General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

What is everyone using for anti-spam?

Sorry if this is inappropriate here, but I figure who else better to ask than other Palo Alto Networks customers.

As much as I love our PANs, unlike some other firewalls, they don't really help with spam. So I'm wondering if other users would mind sha

...

bjdraw by Not applicable
  • 3578 Views
  • 2 replies
  • 0 Likes

Resolved! Allowing access to Facebook and Twitter

We have a setup where we restrict users access to personal and social sites like twitter and facebook to lunchtimes and out of hours, which is working fine using a schedule.

We however have a select group of users who require full time access to faceb

...

lhank by L0 Member
  • 5796 Views
  • 5 replies
  • 0 Likes

FQDN and DNS failure

I'm looking to use FQDNs inside Address Objects but have some reservations.  What happens if my DNS goes down, or becomes corrupted for some reason.  In other words, when using FQDNs, what happens if the PA can't resolve the address?  Is all traffic

...

Remove GlobalProtect from OSX menu bar

Just upgraded from NetConnect to GlobalProtect when we upgraded to 4.1.2 and on OSX I don't see a way to remove the GlobalProtect icon from the OSX menu bar. I understand if it needs to be there when using GlobalProtect, but I only use it ocasionaly

...

bjdraw by Not applicable
  • 4817 Views
  • 2 replies
  • 0 Likes

ISA (TMG) Problem with PA-500 in vwire mode

background:

we have a new installation of a PA-500 (running 4.1.2) which sits behind our edge firewall (TMG 2010) in vwire mode.

basic setup. the pa-500 external interface connects directly into the edge firewalls internal interface and the pa-500 inte

...

d_ballam by Not applicable
  • 2240 Views
  • 2 replies
  • 0 Likes

Android Market Apps download stuck at 99%

Hello All,

Did anyone encounter issues with android apps download ?

It will get stuck at 99% and refused to complete the installation. I also allowed the android-market application. The logs showed nothing deny.

Any advice would be appreciated.

Thanks

Ben

mmxong by Not applicable
  • 3384 Views
  • 6 replies
  • 0 Likes

tftp export timing out

I am trying to use tftp to upload/export the configuration file to an OpenBSD tftp server which is on the same LAN as the PA box.

The address of the PA is 192.168.2.1 and the OpenBSD server 192.168.3.1

The file transfer process seems to be timing out a

...

quist by Not applicable
  • 3664 Views
  • 3 replies
  • 0 Likes

PA5050 SFP+ Port LED doesn't work if SFP plugged in?

Hi there,

we have equipped the SFP+ Ports 21-24 with normal 1GB SFPs.

The SFPs are working fine but the Port LEDs doesn't blink.

Is this a normal behavior? Maybe only show light if a SFP+ plugged in? :smileyconfused:

We're running the version 4.0.7

Thanks

...

Running PAN in FIPS and/or CCEAL4 mode?

Any of you here in this forum who have experience from running your PAN device in either FIPS or CCEAL4 mode (or both - is that possible?)

I only found some brief of what the FIPS mode really means within the "Appendix C Federal Information Processing

...

mikand by L6 Presenter
  • 2234 Views
  • 1 replies
  • 0 Likes

SSH Tunnels

I know in order to look inside the SSH traffic to see if someone is doing SSH Tunnels you need to decrypt the SSH session.

I am looking to find out how the PAN decrypts the SSH traffic and what is all involved in setting this up on the firewall.

snormoyle by Not applicable
  • 1750 Views
  • 1 replies
  • 0 Likes

ALG for Facetime via NAT?

We're running 4.0.5 and Facetime does not work as the packets coming from Apple's servers via the Internet are dropped. I noticed there was an ALG for H.323 in 4.1 but wasn't sure if that was related to Facetime or if there was anothe work around.

bjdraw by Not applicable
  • 4412 Views
  • 8 replies
  • 0 Likes
  • 24300 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels