General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Youtube video categorization.

Hi All,

Can PAN firewall do some like a apps categories?

I mean something like video categories in youtube apps. User can view certain of video but cant view other type of video ( example : computer categories videos : allow , sports categories videos

...

samsk by Not applicable
  • 1345 Views
  • 1 replies
  • 0 Likes

Resolved! Policy based forwarding for traffic filtering

I'm trying to set up a PBF rule to take all my inside traffic, filter it through a security appliance, and then continue out to the Internet.

Without the rule applied, traffic works fine.  I can hit the Internet and all is well.  With the rule enabled

...

nwallette by Not applicable
  • 4513 Views
  • 8 replies
  • 0 Likes

slow response UI on PA 4.0.x

Hi all..

UI of PAN 4.x seems to very slow compared than previous version that PAN 3.1.x.
One of prospective customer has complained about poor response.

It need 6~8 secs to when move between tabs.

And when he click another menu within same tab, it also

...

willstech by L3 Networker
  • 2246 Views
  • 3 replies
  • 0 Likes

Resolved! Delete logs and ACC monitor data

After testing out PA we wanted to remove all testing logs and data that was produced during the labbing phase.  What would be the CLI command to delete all the data without having to do a private-data-reset?  Want to keep all the current settings, bu

...

AD user mis-identification issue in PAN

I have recently deployed PAN in my organisation which has 2 domains.

I have installed 2 PAN agents -- 1 for each domain and added respective DC's to their respective PAN Agent.

URL filtering is done on the basis of User ID from AD. So when a user logs

...

u6402 by Not applicable
  • 2214 Views
  • 4 replies
  • 0 Likes

PAN Agent Over WAN issues.

Hi PA Champions,

I have had issues with high b/w utilization from PA-FW to PAN Agent over WAN links.

As such best alternate was to install a PAN Agent in remote WAN Site DC's, along with the PAN Agent

that is already installed at the Head office.

But onc

...

ta185020 by Not applicable
  • 1206 Views
  • 1 replies
  • 0 Likes

Resolved! Custom Reports v4.0.1 (be1demo)

When creating a custom report and using the query builder there seems to be a problem with adding multiple values in the builder (unless I am just doing this wrong)

I am trying to create a report to show from the traffic summary log all peer-to-peer t

...

Anti-Malware Effectiveness?

Hopefully the title will generate some interest and feedback!

To keep this brief, im happy with the effectiveness of the P.A IPS, NSS labs test results proved this and well done PA, it appears to be world class.

The effectiveness of the P.A antivirus

...

Terminal Service Agent Support


Hi,


I am looking for the list of supported terminal services for the user agent.


I have the following servers:


a. 2000 Servers running Terminal Services
b. 2000 Servers running Presentation Server 4.5
c. 2008 Servers running XenApp6


I know that the Windo

...

Protocol Migration from Checkpoint

Hello,

We have some protocols defined on Checkpoint, and we are not able to traduce to PAN 4.0.

FTP_mapped is defined as Protocol 6, match SRV_REDIRECT (21,0.0.0.0,21), set r_mhandler

HTTP_mapped is defined as Protocol 6, match SRV_REDIRECT (80,0.0.0.0,

...

jvmartin by Not applicable
  • 1799 Views
  • 1 replies
  • 0 Likes

Routing Issues with Layer 3 Deployment

Hello all,

I'm having issues with internet access on different subnets. I have attached a diagram on my network. The Server VLAN has Internet access but the rest somehow are not managing, I'm seeing the traffic in the logs but nothing seems to be work

...

devere by L2 Linker
  • 6693 Views
  • 7 replies
  • 0 Likes

APP-ID for IPSec over UDP

Hello Community,

the standard IPSec APP-ID did not handle complete IPSec-NAT-Traversal (UDP 4500) ...

I've noticed that reestablishement of NAT-T is not detected successfully.

This causes problems with temporary droped IPSec-Sessions.

Any idea ?

Regards,

C

...

cmock by L1 Bithead
  • 1416 Views
  • 1 replies
  • 0 Likes

[botnet] some url filter out.

Hello all.

on the firmware 4.0.1, we have botnet monitoring function here,

but on the report, I can see some of normal url(false positive) that trigger the botnet module.

like ..

"211.234.239.48/upload/notice/polling40_v.ipml"

can you please tell me how I

...

bhlee by Not applicable
  • 2034 Views
  • 1 replies
  • 0 Likes