This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4117 Views
  • 0 replies
  • 0 Likes

VLAN's with Palo Alto - Primer/Tutorial?

One of our switches has a couple of untagged connections into our PAN.Each connection is configured on the PAN as a regular L3 interface with an IP address assigned and the interface is in the appropriate zone.I'm interested in reclaiming one of the NICs on the PAN so it would be nice to be able to run a trunk from the switch to the PAN.Where I'...

FIREWALL & PANORAMA

HI.I want to know more about panorama.So my dubt about that.I have panorama registered on my PAN firewall.IF my panorama stop of work , can i manage my firewall directly on my WEBGUI on firewall ?Best Regards Thiago Lima.

Thiago by L3 Networker
  • 2173 Views
  • 1 replies
  • 0 Likes

Blocking Chat roulette type sites

I would like to block all chat roulette type sites. Omegle, chatroulette, chatrandom etc. Unless I am missing something it is not as simple as it should/could be. They don;t seem to be "applications" and there is not a URL category.Any suggestions? One only has to look at a couple of these "random chat sites" to realize why they should be bl...

BobW by L4 Transporter
  • 13678 Views
  • 6 replies
  • 0 Likes

Discard candidate?

Hello.I'm new in PANTo discard the candidate configuration changes, is it the same "Revert to running config" and "Load named config snapshot runningconfig.xml"?ThanksLuis

lmlopez by L0 Member
  • 3302 Views
  • 3 replies
  • 0 Likes

LDAP User Group Issue

All,We are trying to start building URL filtering. I'm noticing that when I try and set groups in the "Group Include List" it stops at a certain letter and just gives me the "more" option but I can never finish populating the list.Any thoughts?

mrsold by Not applicable
  • 4511 Views
  • 4 replies
  • 0 Likes

Resolved! Google Translate

Is there any update on the issue discussed here - https://live.paloaltonetworks.com/message/7468as mentioned in that thread, if you allow translation you can access sites in blocked categories. This is despite Google including the original URL in the translated URL. IMO the PAN firewall should be able to parse out any additional domains in a U...

4.1.5 withdrawn?

has 4.1.5 been withdrawn - I don't see it on the download page any longer though 4.1.4 and 4.1.6 are there.if so, why?

Submitting Suggestions

While creating some File Blocking Profile, I discovered a particular file type I wanted to block was not available. After searching the KnowledgePoint, I came to the realization, that we can't simply add a file type. Other discussions, pertaining to the same topic recommended submitting a suggestion for future release. However, I can't seem t...

TLC_IT by L0 Member
  • 2432 Views
  • 1 replies
  • 0 Likes

tcp_drop_out_of_wnd

Hi,on PanOS 4.0 I have to disable "tcp_drop_out_of_wnd" check with this command :>configuration>set deviceconfig setting tcp drop-out-of-wnd no>commitHow to disable "tcp_drop_out_of_wnd" check on PanOS 4.1 (4.1.5) ??Thanks,Regards.

TCP Timeouts ... Again

I have a bunch of connection, 12 to be exact. From a webserver to a Oracle DB Server. They timeout every 2 hours. They pass through a Cisco ASA and a PA 4020. I've created and override rule with a custom app with no timeout. (see attached)I'm in the position where I need to prove this is not the Palo Alto killing the connection. I'm sure it's n...

jickfoo by Not applicable
  • 10337 Views
  • 7 replies
  • 0 Likes

Help - Userid Responsiveness

We're at the point where we want to apply URL Filtering policies based on userid. This means its very important that Pan-Agent is accurately identifying users. We did a test and added a user to a monitored group. The policy started working properly. We took him out and it took hours before the policy reverted properly.We only have 1 PanAgent dep...

jhickey by L3 Networker
  • 2620 Views
  • 2 replies
  • 0 Likes

Resolved! How to debug commit?

Hi folks,does anybody know how to debug the failing commits on a Palo Alto Firewall? The onliest what i can see is "failure on pushing config to device".user@pan> show jobs allEnqueued ID Type Status Result Completed --------------------------------------------------------------------------2012/04/27 15:12:4...

mhuels by L3 Networker
  • 12487 Views
  • 10 replies
  • 0 Likes

Resolved! redhat ssl-vpn

Is there away to get netconnect to work with redhat?Looking to use it with RHEL 5/6 servers.If so does anyone have a write-up?The client is java based, so I would guess that it should not be hard to get this integrated.

erantanen by Not applicable
  • 2533 Views
  • 1 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks