General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Traffic flow when QoS max hit

Hi All,

What happens to the traffic flow, when a QoS maximum is hit?

Do the packets being to be dropped, or are they backed up, either in an internal Queue ( and if so, what is the size of that queue ),

or are they rate limited so the client/proxy sendi

...

KatanaNZ by L3 Networker
  • 2567 Views
  • 3 replies
  • 0 Likes

Resolved! how many fans in PA5000

Hi

I am not sure how many fans in PA5000 or how many fans in one fan tray

BTW , if one pA box only have one

Thanks

Jeff

JeffJin by L2 Linker
  • 1652 Views
  • 1 replies
  • 0 Likes

GlobalProtect Client VPN

Now that we have client VPN functionality via global protect is there any way to force clients to use a proxy over the VPN conneciton?

Thanks

Rod

djrodb by L3 Networker
  • 2478 Views
  • 3 replies
  • 0 Likes

VSYS and Commit

Hello,

I had a consultant who states that you can commit only the VSYS you modify and not commit the rest of the configuration.  I have looked at some documentation and see no refernce to this.

My question is this:  Is this a fact?  If yes where can I

...

block flash

Hi

When I "deny" application "flash" - flash is not blocked, do I have it all wrong or?

Thanks

felixn by Not applicable
  • 5243 Views
  • 16 replies
  • 0 Likes

User-ID Event Generation

I have a question about the events used to map users to IP's in the firewall.

According to documentation, the PA uses three event ID's to map users to IPs: 4768, 4769, 4770.

The question I have is this:

If a user (say his username is bsmith) is an IT ad

...

bbrassart by Not applicable
  • 2308 Views
  • 1 replies
  • 0 Likes

Resolved! IPv6 NA RA

I'm running the PA-500 in a fully dual stacked mode yet I also want to run a Vlan as pure IPv6.  When or is it now possible with 4.1 to have the PA perform ND RA?

I've been waiting for this feature for some time now!

msnazel by L0 Member
  • 2716 Views
  • 4 replies
  • 0 Likes

Any issues with PANOS 4.0.5?

Has anyone ran into issues with PANOS 4.05?

My previous past experience with PANOS 4.0.x was not the greatest.

High CPU utilization, network latency, GUI issues, and logging issues were not

the greatest. The end result was tech support and rollback to P

...

bchan by L0 Member
  • 10792 Views
  • 28 replies
  • 0 Likes

Resolved! Blacklist threat attackers?

In addition to dropping packets of an attacker (say the RDP Brute Force which I get a lot of), is it possible to auto-blacklist the attacker IP address after a certain number of attempts?  It would then block all traffic from that source?

cenders by L3 Networker
  • 3172 Views
  • 4 replies
  • 0 Likes

Multiple policies that use URL allow lists?

I have a query regarding multiple rules to allow access to URL whitelists.

Let’s say I have rule1 that allows “any” on my LAN to a URL profile that blocks everything but only allows access to url1.com.

I then want to have rule2 that only allows “some

...

How to log all url ?

Hello,

In the monitor tab, the traffic log doesn't allow to see url destination. As far as I know, the only place where to see url destination is URL Filtering logs.

However, only the url that are part of the URL Filtering objects are logged.

My questio

...

ldormond by L3 Networker
  • 2946 Views
  • 4 replies
  • 0 Likes

Authentication for generic user account

Hi,

A client have a several computers with a generic user that logon automaticaly. Actually, with a ISA Server configured as explicit user, the browser prompts user/pass data to access to Internet. What can I do with PaloAlto to make the same? Captive

...

COMIP by L2 Linker
  • 1961 Views
  • 3 replies
  • 0 Likes

Resolved! file blocking continue page issue

Hi,

I am using PANOS 4.0.3, and have created a file blocking profile object with action = continue , this should then prompt the user while downloading and on clicking continue, the user should be able to go to download the exe, etc...

The issue i am h

...

Global Protect Client with OTP

Can the GPC be configured to prompt me for the password when attempting to connect?

I'm using RSA tokens but I having real trouble trying to get GPC to work properly with out a fixed password.

I'm not sure how I managed it but at one point I did get a

...

PThomas by Not applicable
  • 2397 Views
  • 1 replies
  • 0 Likes
  • 24034 Posts
  • 102 Subscriptions
Top Liked Authors
Labels