This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4243 Views
  • 0 replies
  • 0 Likes

Problem with MLSD command on FTP after upgrade to 4.1.0

Hi everybody,After waiting a week I upgraded one of our PA-500 boxes to software version 4.1.0.One of the services that are no longer working correctly is FTP. The MLSD command is causing an error at the client connecting to the service:Status: Resolving address of mev.blahdieblah.comStatus: Connecting to 87.249.xxx.xxx:21...Status: ...

surfright1 by Not applicable
  • 11178 Views
  • 18 replies
  • 0 Likes

Response Pages that adjusts to frames

hiis there way to get the response page to adjust it self to a frame, if you block FB-social plugins and this is just a ad on a site that is outerwise ok the block page looks wierd and the users cant read the information in that page.

u3786 by Not applicable
  • 1912 Views
  • 1 replies
  • 0 Likes

Resolved! What is flow_host_pkt_xmt Counter?

Hello All,I'm seeing this counter hit and would like to understand what it is.What is the flow_host_pkt_xmt counter?If it matters, this is under 3.1.10.Thanks,MJ

markjx by Not applicable
  • 2500 Views
  • 1 replies
  • 0 Likes

Traffic data

we are on 4.1.4, noticed some very odd traffic data from ACC.1, some internal traffic happened at 9am - 930am, PA ACC showed it happened at 3pm afternoon.2. about 35G data from one machine out to the facebook within one hour, but our connection is only 40M, shared with 300 people, I dont think it could send that kind amount data out?wondering if...

akqaking by L0 Member
  • 2219 Views
  • 2 replies
  • 0 Likes

Resolved! Question regarding SFP

Hi,I have a quick question regarding the insertion of an SFP Module into a Palo Alto Networks 5050. I have a Finisar FTLX8571D3BCL SFP module that works fine in Ether Port 1/13 (i.e I get link state). From reading the vendor documentation for this module, I am fairly certain that the module is an SFP+ module.The output of the following command...

dsulli99 by Not applicable
  • 6926 Views
  • 4 replies
  • 0 Likes

Netflow panos 4.1.0

I configured Netflow on OS 4.1.0,for testing reasing i started with 2 interfaces...but in ManageEngine NetFlow Analyzer I get 3 interfaces!?!?I tried to identify the interfaces but when I look on the traffic showing up then I'm pretty confused...the traffic showing up is not from a interface I configured for netflow.Is that possible?

gsteiner by L3 Networker
  • 5248 Views
  • 7 replies
  • 0 Likes

Resolved! DMZ network configuration

We have installed PAN-2050 in my customer site.It has been deployed with two L2 interface as vmwire.And we made one L3 vlan interface for secondary IP.There are 2 IP subnets. (192.168.10.0/24, 192.168.1.0/24)One(192.168.10.0/24) is for user.The other(192.168.1.0/24) is for DMZ server.Both IP subnet set gateway as PAN L3 vlan interface.And one VR...

sjlee by Not applicable
  • 6301 Views
  • 5 replies
  • 0 Likes

Can I verify a config before doing a commit?

I was writing a rule to allow ciscovpn to only certain addresses, so I added a destination and the application I chose was ciscovpn. I added it to the policy and then did a commit. it came back with messages saying that ciscovpn needed ike to function and it was denied in the default deny. so I added ike and did a commit, and got a message ...

dabels by Not applicable
  • 2218 Views
  • 2 replies
  • 0 Likes

Resolved! AntiSpyware Response Page

Did the AntiSpyware Response page option go away in version 4.1.4? Seems like I tested with it and saw an option for an AntiSpyware page in eariler versions of 4.x, but I'm not seeing it listed as an option on the firewalls or in Panorama in 4.1.4.

robertb by L0 Member
  • 2353 Views
  • 1 replies
  • 0 Likes

Resolved! Layer 3 Interface Trunk Configuration

Hi,I am a new Palo Alto firewall user, however I have been working with firewalls for some time. I have a couple of quick questions;1) Does the Palo Alto PAN-OS firewall have equivalent of the "shut" or "no shut" command to turn an interface on or off?2) I have an 802.1q trunk link coming into my firewall; this trunk link has multiple VLANs ta...

dsulli99 by Not applicable
  • 11537 Views
  • 2 replies
  • 0 Likes

how to browse for adding specific AD group in LDAP authentication.

Hi..Customer would like to use SSL VPN with Active-Directory.So, I have configured SSL VPN with LDAP Authentication.There was no problem to connect SSL VPN with LDAP Authentication. after verify SSL VPN connection, I was going to add some specific group to LDAP authentication in Authentication profile.But I cannot browse Active-Directory group...

willstech by L3 Networker
  • 2442 Views
  • 1 replies
  • 0 Likes

Adding multiple IPs to external interface

I am interested in adding all of the IPs from a range like x.y.z.40/28 to the external interface of the PAN.The verbiage on the GUI makes it sound as if I need to add each IP individually.Can I add a range as listed above by entering it as x.y.z.40/28 and if so, can I then NAT inbound by individual IPs in the range by referencing the individual...

BobW by L4 Transporter
  • 3745 Views
  • 1 replies
  • 0 Likes

Resolved! URL logging without URL Filtering license

We are trying to log all URLs without having a URL Filtering licenseFor that we created a custom URL category containing*.**.*.*Seemed to work but when we compared the amount of log entries to the proxy logs we discovered that we only see less than half of the proxy URL logs in the PA URL log.Looking around we noticed that the option "Log Contai...

AndreasB by L2 Linker
  • 3659 Views
  • 1 replies
  • 0 Likes
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks