This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Routing between Virutal Systems with a VWIRE

We currently have our Main PA configured in a VWIRE deployment with a TRUST and UNTRUST Zone. We have many different VLANs on our network and the default route for all internet bound traffic passes through the VWIRE.We want to configure multiple VSYS on the PA for our different divisions. Example VSYS1 - Enterprise, VSYS2 - Retail, VSYS3 - Publ...

What is everyone using for anti-spam?

Sorry if this is inappropriate here, but I figure who else better to ask than other Palo Alto Networks customers.As much as I love our PANs, unlike some other firewalls, they don't really help with spam. So I'm wondering if other users would mind sharing their success stories.Our current solution is GFI Vipre Email Security on the Exchange 2010 ...

bjdraw by Not applicable
  • 6619 Views
  • 2 replies
  • 0 Likes

Resolved! Allowing access to Facebook and Twitter

We have a setup where we restrict users access to personal and social sites like twitter and facebook to lunchtimes and out of hours, which is working fine using a schedule.We however have a select group of users who require full time access to facebook and twitter for the Council pages/accounts (only those sites).I have tried setting up a rule ...

lhank by L0 Member
  • 7915 Views
  • 5 replies
  • 0 Likes

FQDN and DNS failure

I'm looking to use FQDNs inside Address Objects but have some reservations. What happens if my DNS goes down, or becomes corrupted for some reason. In other words, when using FQDNs, what happens if the PA can't resolve the address? Is all traffic to FQDN configured objects blocked? As an example, let's say access to my DNS server (or some oth...

Remove GlobalProtect from OSX menu bar

Just upgraded from NetConnect to GlobalProtect when we upgraded to 4.1.2 and on OSX I don't see a way to remove the GlobalProtect icon from the OSX menu bar. I understand if it needs to be there when using GlobalProtect, but I only use it ocasionaly and would prefer not to have it displayed all the time.

bjdraw by Not applicable
  • 7600 Views
  • 2 replies
  • 0 Likes

ISA (TMG) Problem with PA-500 in vwire mode

background:we have a new installation of a PA-500 (running 4.1.2) which sits behind our edge firewall (TMG 2010) in vwire mode.basic setup. the pa-500 external interface connects directly into the edge firewalls internal interface and the pa-500 internal interface connects directly to our production network. our DNS, AD etc are all on this produ...

d_ballam by Not applicable
  • 3108 Views
  • 2 replies
  • 0 Likes

Android Market Apps download stuck at 99%

Hello All,Did anyone encounter issues with android apps download ?It will get stuck at 99% and refused to complete the installation. I also allowed the android-market application. The logs showed nothing deny.Any advice would be appreciated.ThanksBen

mmxong by Not applicable
  • 5224 Views
  • 6 replies
  • 0 Likes

tftp export timing out

I am trying to use tftp to upload/export the configuration file to an OpenBSD tftp server which is on the same LAN as the PA box.The address of the PA is 192.168.2.1 and the OpenBSD server 192.168.3.1The file transfer process seems to be timing out at the ACK phase (server -> PA).Here's the command:admin@fs> tftp export configuration sourc...

quist by Not applicable
  • 4923 Views
  • 3 replies
  • 0 Likes

PA5050 SFP+ Port LED doesn't work if SFP plugged in?

Hi there,we have equipped the SFP+ Ports 21-24 with normal 1GB SFPs.The SFPs are working fine but the Port LEDs doesn't blink.Is this a normal behavior? Maybe only show light if a SFP+ plugged in? :smileyconfused:We're running the version 4.0.7Thanks, Sebastian

Running PAN in FIPS and/or CCEAL4 mode?

Any of you here in this forum who have experience from running your PAN device in either FIPS or CCEAL4 mode (or both - is that possible?)I only found some brief of what the FIPS mode really means within the "Appendix C Federal Information Processing Standards Support" in PA-4.1_Administrators_Guide.pdf and no mention of what CCEAL4 mode (found ...

mikand by L6 Presenter
  • 2821 Views
  • 1 replies
  • 0 Likes

SSH Tunnels

I know in order to look inside the SSH traffic to see if someone is doing SSH Tunnels you need to decrypt the SSH session.I am looking to find out how the PAN decrypts the SSH traffic and what is all involved in setting this up on the firewall.

snormoyle by Not applicable
  • 2407 Views
  • 1 replies
  • 0 Likes

ALG for Facetime via NAT?

We're running 4.0.5 and Facetime does not work as the packets coming from Apple's servers via the Internet are dropped. I noticed there was an ALG for H.323 in 4.1 but wasn't sure if that was related to Facetime or if there was anothe work around.

bjdraw by Not applicable
  • 6879 Views
  • 8 replies
  • 0 Likes
  • 24381 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks