General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 594 Views
  • 0 replies
  • 0 Likes

Resolved! Blocked traffic after Content Upgrade 289

World of Palo,

We have just seen an increase in blocked traffic (thus broken apps) after upgrading app content from V288 to V289.  The funy thing is its all low risk Microsoft LAN stuff.  Does anyone know if PAN have changed the action and not the sig

...

djmac by Not applicable
  • 7599 Views
  • 1 replies
  • 0 Likes

When does a rule go unused

I have a number of rules that are showing unused.  I've read the threads on the counter resets etc. but I'm still looking for a definitive answer - hence my post.  When does a rule become marked as unsed?  Is it after a month, 2 months, a year, since

...

Blocked Applications cause Reset, not Block Page

On our firewall users are getting 'Connection Reset' errors in their web browsers rather than the 'Blocked Application' page.

While the end result is the same, it makes debugging connection issues a lot harder!  Am I doing anything wrong - an applicat

...

apackard by L4 Transporter
  • 2922 Views
  • 1 replies
  • 1 Likes

VPN and client proxy

Hi

Does anyone know how to force PC clients that have authenticated to the PA using Global Protect (non licenced version) to use a particular proxy server.

Thanks

Rod

djrodb by L3 Networker
  • 2005 Views
  • 1 replies
  • 0 Likes

Resolved! Local DB User Name Character Restrictions

Hi All,

I noticed that when creating a Local DB User you are not allowed to use a "." (period) in the name, have have not had a chance to test this but does this extend to user name in AD or similar external databases or is this just a limitation of t

...

Thinking of upgrading to 4.1.0

We have two 2050's in an active/passive cluster running 4.0.5.  We are looking to upgrade to 4.1.0.  Had anyone had any negative experience with this version - particularly related to the SSL-VPN changes or User-ID functionality?  I've heard a few th

...

bvest by Not applicable
  • 6625 Views
  • 13 replies
  • 0 Likes

Resolved! Wildfire

Hi I've a couple of question re wildfire.

1. I've configured my device to inspect .exe and .dll files and selected the aciton continue and forward under the file blocking policy. When I try to download a .exe im promoted with the message that the file

...

djrodb by L3 Networker
  • 5219 Views
  • 5 replies
  • 1 Likes

Resolved! View Log Size

Is there a way to determine the space size of log files? What is used and what is available?

PAN OS 4.0.9

PAN 4.1.1 Global Protect client and LDAP

I am running 4.1.1 and I am having issues authenticating Global Protect 1.1.1 clients via AD. I know my LDAP server settings are correct as I can browse the workgroups in User-ID Group Mappings. Howver I can't browse these in the 'allow-list' in the

...

PA 5050 Virtual System

I am configuring PA 5050 firewall. I have to configure Virtaul systems in this Firewall. Anyone can guide me for this configuration.

itsecll by L1 Bithead
  • 2665 Views
  • 3 replies
  • 0 Likes

user-identification for VLAN Traffic

Hi Guys,


I am just wondering if any one could help me out on this as I am slightly lost creating and troubleshooting for the following issue:


It has been noticed that not all traffic had a user-id and it seems that any traffic originating from a VLAN

...

Quarantine functions

I have  a customer who is familiar with ISS Proventias.  This customer is trying to match capabilities of the ISS to PA.   I have answered all his questiosn/ matchups with IPS rule to a Vulnerability Protection policy+ Malware/Spyware policy, but I a

...

cwilliams by Not applicable
  • 2134 Views
  • 2 replies
  • 0 Likes

VPN tunnel to Cisco ASA via GUI?

I need to setup a VPN tunnel with a Cisco device which we don't control or have any access to.

The intention is that I can allow a group of IP addresses on our LAN to have access to resources on the other side of the tunnel.

These are the settings that

...

  • 23930 Posts
  • 113 Subscriptions
Labels