This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4243 Views
  • 0 replies
  • 0 Likes

Resolved! Signature Review/Modification

I tried searching through the discussions but didn't see anything regarding this. Is it possible to see what the actual threats are matching on? Essentially what their signature is so I can make a more accurate analysis of the validity. For example, Scripts/Win32.Rsrc.o is classified as a Medium severity virus threat. The description is simply "...

No user names in the PA appliance

Still no user names in the PA appliance. from PAN-Agent debug:[skipped]2011 09 21 16:55:16, AddEntryUnknownTableSafe 192.168.207.1002011 09 21 16:55:16, User Enumeration, IP: 192.168.207.100, Username: MERVIN$, Domain: companyname2011 09 21 16:55:16, User Enumeration, IP: 192.168.207.100, Username: __vmware_user__, Domain: MERVIN2011 09 21 16:55...

goldandy by L2 Linker
  • 2615 Views
  • 2 replies
  • 0 Likes

Resolved! Generating reports with user display name ..

Hi ,currently am using the pan-agent for integrating with active-directory and the integration is fine, the issue is it only displays the username NOT the display name where it could affect the reports .for example username : sales_1 --> display name : John ... in the reports it will show sales_1 not john, so is there a way to override this i...

Multiple External Interfaces

Hello,I have a pan 4020 that will be replacing multiple firewalls. The internet side of the firewall has a /25 network. I have a corporate network that has an external interface of x.x.x.2/25 in the Internet zone and a guest wireless network that has an external address of x.x.x.3/25 in the Internet zone. The corporate network has an internal ...

No result from "show user pan-agent user-IDs" command

Dear All, I just install pan-agent on my AD, windwos 2003 server, and configure PAN box to connect to this pan-agent. I can see traffic with user from AD server. I found result from command " show user ip-user-mapping all". I can list group of AD with command " debug device-server dump user-group name". However after I run command "show use...

Logging to Panorama over a WAN Link

We have a remote location that connects back to our corporate office via a WAN Link. At this remote site, we have two clusters of Palo Alto Firewalls that are pretty heavily utilized and produce around 1+ GB of log per day. We are preparing to deploy Panorama at our Corporate location to manage all of our PA firewalls. We would like to send t...

Milamber by L1 Bithead
  • 4515 Views
  • 6 replies
  • 0 Likes

Is PAN-agent supported for win7?

Tried to install pan-agent 3.1.2 in Win7 32bit workstation. Installation is ok, but after that I see "Please start PanAgent Service first" in the Agent Status (but the same time PanAgentService is running. I tried stop\start service, restart PC - didn't help)So, is it supported? If not - when it will be supported? If yes - what's may be wrong in...

goldandy by L2 Linker
  • 2968 Views
  • 3 replies
  • 0 Likes

Application "Mode Shift" Behavior

From what I understand, "mode shift" is the term for when an application's identification changes during inspection. For example, a flow may be initially identified as "web-browsing", and then further identified as "facebook". I can't find any documentation about how the "mode-shifted" flow is analyzed again in the security policy. Does the f...

mgentile by L2 Linker
  • 5258 Views
  • 2 replies
  • 0 Likes

URL Filtering Exception...

Hi all, Here's what I need help with. .I have a general URL Filter setup on my outbound internet rule.I am filtering Job Seeker sites (Monster, etc.) per management requests.My question is, how do I setup a rule that will allow my HR dept to be able to access those sites, but not compromise the rest of the filter list.Thanks!Greg

smfwadmin by Not applicable
  • 2938 Views
  • 2 replies
  • 0 Likes

SSL-VPN and HA Cluster A/P

Hi,I have two 5050 in A/P mode running version 4.0.5. My question is if I connected via ssl-vpn to my environment and the primary PA is going down, do I need automatically flip over to the stand by firewall or I need to reconnect manually? BTW I’m using RSA OTP for authentication. Thank in advanceilyia

iliafr by L0 Member
  • 2477 Views
  • 1 replies
  • 0 Likes

SSL-VPN dhcp dynamic ad integrated dns

We have a problem with clients (winXP) connecting with the ssl-vpn and registering the vpn supplied ip into dns. When they login onsite, their host a record does NOT get updated. It stays at the ip given to to the ssl-vpn. Our internal dhcp server registers all dns records using a service account. This account doesn't have authority to modify th...

VSYS

i have PA 4020 in a production enviroment , and i need to create a new Vsys(2) , would that by any means delete my current (vsys1) confeguration. , i mean is it safe to do that now.

High CPU and Lag using ACC

We have PA-4020 running 3.1.9 in HAEvery time I need to use ACC to run traffic report for week/30 days or so …. It just freezes up for several minutes with up to 98% CPU that remains long after I cancel the report. The more granular I get with my report (filter on app) the more lag I get. Usually if I chose only one filter after the initial repo...

  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks