This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4112 Views
  • 0 replies
  • 0 Likes

Resolved! Logs retained after vSys deleted?

If a vSys is deleted, i'm assuming (dangerous i know), that the logs related to that vSys are deleted off of the device.Is this a valid assumption?What about any logging forwarded to Panorama, are they deleted or retained?If not a valid assumption, is there a process to manually clean out these logs?Thanks,kurt

u11756 by Not applicable
  • 2742 Views
  • 2 replies
  • 0 Likes

CNSE Review Guide

Has anyone have any idea what kind of topic you will be asked? Want to start reviewing for this certification.thanks

friento by L3 Networker
  • 5878 Views
  • 8 replies
  • 0 Likes

Palo and TMG

HelloI have a tmg box at the moment that publishes our web sites, can i still leave that still setup and point the palo at the tmg for the web sites we publish? or how do i do that with the palo in place.Mark

Office 365 App Detection

Hi, I was wondering if there are any plans or a method how to detect Office 365 traffic?We have no URL scanning license on the box, so we depend on the App detection method.Because all traffic is a SSL connection, PaloAlto reports the traffic as general SSL Application.Many thanks for any suggestion about my issue.

u2343 by Not applicable
  • 2742 Views
  • 1 replies
  • 0 Likes

No IP addresses on HA interfaces

Hi all,I'm working for a new company building out several new data centers. They got a jump on getting things up and running before hiring their own resource and had a consultant setup a couple of pairs of PA-2050s. They are active/passive. The consultant set up the HA interfaces with no IP addresses. Is this an OK configuration? They seem happy...

GV27 by L1 Bithead
  • 2207 Views
  • 1 replies
  • 0 Likes

commit is always there

I have noticed that whenever I log into my firewall now the commit option is always available. I haven't made changes yet I can click commit. Whats up with that? I would expect it to be grayed out like right after I do the commit.

Dropbox - allow web app but block client?

Our IT department has decided to allow Dropbox, but only the web interface. Installed client traffic should still be blocked.Since the only identified app in Palo Alto is dropbox, we cannot block that app.Is there any suggestion on how can I do this? I've played around with SSL decryption but I get conflicting results.

oaus by L0 Member
  • 11278 Views
  • 8 replies
  • 0 Likes

Vulnerability Protection - BlockIP

I have configured a vulnerability protection profile to blacklist the ip addresses of attackers for all brute force login attempts with the signatures provided in the threat database. The profile works very well. However, i would now like to see the list of currently blacklisted ip addresses. I know it only blacklists for up to an hour, but th...

Resolved! Threath Monitor / App Monitor

Hi all,Does anybody already succeed to auto send either Threat or Network monitor by email ?Or able to export ? or re-create ?Thanks for your hlepVincent

VinceM by L5 Sessionator
  • 5855 Views
  • 4 replies
  • 0 Likes

Resolved! Problems with user mapping

Hello.I have a little problem with user-ip mapping i have instaled PAN Agent on a server configured it and started from what i can see it reads security logs and from there maps ip to a user. Those logs presents users as shortdomainname\user. The problem is when device have to compare it to a LDAP mapped groups where users are identified as long...

Bigtom by L0 Member
  • 3680 Views
  • 2 replies
  • 0 Likes

Updated custom response page doesn't show

Hi allFirst post, better behave I've been fiddling around with the antivirus block page on our PA5050-boxes with panos 4.1.4 but for some reason the page I upload to the boxes won't show. It did change once (uncertain why), but if I now try to either restore the default or upload an updated block page, nothing happens, the box keep displaying t...

secomike by Not applicable
  • 5364 Views
  • 7 replies
  • 0 Likes

User-ID Agent odd outbound traffic patterns

All,We've noticed some strange traffic patterns coming from our Agent boxes and am curious why, and if others are seeing something similar... ?Looking in our Monitoring logs I see our two Agents sending data to:14.1.1.1914.2.1.1914.2.1.1Via SMB ports 135,137,139This appears to be something out of AustraliaWe're blocking this communication, and t...

steveo by L3 Networker
  • 4243 Views
  • 4 replies
  • 1 Likes

Negative experience from PA/PAN?

Of course there are no such thing as bugfree soft/hardware (perhaps with the exeption for that kernel which Gernot Heiser at Open Kernel Labs is involved in (http://www.etn.se/images/expert/Gernot_Heiser_OK_Labs.pdf) which is mathematical proven to be bugfree 😉 which then comes down to how the supportorganisation works to handle the customers a...

mikand by L6 Presenter
  • 6559 Views
  • 7 replies
  • 0 Likes

Skype requires 'unknown-tcp'

Why is 'unknown-tcp' an application dependency of Skype, is it possible to remove a dependency from a pre-defined application. Or do we have to setup an application overide?I don't really want to allow unknown-tcp 'apps' just to allow someone to use Skype. And if something is unknown how does the Firewall match on something which is unknown?...

JohnP by L1 Bithead
  • 7264 Views
  • 6 replies
  • 0 Likes
  • 24333 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks