This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1696 Views
  • 0 replies
  • 0 Likes

Resolved! Do PAN devices support blocking Countries by IP?

In our firewall rules, we would like to be able to block access from certain countries.  I know this available in several products including pfSense - http://doc.pfsense.org/index.php/Country_Block

Is this something that your devices currently support

...

nat failover ?

hi,

is it possible to do a nat failover for two server e.g :  one static nat from 1.1.1.1 to host_1 in case of the host is down ( link or system crash) the nat will change to host 2 instead of host_1.

attached simple diagram of the iissue.

Backup IPsec tunnel to home site ASA

I have a remote site with a PA500 and two ISPs.  I would like to have all the browsing traffic go out ISP2.  I want an IPsec tunnel traffic to go through ISP1, unless ISP1 service goes down.  The home site has an ASA, and I can put a second IP in it

...

Resolved! log exports - Traffic vs Data

What is the difference between a Traffic Log vs a Data Log?  I've tried searching and I'm not finding anything.

Also, will the PA present any kind of error if it is unable to ftp the logs to the destination (3.1.7)?  I just discovered I don't have log

...

bhelman by L2 Linker
  • 2275 Views
  • 1 replies
  • 0 Likes

Resolved! Is SSL VPN support SSO with web portal?

Hi all

My customer want to sent client info ID/Password to PA’s SSL VPN from their web auth portal.

They found PA always no repond after sent client ID/Password.

We also try to sent it(client info) to PA web logon management from their Web auth portal b

...

Resolved! Application snmp requires ldap

Since application and threads update 241-941 we get the warning:

"Application 'snmp' requires 'ldap' allowed in the policy, but 'ldap' is denied in  ...last rule"

In my humble opinion is "snmp" udp:161 while "ldap" is tcp:389, and of course the applica

...

mhuels by L3 Networker
  • 4965 Views
  • 7 replies
  • 0 Likes

SSL VPN and supported client

Hello all

quick question. one of potential customer want install SSL VPN on their POS system. but that systems hosted on the Windows CE OS.

on the manual it's look like we only support "Windows 7, Vista and Windows XP".

my question is, do we support Win

...

bhlee by Not applicable
  • 2435 Views
  • 2 replies
  • 0 Likes

Question about SSL-VPN Client 1.3.0

I noticed there is a new version of the SSL VPN clinet version 1.3.0

Trying to find documenatation on it

when I click on the release notes in software manager it mentions PAN OS 4.02

is this a 4.02 ONLY release of the client

are there any bug fixes or im

...

Resolved! SSL-VPN Administrator or User?

Hi All,

I know that the logged in account must be an administrator to successfully install the SSL-VPN client upon first login, but do all SSL-VPN sessions have to use a local administrator account to work successfully? Even after the initial client s

...

4.0.2 vs 4.0.1 package update size

Hello,

I noticed a good size difference in package size from .1 (276MB) to .2 (141MB).  When updating from 3.x - is it recommended to start with 4.0.1 and then go to 4.0.2? Or going right to .2 is acceptable? Thanks!

Mike

CRHC by L4 Transporter
  • 3326 Views
  • 3 replies
  • 0 Likes

Source Host and Destination Name Resolution in Reports

Hello,

This inconsistancy has followed the 3.x code into 4.x code for me.  When I create a report and "run" - I can get source host and destination name resolution.  If I export to PDF or CSV - the name resolution is replaced by the straight IP.  Howe

...

CRHC by L4 Transporter
  • 3090 Views
  • 3 replies
  • 0 Likes
  • 24217 Posts
  • 117 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks