General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Globalprotect client failing authentication

We have had several instances where our end users are not able to connect with the globalprotect client since upgrading to PANOS 4.1.  When I check the system log file I see the following errors

2012/01/18 09:45:03info     globalp portal globalp 0  G

...

jbland by Not applicable
  • 2612 Views
  • 3 replies
  • 0 Likes

Resolved! Using "Any" as zone for a converted policy

Hi

I'm converting a security policy from a Check Point device to a PAN device using the PAN converter. By default the converter sets source and destination zones as "Any". Can I use the rule like that? Is there any problem that such configuration migh

...

Multi Gateway

Hello,

I need to install a PA200 for a internet breakout. Since i can't change the IP Subnet, I tough to change the default gw to the PA and use the PA as a router for traffic to the WAN (same subnet). But my problem is now that traffic comming from t

...

gsteiner by L3 Networker
  • 3754 Views
  • 8 replies
  • 0 Likes

OSPF - Reditribution intra OSPF

Hello,

My PA is connected to 2 OSPF areas and I want to take some routes from one area and send them to the other one.

I try to do a redistribution profile but it only send my directly connected routes, not those learned from OSPF.

Is there a way to do

...

rroger by L1 Bithead
  • 2138 Views
  • 1 replies
  • 0 Likes

Resolved! URL-filtering Profile

Hi!

Friday we upgraded our devices to 4.1.0.
Everything is working ok, the gui is pretty fast, which is nice, only:

When we want to edit a url-filtering-profile, the list of categories is empty.

Can someone confirm this running on 4.1.0 ? ( or is it just

...

paulmeys by L1 Bithead
  • 7270 Views
  • 7 replies
  • 0 Likes

New feature - URL Allow List Object

Could you add a feature that creates "URL Allow List" objects and "URL Block List" objects. We have several  URL Filtering Security Profiles and try to keep our business partner sites in the "Allow List" but have to manually add them to each profile.

...

jmck9999 by L1 Bithead
  • 2567 Views
  • 3 replies
  • 1 Likes

Log Exporting

I am exploring the best method for me to export and create reports based off of log data from a PA-4020, and have a few questions.  Real-time reporting hasn't been determined just yet, but since I can essentially get real-time from the PA GUI I am th

...

UserID - possible to identify AD computer name

I have firmware version 4.1.1 and use the appropriate User-ID program for this firmware. I undretand how it all works for Active Directory user accounts, but what I want to know is can it be used to scan AD containers that only contain computer names

...

Problem with Authentication Profile

I had to do some changes to the Allow List of a Authentication Profile based on LDAP (AD) but i'm constantly recieving "ajaxUserIdAgentUserHandler:: Error in retrieving data: Not Found"

I'm sure that this was working previously. Additionaly I've manua

...

PanAgent AD Groups disappear

Hello all,

We have a strange issue.


Suddenly and without any cause the AD users in our PAN device losses the AD groups that they belong to. This is a huge problem cause the security policies configured by groups does not work.


The strange thing is if w

...

Pan OS 4.1.2

I see they released version 4.1.2.  Will there be a release for PAN-200 or is the PAN-500 version the same for the PAN-200.

snormoyle by Not applicable
  • 2165 Views
  • 2 replies
  • 0 Likes

Log Fomrat

Hi all,

is there any way to change the format of Palo Alto's logs?

nmarchal by Not applicable
  • 2167 Views
  • 3 replies
  • 0 Likes

Dynamic Updates

I noticed under dynamic updates --> URL filtering that it shows version 3777 action upgrade.  The action is set to "download-and-install".  It shows the previous version 3776 as being the currently installed version. 

So what would be causing version

...

snormoyle by Not applicable
  • 1675 Views
  • 1 replies
  • 0 Likes

Resolved! Make PA speak to AD without a User-ID Agent?

In order to use AD-integration in the PA unit (setup security rules based on logged in user or which group the logged in user belongs to) one need today to setup a few additional servers running the User-ID Agent (unless you want this agent to be run

...

mikand by L6 Presenter
  • 2078 Views
  • 1 replies
  • 0 Likes
  • 24012 Posts
  • 102 Subscriptions
Top Liked Authors
Labels