General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Can't Import SSL Certificate from GoDaddy for use on GlobalProtect Gateway/Portal

I recently installed a PA-200 at a client's office and setup GlobalProtect for SSL VPN using self-signed certificates. Now that we are ready to roll into production, we'd like to install a trusted SSL certificate. We purchased a certificate from GoDaddy. The CSR was created on IIS7 (on Small Business Server 2008) and successfully used to crea...

njoyzrd by L1 Bithead
  • 13845 Views
  • 3 replies
  • 1 Likes

YouTube uploading rule failed...

Hello,recently for testing purposes I create Youtube-uploading rule in order to deny all video uploading's to Youtube server. My disappointing grew when I saw that all video uploading's pass my rule, also when I login on my Gmail through Google Chrome, all Data filtering rules was passed, and I can attach any of forbidden files. With other app's...

Tician by L3 Networker
  • 3554 Views
  • 4 replies
  • 0 Likes

security policy rule index number

Hi AllIn PANOS 3.1.x, i can see the security policy index unmber in the GUI, however i can't see it after upgrade panos to 4.0.9 no matter using GUI or CLI.Is there any way to find secutiry policy index number?Thanks.Joy

Palo Alto 5020 - Traffic Monitoring

Hi,I'd like to know if it's possible to enable Netflow version 9 or sFlow on the 5020 (4.0.9)?From documentation I've seen online I think an upgrade is required though I'd like a confirmation of this.Regards,Jake

SMK_BEG by L1 Bithead
  • 3548 Views
  • 3 replies
  • 0 Likes

Multicast - IGMP querier

Hi,I have a question regarding multicast. Our developers plan to deploy a multicast application in on of our DMZ´s.Unfortunately the application generates a lot of sync traffic and this fills up all interfaces in that vlan, because igmp snooping is not working on the switches. As far as i can see this is because there is no IGMP querier on that ...

asieber by Not applicable
  • 6062 Views
  • 2 replies
  • 0 Likes

PBF based on domain/URL/FQDN

After research in KnowledgePoint, I understand application is not recommended to be used in PBF as single session will always be forwarded the same way. i.e. application shifts will not change the forwarding behavior.If we want to forward traffics from internal to specified url URL e.g. www.facebook.com to 2nd ISP, is it possible?Any simple wa...

linusso by L1 Bithead
  • 5858 Views
  • 3 replies
  • 0 Likes

Asterisk PBX (Gemeinschaft)

I got one Asterisk Digium PBX it runned since october without issues but now it looks like the traffic dosn't get match anymore.I read I could use Application Override. Can someone explain what I need to configure excatly?RegardsGuido

gsteiner by L3 Networker
  • 2254 Views
  • 1 replies
  • 0 Likes

Block Page Redirection to Company website

Hi all,Does Palo Alto has the capability to redirect the users block page to company website. Example if a user accesing a block url, instead of receiving a Palo Alto block page it will redirect it to company website. Everytime a users is accesing a block url it will redirect it to a company website.Thanks,Jan

janm by Not applicable
  • 2898 Views
  • 2 replies
  • 0 Likes

Resolved! Overcoming an application filter and url groups

This example is fictitious, but you will get the idea.I would like to use an application filter to block all "peer to peer". So I create the necessary filter. Then I determine that I want to allow one of the items which is defined in the "peer to peer" filter. Is there some way to overcome/remove the app from the filter?I hope there is, other...

BobW by L4 Transporter
  • 3829 Views
  • 2 replies
  • 0 Likes

Conference With H.323

Hi Guys ,It`s possible to configure a Destination NAT FROM WAN TO MY LAN WITH H.323 ?How can i do that ?Best Regards.Thiago Lima.

Thiago by L3 Networker
  • 2132 Views
  • 1 replies
  • 0 Likes

Cisco VPN client windows supported by palo alto ?

Hello,Can the Cisco IPSEC VPN Client (running on a laptop Windows 7 64 bits) be supported by Palo Alto?I know it's possible to connect an IPAD/Iphone with the CISCO VPN Client, but is is also possible with a laptop ?When I try it on a laptop Windows 7 64 bits, the connexion is OK, however once I am conected, I get a default route while I should ...

alliance by Not applicable
  • 4486 Views
  • 4 replies
  • 0 Likes

Problem with MLSD command on FTP after upgrade to 4.1.0

Hi everybody,After waiting a week I upgraded one of our PA-500 boxes to software version 4.1.0.One of the services that are no longer working correctly is FTP. The MLSD command is causing an error at the client connecting to the service:Status: Resolving address of mev.blahdieblah.comStatus: Connecting to 87.249.xxx.xxx:21...Status: ...

surfright1 by Not applicable
  • 11568 Views
  • 18 replies
  • 0 Likes

Response Pages that adjusts to frames

hiis there way to get the response page to adjust it self to a frame, if you block FB-social plugins and this is just a ad on a site that is outerwise ok the block page looks wierd and the users cant read the information in that page.

u3786 by Not applicable
  • 1948 Views
  • 1 replies
  • 0 Likes
  • 24401 Posts
  • 123 Subscriptions
Top Solution Authors
Labels