This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4121 Views
  • 0 replies
  • 0 Likes

Console Cable Scrolling

I am having issues with console cable connectivity and scrolling when working in a box. Basically the short of it is, no matter what console program I use, albeit putty; I get about 40 lines shown, and when I go to view more it overwrites the bottom 20 to 30 and only leaves so much up top. Wierd thing on putty is... If you log into the box an...

mcole by Not applicable
  • 3296 Views
  • 2 replies
  • 0 Likes

Resolved! user-id agent connection issues

Hi,We are trying to connect our PAN 2050 OS 4.0.9 to a couple of user-id agent version 4.1.3. The connection is not established and the agent logs reports:Device thread 1 SSL no certificateDevice thread 1 reply ver 5 msg with max ver 5, msg type 6Failed to read message msg header. error -1Device thread 1 SSL shutdownThe PAN "show user userid-age...

ajripa by Not applicable
  • 4172 Views
  • 1 replies
  • 0 Likes

Odd App ID

So, interesting thing. We use a PA-500 for our enterprise guest networks. We currently have a couple rules that go like this:1. Allow guest networks to use Skype / Skrype-Probe2. Block guest networks from using Risk 4 and 5 P2P (this catches stuff like Bittorrent, etc.)We just got an email that someone on our guest network is torrenting. L...

mrsold by Not applicable
  • 3357 Views
  • 3 replies
  • 0 Likes

Resolved! JS/Trojan.redirector.cay false postive?

Hello,Starting from what appears to be right after pattern update 683-936 was committed - we began receiving a very substantial amount of alerts from multiple internal "victims" for this Trojan. I am still investigating this internally. Has anyone else had a large amount of activity on this signature starting recently? Looking to verify if thi...

MGoodnow by L4 Transporter
  • 9529 Views
  • 9 replies
  • 0 Likes

Customize url report

Hi everyone, I use PAN-OS 3.1.6, I want to customize url report by filter some website don't show in my customize url report. I try use filter by url and operation is "!=" but it doesn't work. How I do it ?

Captive portal authentication with Radius/AD

Hello I try PAN-OS 4.1.3, I use captive portal authentication with Radius/AD. I config user in WiFi zone access to any zone must authentication with captive portal. It work normally. But I try set Proxy server and user in WiFi Zone config Proxy IP into Internet Option. After that the user in WiFi zone can't access to any web becasue of the b...

Drop DSCP marked traffic

Hi, I am looking for a way to define a DSCP value as a condition for a rule. I would like to drop traffic that was previously marked before entering the PAN FW. Any ideas?Thanks!

Prevent virus with Data Patterns

We are receiving some spam e-mails that containing links to zipped exe files with malicious code.All the exe files have in common a series of underscore characters, for example: fattura.pdf_________________.exe or informazioni.pdf____________________.exe We send to Palo Alto Support the exe file for the threat identification by Wildfire, but cur...

finit by L1 Bithead
  • 6883 Views
  • 9 replies
  • 0 Likes

Resolved! antivirus feature on https

Hi all, i'm currently testing some features of our PA-500, i've activated the antivirus policies and going on eicar i can see it blocks the download of the file, when i try to download from https the download proceed. How i can check and block antivirus threat over https session?The version of os is 4.1 and i've done all features update.Thanks t...

fcellini by Not applicable
  • 11978 Views
  • 15 replies
  • 0 Likes

problem of application dependency for security rule

Hi all.I have a question of application dependency when define a security rule with application. I’d like to add a security rule for a webex, and webex must requires SSL due to application dependency. so I add both of applications webex and SSL in a same security rule for allow to webex. After added a rule, I can access SSL webex. But other SSL...

willstech by L3 Networker
  • 4791 Views
  • 6 replies
  • 0 Likes

Can a Captive Portal Page be Triggered by a Value in the User Agent String?

Hello, I am working on setting up URL Filtering on a PAN-5020 as part of converting away from a Proxy. One of our requirements is to authenticate the user on generic login workstations by providing their credentials when they attempt to view a website that is external to us. I would like to force a Captive Portal Page to be displayed wh...

Art by L3 Networker
  • 5425 Views
  • 8 replies
  • 0 Likes

Global protect excluded networks

Hi all,there is a method on global protect to send all my traffic into the tunnel, but exclude the subnet range of the customer to remain connected with the office network and browse the web protected from office infrastructure, but with the possibility to work on all customer network and not only on the same lan?Thanks.

fcellini by Not applicable
  • 3123 Views
  • 3 replies
  • 0 Likes

IPSec VPN (non site to site)

Is there any document that shows how to configure IPSec VPN (or any vpn rather than SSL) on the PAN? I am not looking for site to site. I only found site to site configuration. The solution will be for clients who can vpn in remotely from everywhere. I'd like to offer this as a second vpn solution after ssl vpn which sometimes give a few iss...

Source Address/Source User

When both a source address and a source user are specified, is the rule matchsource address AND source user?source address OR source user?My guess is #1, but I can't find documentation to back that up.Thanks,Bart

  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks