This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4121 Views
  • 0 replies
  • 0 Likes

Group names showing full LDAP name

Prior to upgrading to v4.1, when adding an AD group to a policy, the group name used to show up as the shortened name "domain\groupname". While those policies still work post upgrading, whenever I now add a group name to a policy, the group shows up as "cn:groupname,ou:users,dc=domain,dc=local". While functional, not as cosmetic.Is it a config...

cenders by L3 Networker
  • 3362 Views
  • 1 replies
  • 0 Likes

Performance issue on PA-5050 with profile active

I've ran into an interesting throughput issue with a PA-5050 in my lab, maybe someone can shed some light on this strange behaviour.The setup: PA-5050 running 4.0.7Two aggregated trunks: AE1 & AE2AE1 assigned to VSYS1 (Server VSYS)AE2 assigned to VSYS6 (Client VSYS)The test:FTP download test from a Windows2003 machine (with FileZilla) in VSY...

Nico by L1 Bithead
  • 3281 Views
  • 3 replies
  • 0 Likes

Error When Adjusting Log Quotas

Anyone help on this? We can't alter the logdb quota settings (at least on the GUI) on Panorama - we get an error of "management is missing 'storage-partition' " even if we make a tiny change eg. reducing the size of the threat databse to 24% from 25%.I attempted to make the change from the CLI "set deviceconfig setting management disk-quota traf...

fmd by L3 Networker
  • 5658 Views
  • 5 replies
  • 0 Likes

How to setup pan to inspect/monitor wireless traffic

I am currently running a PA-500 in IPS mode and is setup as a VWire behind my ASA. I have an environment that consist of a Cisco wireless controller and APs. How do I monitor my wireless traffic or better yet how do i setup policies for this? By the way I had a conversation with support this morning and it went no where.

FTP question

Greetings,I am trialing a WING FTP server here at the office. FTP and HTTPS work fine to the server from a FileZilla client. I have an SSL certificate loaded onto the server for FTPS/HTTPS. When I try to connect to the server via FTPS (port 990), the client connects but gets stuch at listing the directory contents. The FileZilla client hangs...

bright cloud - having problems

some of the sites are fasle postivie , and then we report to brightcloud and it takes 24 -48 housrs it. but some adult and pronograph sites can be opened , adult sites with diffrent languages like chinese , italian, russian , japanese , arab etc can be opened . some adult are linked are in social networking sites which cant be filtered.

jerry by L1 Bithead
  • 3662 Views
  • 4 replies
  • 0 Likes

HIP for accessing DataCentre services

Hi All,Has anyone implemented a PAN solution using HIP policies for 'internal' LAN clients to access critical internal resources, such as in Data Centre deployments?Any issues to be aware of when looking at this sort of case usage?

KatanaNZ by L3 Networker
  • 2601 Views
  • 1 replies
  • 0 Likes

dnsproxy policy?

HiWhat allow policy is needed for granting access to the dnsproxy? - when I try and only allow some things like, dns, web-browsing etc. the dnsproxy stops working - and nothing in the logsThanks

felixn by Not applicable
  • 2875 Views
  • 1 replies
  • 0 Likes

Force safe search (Google, Yahoo, Bing) for a specific URL category (with Brightcloud subscription) & time based access to URL categories

I've searched the dev forums for the safe search options, etc and found a lot of solutions. These rules don't scale well across different groups (LDAP groups). Is there a better way?Also, allow for specific URL categories based on time (i.e. allow Webmail during lunch and before and after work, but allow other categories during the blocked time)...

edenney by L0 Member
  • 3316 Views
  • 1 replies
  • 0 Likes

Resolved! Aggregate interface state and routing

Two locationsTwo pairs of 5050sHave a configuration wtih two sets of aggregate portsOne set of VLANs that are local/native to the location the PAN assigned to the first set of aggregate ports - these are intended to be up at all times.The other set of VLANs are assigned to the other data center but are stretched across the WAN backhaul to the ot...

jcostello by L4 Transporter
  • 5256 Views
  • 3 replies
  • 0 Likes

Scheduled reports cannot have a period value of last-30-days

I'm having fits trying to get meaningful reports out of the firewalls or Panorama. Recently I came across this"Scheduled reports cannot have a period value of last-30-days or last-calendar-month"My question is... Why ? I need to produce monthly reports. Is there any way around this ? I'm assuming storage is the issue ? Any SQL long term storage ...

jhickey by L3 Networker
  • 4409 Views
  • 7 replies
  • 0 Likes

How to define differents objects names for same FQDN object ?

Hello,I want to define multiple object name for the same FQDN object. The idea is to have relevent object name for different policies.For example, I define 2 address objects for FQND myserver.mycompany.com : H_srv_oracle and H_srv_ntp.Then I define 2 security policies : one with H_srv_oracle for oracle traffic, the other with H_srv_ntp for NTP t...

ldormond by L3 Networker
  • 2142 Views
  • 1 replies
  • 0 Likes
  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks