General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 252 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3563 Views
  • 2 replies
  • 14 Likes

URL Filtering - DNS Proxy

Hi,

I have the PAN devices in the main datacentres that do DNS lookups for all clients globally. What I am trying to figureout is how to have those servers forward to the PAN and the PAN proxy off to external servers then filter the returns based on a

...

bcsgroup by L2 Linker
  • 2870 Views
  • 5 replies
  • 0 Likes

Multiple Remote Access VPNs, same gateway IP?

Hey all,

I'm coming over from the Cisco world and trying to setup two separate remote access VPNs but using the same gateway IP. My understanding is that normally with the PA you can use the security policies to differentiate users and provide access

...

Bug in Global Protect Client 1.1.2-9

With GlobalProtect Client 1.1.2-9 on Win 64bit is a Problem when you enter here a DNS Name instead a IP Adress.

It worked with Client 1.1.1-9, so all users who did the Update hat the problem!

On 32bit Windows System it still works with a dns name, but

...

gsteiner by L3 Networker
  • 2228 Views
  • 1 replies
  • 0 Likes

Microsoft flight simulator Squawkbox issue

We have a user who says once we moved to our new Palo Alto box from Cisco ASA he is having a odd issue.

He claims that Squawkbox works fine as long as he is talking but if he just listens after 2 or 3 min. He looses

his audio until he speaks. To me it

...

SSL Decryption

Do you need to have a valid URL filtering subscription for SSL Decryption to work?

Thanks

Rod

djrodb by L3 Networker
  • 2469 Views
  • 2 replies
  • 0 Likes

DRAFT: Procedure to add Antispyware, Threat, & URL Filtering

1.    Policy profiles
    a.    enable applications (one day to enable)
        i.    tweak applications (several days at least, maybe two weeks at most)
        ii.    wait until stability achieved
    b.    enable antispyware  (one day to enable)
      

...

tarkawa by Not applicable
  • 1552 Views
  • 1 replies
  • 0 Likes

Kerberos Authentication

Hello all,

I'm trying to understand how Kerberos authentication works on the PAN. From what I understand is that Kerberos does not send any passwords over the network but generates tickets.

1) When a user logs on a SSL VPN portal which is configured fo

...

u5273 by Not applicable
  • 4351 Views
  • 3 replies
  • 0 Likes

Wildfire not showing any files.

I have configured a PA500 to use Wildfire but in the dashboard I don't see any files being examined.

While downloading an .exe I get the page to continue and I see in the Data Filtering Log, action Forward.

Inspecting the system log doesn't show any in

...

hoplahoi by Not applicable
  • 10659 Views
  • 9 replies
  • 0 Likes

Security Policy Action Options other than Allow/Deny

We have a security rule:

Src Zone: Internal

Src User: Any

Dest Zone: Any

Dest Add: Any

Application: Application filter which inlucde all online videos (e.g. adobe-media-player, http-video, tvb-video, youtube-base)

Action: Deny

It works as expected, howeve

...

linuss by Not applicable
  • 3727 Views
  • 6 replies
  • 0 Likes

SSL-Out Out Timer

Hi - does somewone know the command to show the current countdown timers for users who have accepted SSL interception?

I know there is one as I've run it in the past, but can't for the life of me find it.

Thanks

apackard by L4 Transporter
  • 1588 Views
  • 1 replies
  • 0 Likes

Resolved! Panorama & HA Pair questions

I'm just getting started with  Pair of 5000's in Active/Passive and plan to manage them via Panorama. Should I be pushing policy to the 'primary' PA firewall or create a device group and push the policy to both?

Second question: We plan on bringing u

...

Jinx by L1 Bithead
  • 2190 Views
  • 2 replies
  • 0 Likes

DNS Proxy question

Hi All,

I'm working to configure the PAN (4.1.2) DNS proxy, hopefully to replace the legacy slave dns server.

But the adminsitrative guide is good enough to understand to configure it.

I'm having hard time getting it to work as desire.

Would I able to fo

...

ateo by Not applicable
  • 2553 Views
  • 2 replies
  • 0 Likes

Resolved! Timer to refresh FQDN object entries

Hi,

In the "PAN-OS Command Line Interface Reference Guide Release 4.0", we found the following options which specify the refresh times for "FQDN object entries".

+ fqdn-forcerefresh-time — Seconds for Periodic Timer to force refresh FQDN object entrie

...

Hub by L0 Member
  • 4760 Views
  • 4 replies
  • 0 Likes
  • 24169 Posts
  • 100 Subscriptions
Labels