General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1261 Views
  • 0 replies
  • 0 Likes

Exchange 2010 CAS in the DMZ

Aside from being not supported by Microsoft, has anyone placed an Exchange 2010 CAS server in a DMZ? It looks like the reasoning behind it was because you'd have to punch so many holes in the firewall, it wasn't worth it. But since the PAN has a litt

...

mharding by L4 Transporter
  • 3674 Views
  • 3 replies
  • 0 Likes

Result - Stuck in PENDING

Hi,

I have an antivirus download schedule and install job, but it seems PA FW is
stuck in the Download action. Sine 2 days I have the same result as below.


Enqueued          ID             Type    Status Result Completed
---------------------------------

...

ta185020 by Not applicable
  • 3888 Views
  • 2 replies
  • 0 Likes

Safari Security Errors

I have suddenly started getting security certificate errors while using Safari.  I am not using a Captive Portal and have no certificates on the PAN, however the certificate errors always point back to a self-signed certificate by the PAN.  I am atta

...

Resolved! Problem Creating Rule for IKE Traffic

I think it's my phase II re-key traffic being dropped. I tried to set up a rule source untrust with a specific IP, dest untrust with my Firewall's IP, application IPSEC, service application default, Action Allow.

It never gets hit and my udp/500 traff

...

rmagowan by Not applicable
  • 3069 Views
  • 2 replies
  • 0 Likes

Conficker DNS Request Question

So we have some conficker infections here where I work. The problem is that the PA sits at the edge, so all I see are Conficker DNS Requests that get proxied through our internal DNS Server to the Internet. I guess there is no way that PA can see wha

...

jhickey by L3 Networker
  • 2422 Views
  • 2 replies
  • 0 Likes

ipv6 interface

Hi,

  I can't assign an IPv6 address to a L3 interface of a PA-500 in 3.1.

  But I can add IPv6 addresses to the objects DB, and there is a 'IPv6 firewalling' flag in the general device configuration.

  Has anyone played with IPv6 on a PA? Is there any

...

Resolved! Security Rule order

Lets say I have rules set up like this...First rule uses a URL Filtering Profile on just port 80/443, and another rule below it that uses the Antivirus and Spyware profile also on just port 80/443.  If the first rule allows traffic through, will that

...

jambulo by L4 Transporter
  • 5363 Views
  • 7 replies
  • 0 Likes

Resolved! User Agent timeout and expiration timer

Hello,

I have configured Age-out timeout to 720min and configured "<enable-full-expire>1</enable-full-expire>" on config.xml.

There is the way to check the timer for a particular users to check how last for expiration ?

If I restart the PAN-Agent servic

...

Resolved! ARP Question

When logged in via CLI on the PAN 500 and I view the ARP table, it says maximum of 500 entries.  Does this mean that the PAN will only support 500 unique connections at a time?

I'm still trying to track down a problem I've been having with some machin

...

Weird blocking behaviour..

Greetings.

I have a user who is using a specific protocol - FTP with explicit TLS or otherwise known as FTPES (not to be confused with SFTP or SCP), and for some reason my firewall is blocking it.

The PA identifies the transaction as SSL - which I woul

...

dagibbs by L4 Transporter
  • 3322 Views
  • 3 replies
  • 0 Likes

Resolved! Panorama/ Report Creation...

...suitable for presentation. I guess I don't understand what I'm seeing or I don't understand what I should expect from Panorama. Quickly: I have 2 PA-2020's logging to a single Panorama instance where I attempt to create "consolidated" reports. Ver

...

CWillms by L2 Linker
  • 3773 Views
  • 4 replies
  • 0 Likes

Resolved! performance data

Hello team.

can you please tell me where I can have perf data  w/ Smartbits, IXIA or avalance?

I'm in the tender process to some customer, this is required from that customer like..

PA-4020, PA-4050 etc.

64 byte, 128 byte,256byte,512byte,1024byte,1500byt

...

bhlee by Not applicable
  • 2709 Views
  • 2 replies
  • 0 Likes

processor specifications?

Hi

I want to know, how many processors of each device, which marks are the processors and how fast they work?

I thank you very much any help I can give.

Best regards...

disk quota limitation for each log items.

Hi all.

PAN 4.0.x is able to change disk quota for save log. 
And Disk of PAN for save log has been allocated about 46GB as a max even though disk space is a 160GB.

If I want to change disk quota for save log, does it have size limitation?


For example..

...

willstech by L3 Networker
  • 2373 Views
  • 2 replies
  • 0 Likes
  • 24177 Posts
  • 117 Subscriptions
Top Solution Authors
Top Liked Authors
Labels