Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 131 Views
  • 0 replies
  • 0 Likes

QOS Interfaces

Hi,

I was wondering if anyone can tell me if there is a limit to the number of 'Clear Text Traffic - to QOS Profile' mappings you can create under the advanced options within a new QOS Interface? PANOS 4.0.2.

I want to setup a couple of QOS profiles, t

...

brownn by L0 Member
  • 4685 Views
  • 6 replies
  • 0 Likes

HA - Link Monitoring

Hi,

I´m testing the HA configuration of our firewalls and experience unexpected behavior.

If both HA members experience link down errors, we want the appliance with the most active links to be active.

In the "PAN-OS HA - Understanding PAN-OS HA states,

...

asieber by Not applicable
  • 3936 Views
  • 4 replies
  • 0 Likes

Applipedia - search by port number?

Does anyone know if it's possible to search for an application by port number instead of name, to see if you can find a match?

I have some connections using an application that shows a known - and recognised - PORT number when I run a packet capture,

...

dagibbs by L4 Transporter
  • 2696 Views
  • 3 replies
  • 0 Likes

FTP over HTTP

Hello,

I need to block FTP communication - however, I do not want to block downloads that come through a browser - which can utilizes FTP over HTTP.  Would this configuration theoretically work? Curious if anyone has made that work - before I get into

...

CRHC by L4 Transporter
  • 6964 Views
  • 8 replies
  • 0 Likes

Reporting for management..

I'm having some troubles coming up with a clean report that will tell my employer the highest number of concurrent users on the PAN each day...  Anybody write one?  Trying to filter out the nonsense seems to be the problem.  I just need to see "at X

...

kazjak by Not applicable
  • 1663 Views
  • 1 replies
  • 0 Likes

Resolved! Firewall Roll back interface lights go away

Hi All;  I have a pretty big problem with a PA500.

1) Commit times are 4-5 minutes. Though other PA500s we have commit in roughly 30 seconds to a minute. Could this be a hardware problem? It's only running demo traffic.

2) When trying to roll back from

...

amansour by L4 Transporter
  • 2321 Views
  • 2 replies
  • 0 Likes

Captive Portal as a AUP accept page for internet access?

Hi All,

Could I use the Captive Portal, as a way of displaying an Acceptable Use Policy ( AUP ) that users must accept, before gaining

internet access?

To make this as seemless as possible, is it also possible to not have to require the entering of user

...

KatanaNZ by L3 Networker
  • 2550 Views
  • 2 replies
  • 0 Likes

Resolved! Extract SSL VPN MSI in 4.0

I see there's a document for extracting the SSL VPN MSI installer for 3.1 and earlier code: https://live.paloaltonetworks.com/docs/DOC-1398

Is the procedure the same for 4.0?

pflanagan by Not applicable
  • 1988 Views
  • 1 replies
  • 0 Likes

Resolved! Signature Review/Modification

I tried searching through the discussions but didn't see anything regarding this. Is it possible to see what the actual threats are matching on? Essentially what their signature is so I can make a more accurate analysis of the validity. For example,

...

No user names in the PA appliance

Still no user names in the PA appliance.


from PAN-Agent debug:

[skipped]

2011 09 21 16:55:16, AddEntryUnknownTableSafe 192.168.207.100

2011 09 21 16:55:16, User Enumeration, IP: 192.168.207.100, Username: MERVIN$, Domain: companyname

2011 09 21 16:55:16,

...

goldandy by L2 Linker
  • 2120 Views
  • 2 replies
  • 0 Likes

Resolved! Generating reports with user display name ..

          Hi ,

currently am using the pan-agent for integrating with active-directory and the integration is fine, the issue is it only displays the username NOT the display name where it could affect the reports .

for example username : sales_1 --> di

...

Multiple External Interfaces

Hello,

I have a pan 4020 that will be replacing multiple firewalls.  The internet side of the firewall has a /25 network.  I have a corporate network that has an external interface of x.x.x.2/25 in the Internet zone and a guest wireless network that h

...

Logging to Panorama over a WAN Link

We have a remote location that connects back to our corporate office via a WAN Link.  At this remote site, we have two clusters of Palo Alto Firewalls that are pretty heavily utilized and produce around 1+ GB of log per day.  We are preparing to depl

...

Milamber by L1 Bithead
  • 3399 Views
  • 6 replies
  • 0 Likes
  • 23589 Posts
  • 107 Subscriptions
Labels