General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! IPSEC commit error "syntax error [peers_sa_ipaddr]" in module ikemgr?

When adding additional VPN tunnels, I get this failure to commit:> show jobs id 81Enqueued ID Type Status Result Completed--------------------------------------------------------------------------2012/08/22 17:59:43 81 Commit FIN FAIL 18:00:49Warnings:Details:Config commit phase 1 ...

snocc by L0 Member
  • 3552 Views
  • 1 replies
  • 0 Likes

Resolved! seek linux script to collect PA CLI: debug log-receiver statistics

Hi,I seek a script (Linux/window/or else) to collect information on PA: > debug log-receiver statisticsSo a script that :- connect to the appliance & loggin automaticly- pass the command> debug log-receiver statistics- optional : get only the lines begin by : "Log written rate:"- or get all the return of the command INTO a file.I ask t...

URL Redirection, or forwarding

Hi,We would like to redirect our internal request from www.google.com to www.google.com/ncr. Currently, all our Google search sites are redirected to Google Philippines, and besides our local staff, nobody speaks or reads Tagalog. How can we add a redirection for specific page requests?Thanks,Alexande

PA2020 Web monitoring

Quick question that may have an even quicker answer. Is there any functionality to monitor users web browsing history through a Palo Alto 2020 box?And if the answer is yes then is there any functionality to perform traffic shaping? And I don't just mean block/allow, but I mean throlling if say for instance it is a youtube video or hotmail, then ...

Global Protect impacting PGP Single Sign-on

Hello,Just installed Global Protect 1.1.6 for first time and it seems to be interfering with our companies PGP Single Sign-on. Initial authentication to the System PGP works fine. Normally the system then takes you to your normal windows screen and startup begins. Since the install of the GP you have to authenticate at the normal WINDOWS login...

Resolved! PAN 2050 Front Panel Alarm

Hello,We have a PAN 2050 that the front panel alarm is red, I wantto know how can I determine which Hardware is in failure state ? from CLI orweb interface?ThanksBelal Sadozai

BSadozai by L2 Linker
  • 2877 Views
  • 2 replies
  • 0 Likes

Resolved! Performance Impact when installing new content?

Hi all,We're currently deploying a PA-2050 firewall in HA mode in our headquarters. We plan to protect all data lines entering or leaving the HQ through the new firewall - including our MPLS WAN infrastructure where we run a lot of time-sensitive Citrix applications (actually our world-wide users turned out to have an advanced sensitivity for th...

oschuler by L4 Transporter
  • 4769 Views
  • 5 replies
  • 0 Likes

Resolved! In captive portal, not asking for authentication for https traffic.

Hi All,Captive portal is working fine for http traffic( asking for authentication ), But for https traffic it is not asking for the authentication. For example if user types facebook.com, asking authentication if types https://facebook.com then it is allowing without asking for authentication. I have added both http and https services in captive...

Gururaj by L4 Transporter
  • 5857 Views
  • 6 replies
  • 0 Likes

The publisher could not be verified

I noticed that when I download programs from the Internet with Decryption turned on, the downloaded file says "The publisher could not be verified", whereas if I grab the same file off a non-decrypted connection I do not get this same message.How do I resolve this?

EdwinD by L3 Networker
  • 1979 Views
  • 1 replies
  • 0 Likes

Blocking Application Filters

I've browsed through these forums regarding the best way to block applications. I've saw the posts of folks blocking applications by app filter. I have AD integrated AD groups. These groups tie to individual Palo Alto security rules that allow any port any service as the destination, and then use group profiles to block specific categories.I a...

EdwinD by L3 Networker
  • 2320 Views
  • 1 replies
  • 0 Likes

fqdn - policies - wildcard

Hi,i want to place a policy with fqdn entrys completed with wildcards.e.g.Our PCs have names like this:LABPC01, LABPC02, LABPC03Now i want to deny the internet traffic for every PC with the name LABPC*But i also want to allow it to a special list of pcs.I wanted to use a policy with fqdn entrys - but i'm not allowed.When i want to do an address ...

axel5le by Not applicable
  • 3367 Views
  • 1 replies
  • 0 Likes

Resolved! Eicar Testvirus will not be recognized

On the website EICAT TESTVIRUS resides a lot of different kinds of eicar. Most of them will not be recognized by the Palo Alto Networks AV-Engine. The behaviour of the firewall is thereby a bit confusing. It seems: if you click on the links more then one time, you can download the virus on the second or third instance. Especially the PDF-Eicar ...

mhuels by L3 Networker
  • 11628 Views
  • 5 replies
  • 0 Likes
  • 24403 Posts
  • 123 Subscriptions
Top Solution Authors
Labels