. We have configured SSH proxy and provide an exception with negate policy for the hosts. I have a basic question regarding decryption rule. I am assuming all rules work like firewalls with src zone + hosts (if any) + dst zone + dst hosts (if any) and services. Is it true for decry...

  • 24379 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks