This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4125 Views
  • 0 replies
  • 0 Likes

How do I allow udp port 33001?

Hello All,I have encountered an issue where a downloaded client installed on Internet Explorer called Aspera client for downloading video content experienced an error.It states to check the UDP port and firewall based on code 15.Since this is application based (HTTP), where is the most effective place to allow and create the rule for the client ...

User-ID Agent AD Group Limitation?

All,Digging around in the various docs I've found I can't seem to find an answer to this question so I'll ask here..I'm curious if there is a limit on the number of AD groups per user that the Agent can handle? I'm worried we might run into some limitation cause our group situation is really out of control with no fix in sight..Thanks!-Steve

steveo by L3 Networker
  • 4090 Views
  • 3 replies
  • 0 Likes

Vulnerability understanding

I'd like to figure out the meaning of a vulnerability alertlet say that I have an alert like:Severity Name ID Directioncritical Adobe Flash Player Bounds Checking Remote Code Execution Vu...

Resolved! Comments when exiting GP client

When users disable/exit the Global protect client on their computers. They are forced to whrite a comment/reason. Where are thoese comments logged? Can i read them somewhere? //Karl

Captive Portal with Applications

Hi!When not logged in with Captive Portal, it seems like all other Applications are allowed to pass through except http traffic. Is it possible to setup Captive Portal so that it actually blocks ALL traffic before being authenticated with Captive Portal?Thx!

gebis_it by Not applicable
  • 2579 Views
  • 2 replies
  • 0 Likes

Problem with AD authentication - username change

Hi, We had to change the username of one of our colleagues in the Active Directory. Now our appliance (PA-500 running 4.1.4) can see the changes but only in a strange way. When I try to create a rule with this user and I try to list the users with [domain]\ I can see only the old username (ana.cvetkovska), but when I try to list the users with [...

Captive portal

HelloI am new to the administration of a PA 500. I would make a captive portalfor my users. The documentation of the manual I have no very clear. I do not look very complex, something functional and easy. I wonder if there is atutorial about it. The AP 500 is VWire mode.Thank you very much

Configuring VPN with redundant ISP

Hi guys,I want to know it`s possible to configure a VPN with redundant ISP.I configure the VPN to use a 1 ISP , when this 1 ISP fail , my vpn go to my 2 ISP.It`s possible to do it ?Best Regards.Thiago Lima.

Thiago by L3 Networker
  • 3897 Views
  • 5 replies
  • 0 Likes

SSL-Gateway

I'm using a PA-500 to connect our network to 2 ISP's. I'm using policy based forwarding which works great but if I add a static entry for ISP-2 it breaks SSL-VPN access. I have a public IP assigned to a loopback which is in the untrust zone. It works if I remove the static route for ISP-2 and replace it with a static route for ISP-1 which is ...

Content-ID Container Pages

Has anyone done anything with the Content-ID container pages to control the URL logging? Are you using a Custom 'URL Content Types' list? What are the supported URL Content Types? The documentation is sorely lacking .Thanks, Jeff K

Jeff_K by L2 Linker
  • 5642 Views
  • 3 replies
  • 0 Likes

Resolved! SSL-VPN and Site to Site VPN on same Public IP

I am in the process of configuring a site to site vpn but when I try and select my public ipaddress (outside interface) for the local ip in the ike gateway setup the ip address is not avalible as an option. I assume this is because its already configured for my global protect gateway and portal? Is this possibly the issue? Currently the portal a...

How do I configure an external interface for a direct fiber (metro ethernet) connection?

We are in the process of switching from a T1 provider to a fiber connection through another ISP. The T1 provider has us on a /29 network where they provide a router which occupies the first usable IP of the range. Our new ISP has the outside interface on our PA-500 connecting directly to a switch. We were given two ranges of IP addresses: a ...

kwarner23 by Not applicable
  • 8346 Views
  • 7 replies
  • 0 Likes

PA-500 Auto Reboot

Good Morning EveryoneCan anyone shed some light on why my PA-500 will auto-reboot after the following incident logged on the system log "description contains 'infra-group: restarts exhausted, rebooting system"We running the latest 4.1 OSHow can we prevent this from happening again?RegardsKobus

u7285 by Not applicable
  • 3467 Views
  • 2 replies
  • 0 Likes
  • 24336 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks