General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 271 Views
  • 0 replies
  • 1 Likes

Resolved! TAP mode and user ID

Hello all.

quick question.

during the demo(TAP mode), customer want to map IP to user id.

in the TAP mode,   can I integrate w/ LDAP to retrive the user id?

in the doc-1445. transparent authentication only support AD. and interactive authentication can s

...

willstech by L3 Networker
  • 2870 Views
  • 2 replies
  • 0 Likes

SSL VPN over Dial-Up Speeds

YES, you read it right!  DIAL-UP speeds!  Unfortunantly we have some users that have old 1x and iDEN air cards that are probably slower than some Dial-Up speeds.  It is what it is I suppose.  Our old IPSEC vpn (Check Point) client really didn't compl

...

dshue by L2 Linker
  • 2542 Views
  • 2 replies
  • 0 Likes

Captive portal users not in groups?

We are using the UserID agents on our servers for ID and groups.  Users that login via our AD domain on bound machines are correctly identified and we can apply policies based on group membership.  That all works very nicely.  We just put captive por

...

Viewing Rules in the Policy

Hi - we use Panorama and 4050s all running 4.0.5. We have a lot of rules on this firewall for one reason or another (it's a port from Checkpoint of an internal datacentre firewall where there are lots of non-web applications etc). Anyway, I can find

...

fmd by L3 Networker
  • 3236 Views
  • 6 replies
  • 0 Likes

Resolved! Error Installing Service: PanAgent

Hi all,

user - better: usergroups - identification is a major point in our evaluation of the PAN-Firewall.

Now when trying to install "PanAgent-3.1.2" on my windows7 laptop the software itself is installed, but the

service failes: "Error Installing Serv

...

Gunther by Not applicable
  • 3559 Views
  • 5 replies
  • 0 Likes

Resolved! SNMP RFC 1213 (MIB-II) and RFC 2664 (EtherLike-MIB)

Hardware: PA-500

Firmware: 4.0.2

Page 17 of the PAN 4.0 Admin Guide says:

"Simple Network Management Protocol (SNMP)—Supports RFC 1213 (MIB-II) and RFC
2665 (Ethernet interfaces) for remote monitoring, and generates SNMP traps for one or
more trap sinks (

...

Upgrade issues

Hello,

I have a PA-500 device running on PanOS 3.1.4.  I try to update it to last release PanOS 4.0.2. (Direct upgrade allowed following the RN)

I have no Internet conection yet, also I would like to install it from a local file.

I click "Upload", locat

...

ldormond by L3 Networker
  • 5356 Views
  • 8 replies
  • 0 Likes

decrypted SSL traffic over Proxy since 3.1.10 slow

Hi folks,

since upgrading to 3.1.10 is the ssl traffic (with decryption on the firewall) by squid proxy significant slower as without using a proxy. Not on all websites, but on some the browser needs up to 1 Minute to display the first page.

I tried se

...

mhuels by L3 Networker
  • 1583 Views
  • 1 replies
  • 0 Likes

Resolved! Creating Reports based on OU

Hello,

I need to create custum raports regarding user web activities based on OU from our AD. Is it possible? And if yes how to do it?

I was trying to create custum raport and then set user.src in our_ad/group, but it doesn't seems to work.

Regards,

Piot

...

Resolved! User Report to create custom logo

Hi,

When I query a custom report, I get Palo Alto log on all pages, I need to replace this logo by a custom company logo.

Kindly advise how I can change this logo, so that the final PDF report generates the company specific custom logo.

Rgds,

Tauseef Ahm

...

ta185020 by Not applicable
  • 1953 Views
  • 1 replies
  • 0 Likes

Commit Failed: PAN-OS 3.1.5

Hi All,

Have a PA-500 which is failing on a commit with the following:

OperationCommitStatusCompletedResultFailedDetails 
  • device: No rule entry defined
  • Commit failed

How can I troubleshoot this further, I am not sure what it would be refering to.

Thanks

Ma

...

Allowing the PAN to respond to tracert

I'm able to ping the interface and don't see any denies in the log, but when I traceroute through the PA-500 it does not respond.

The rest of the hops do respond, just not the PAN itself.

bjdraw by Not applicable
  • 7828 Views
  • 5 replies
  • 0 Likes

User ID Agent

Hello-  I am running PAN OS version 3.1.7.  I am running a User ID agent on an application server within the domain but I am not getting complete user ID information in my traffic/threat logs.  We have just upgraded to Windows 2008 R2 64 bit domain c

...

  • 23638 Posts
  • 107 Subscriptions
Top Liked Authors
Labels