General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

SSL VPN on Mac OS X running in 64-bit mode?

Hi,

Some of our clients are running OS X in 64-bit mode and when they launch the client they get a pop-up telling that its not supported on a 64-bit kernel.

Is this expected behaviour? Will there be a version that supports 64-bit kernel?

Thanks!

Resolved! URL logs

Is it possible to see url logs without url filtering license? I'm not talking about profiles and blocking some categories, just to see what urls users visited.

Regards!

mkopcic by L2 Linker
  • 1617 Views
  • 1 replies
  • 0 Likes

URL Filtering allow

Hi,

I would like to know if it's possible to have the allow-list URL in the log.

As we have to do monitoring not only on blocked URL but also in allowed.

Brgds, Lionel

Anyplace remote control to be stopped

Hi,

A remote control online solution called Anyplace Control(anyplace-control.com), and this needs to be stopped.
Palo Alto shows this as "unknown-tcp", and as such it may be disastrous to stop all unknown-tcp.

I need this to be blocked as an applicatio

...

ta185020 by Not applicable
  • 1298 Views
  • 2 replies
  • 0 Likes

Custom Report Oddity in PanOS 4.0.1

I have the following report configured and it is checked "scheduled" in Panorama

Soft Block Report {

  type {

    panorama-url {

      group-by day-of-receive_time;

      aggregate-by [ risk-of-app action category srcuser src misc ];

      values [ repeatc

...

rroberts by Not applicable
  • 1214 Views
  • 1 replies
  • 0 Likes

Cisco CAPWAP

We recently brought in some new Cisco WLC's and AP's and noticed that they use LWAPP.  Originally my PAN saw this traffic as an app called Xunlei...which was being blocked.  After finding and creating a special category for this custom app...it start

...

Panorama Management of CLI/SSH Admins

Panorama allows central management of Web UI users, but what about SSH/CLI users?  Is there any way use Panorama as a CLI proxy to access managed devices in a similar manner?  It seems to me that the only way to manage CLI users is via a local accoun

...

mgentile by L2 Linker
  • 1373 Views
  • 1 replies
  • 0 Likes

PAN agent over WAN issue

Hi,

Just had another issue to discuss about WAN Pan Agent, if you do have time, please go through.

Local LAN PAN agent is configured for 10.0.0.0/8 network

WAN PAN agent is configured for site 1 network 10.12.111.x/24

But I have users from Site to with n

...

ta185020 by Not applicable
  • 1234 Views
  • 1 replies
  • 0 Likes

i'd like to know an average disk usage for PA appliance.

Hi all.

somebody who has a datasheet of disk usage for every single appliance including PA 5000 series??

Of course I know it is impossible to calculate correctly because it is depend on customer’s networks environment.

What I want to know is that just

...

willstech by L3 Networker
  • 1545 Views
  • 2 replies
  • 0 Likes

Resolved! Cannot ping L3 interface except mgmt?

Hi all,

I have a classic setup... mgmt port, one outside, one DMZ and one inside L3 ports, NAT policy defined and a bunch of security rules.

Outside, Inside and DMZ ports all have their IP addresses defined, but I cannot ping them. Not even inside port

...

Active Active HA on PAN 4.x

PAN 4.x is supporting Active-Active High availability.

Clearly, most firewalls also support Active-Active HA but, they need Layer-4 switch to get full performance.

In other words, most of firewalls also support Active-Active, but it is in name only in

...

willstech by L3 Networker
  • 3319 Views
  • 6 replies
  • 0 Likes