This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! Captive Portal logon - Is it possible to disallow a user logging on from multiple devices?

Hello all,We are in the process of setting up a Captive Portal. All works fine. When a user is member of a defined AD security group, she can log on to the captive portal on a device (Mac, PC, iPhone, Android, etc), which opens the way to be able to browse the internet from that device.The user can log on to various machines at the same time, wi...

bsanders by L2 Linker
  • 4396 Views
  • 3 replies
  • 0 Likes

Monitoring throughput

Hi @all,in the cli I have an option to monitor the throughput via "show system statistics". Is there a way to monitor the firewallthroughput from external devices via snmp?Robert

how can i block site by category and user group

Hi there,I have some questions regarding on how to block URL category and by user group.the box is PA-2020 and when I block the social-networking with the source user is by group it wont work.When i look on the CLI the user group is <XXXX>.org but on the gui of the paloalto under user it only appears different group YYYY.orgbox configurati...

aldwine by Not applicable
  • 1980 Views
  • 1 replies
  • 0 Likes

Resolved! GlobalProtect Client connecting issue with Mountain Lion

We have updated some Macbooks to Mountain Lion and the connecting process take's about 10 Minutes now. Is there a workaround or will there be a fixed client when PAN-OS 4.1.7 will be released?We have a PA-500 HA Cluster using PAN-OS 4.1.6 and GlobalProtect client 1.1.5-5.

dkngroup by L0 Member
  • 4902 Views
  • 4 replies
  • 0 Likes

Resolved! UserID Agent - Required User Rights

HiI'm in the process of implementing the UserID Agent into a Windows 2008 DomainMy goal is to have a single user in the AD for all features required by PaloAlto.So I created a "panagent" user and added it to the "EventLog Readers" group, so it has access to the event logsI the configured the Agent to use this user in it's service settings to sta...

u13550 by L3 Networker
  • 8270 Views
  • 2 replies
  • 1 Likes

GlobalProtect without license on 4.1.1

I have a problem with global protect without license i have configured it as in tech notes says, but when i commit i get the following message.•Warning: No valid GlobalProtect portal license!(Module: useridd)When i launch Global Protect Client it not connets.In GlobalProtect Client I get the following Logs.(T4988) 01/13/12 15:36:45:998 Error(808...

LDAP group based rules versus Policy based URL filters

I am coming from an M86 (8E6) R3000 and Surfcontrol install to the Palo Alto URL filtering. I have multiple AD groups in my AD that are specific to URL filtering on the M86 R3000.I am re-using those groups on the Palo Alto to recreate my functionality... One group is "Blocked Internet Users." I have LDAP bound to my PA through my GC servers...

EdwinD by L3 Networker
  • 3810 Views
  • 2 replies
  • 0 Likes

Outlook Anywhere

we recently moved to Palo Alto for our firwall needs. Is it possible to get Microsoft's Outlook Aynwhere to work with the Palo Alto firewall?Thanks

Resolved! Threat Protection

I hope you may be able to answer a couple of quick questions for me as i am planning on switching Threat Protection on in the next few weeks.1. When we turn on Threat Protection i remember you saying that the throughput for the dataplane is cut in half, Is there any way of monitoring the throughput of the dataplane?2. When Threat protection ...

BBHLTD by Not applicable
  • 2511 Views
  • 1 replies
  • 0 Likes

Resolved! Brute Force Attemps - How many attempts exactly?

If you look in the Threat Vault you can see there are many different brute force sigs listed (ssh, rdp, postgres, smb, etc..).My issue is the descriptions dont mention how many attempts it takes to trigger this alert? is it 5 or 50 or 5000? 5 im not really worried, 50 attempts and I'm definately going to do some digging. Am I correct that this i...

choff123 by L3 Networker
  • 3638 Views
  • 2 replies
  • 0 Likes

Resolved! Strange Sharepoint upload problem.

Hi,I have a bit of a strange one hence the strange question.I have a user who wants to upload files to a company's sharepoint website. Now as my rules stand currently they are not allowed to upload or use certain web applications.I tried making a custom rule just for testing purposes on a machine with the same ip range as the user in question an...

Resolved! Problem installing PAN User-ID agent V 4

We currently have User ID agent 3.1.2 installed on my 2 domain controllers and I am trying to upgrade them to V 4.1.4-3. Every time I try to install it I get it failing to install. I get the errors below in the logs.07/23/12 10:57:55:960[ Info 1775]: UA: service is already stopped. 07/23/12 10:57:56:038[Error 1374]: Start service fails with erro...

is it possible to export firewall rule only??

Hi all.Is it possible to export security policy with CSV, PDF or txt format?? I can’t find any export menu only for firewall rule.If it is possible, is it able to modify that exported firewall rule??And then is it possible to import modified firewall rule to PA device?? Customer wants to review their firewall rule with readable file format.Of co...

willstech by L3 Networker
  • 13570 Views
  • 19 replies
  • 0 Likes

Lot of 'insufficient-data'

Hello,We see a lot of 'insufficient-data' traffic on our firewall and we couldn't find any reason so far. Does anyone have a good idea on how we can troubleshoot the issue?If we click on the insufficient-data bar we get redirected to the ACC but it doesn't show much there...Thanks,Oliver

oschuler by L4 Transporter
  • 8817 Views
  • 6 replies
  • 0 Likes
  • 24390 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks