This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4258 Views
  • 0 replies
  • 0 Likes

Resolved! Does Palo Alto provide any protection against Dos Attacks ?

For example a basic TCP syc flooding attack. Is there a list of the type of features that are impletemted in the Palo Alto device that can be used to mitigate DoS/DDoS attacks ?If Palo Alto needs to replace the IPS and the firewall , then it is becoming a critical component in the network. I would expect DoS Mitigation an integral component of a...

Kerberos Username Format

Hi All,I've just set up Kerberos authentication and all seems to be working fine.I see you are able to use either the FQDN format of "user@company.local" or the netbios of "company\user" to login.Previously I have implimented LDAP so the user just used their nameQuestion:a) is it possible to predefine the domain so the user just enters their...

Disk space reported incorrectly in PAN-OS 4.0.1

So far we have only upgraded our Panorama to PAN-OS 4.0.1, and the first thing I noticed was that it reports available disk space incorrectly: the web interface shows pretty well the exact opposite of what is displayed via the CLI (which I believe is the correct one.)Bug?

KGC by L3 Networker
  • 7119 Views
  • 4 replies
  • 0 Likes

Resolved! PA File Detection seems not working right

PA claims to detect several DOS and Windows executable filetypes. The following filetypes are partially not really executables, but i am wondering that PA ignores (do not show any log) the types totally. (Nevertheless some of the filetypes are potentially really harmfull).I found the following behaviour of our Palo Alto Firewall (we tested with ...

mhuels by L3 Networker
  • 8553 Views
  • 9 replies
  • 0 Likes

Resolved! Panorama 4.0.3

I am having issues with commits that never complete and my jobs being "stuck" after I upgrade to Panorama 4.0.3. Here are th jobs I have after I reboot...Enqueued ID Type Status Result Completed--------------------------------------------------------------------------2011/06/20 16:45:43 5 report-pu...

Performance data for enabled only Antivirus and antispyware.

Hello All.I’d like to know PA2050 performance when enabled only anti-virus and anti-spyware. According to datasheet of PA2050, PA 2050 has 500 Mbps throughput with threat prevention that include IPS, Anti-virus and anti-spyware. But I don’t want to enable IPS module, i just want to enable anti-spyware and anti-virus.In other word, I don’t need ...

willstech by L3 Networker
  • 2564 Views
  • 1 replies
  • 0 Likes

How can i display the blocked ip from the thread block.

Hi,i put some thread protection rules against HTTP Basic-Auth brute force, and SSH brute force.One of my college did entered the password many times wrong.How can i remove an IP-address from the "blocked-ips" for n sec. and how can i display the actual blocked IPs with the expiary time ?Best Regards Lukas

Issue with PAN-AGENT

Hi guys,Pan-agent is not working as it should be.When I run the statistics command, I get the following info:admin@PA-500-BBDO> show user pan-agent statisticsName IP Address Port Vsys State Users Grps IPs Activity Cnts Link Speed--------------------------------------------------------------------...

Panagent on Windows 2008

Hi,I am getting an error when I try to install pan-agent in windows 2008. The error is "Service cannot install"2008 is a domain controller and it is a 64bit, 2gb memory server and pan agent is 3.1.2 .Please advcie

Asanka by L2 Linker
  • 2377 Views
  • 1 replies
  • 0 Likes

Multiple Internet inputs and a PA 500...

hello and thanks in advance for any help.I have a PA500 with the following interfaces active:1 External Internet (1/1)1 External internet (coming) (1/3)1 Internal(1/2)1 WiFi (1/4)1 for DMZ (1/6)1 for PCI (1/8)I'm in the process of getting a second internet connection. I'd liek ot keep both active if possible. Ideally, I'd like to keep the existi...

u7483 by Not applicable
  • 2595 Views
  • 1 replies
  • 0 Likes

Resolved! Arp Entry on 4.02

Anyone know how to manualy enter ARP Entry on a L3 Aggregate interface using CLI command? For some reason everytime I add one using the web gui it dis-appear after I hit ok. I have an open ticket with support but trying to see if anyone is experiencing it too.

friento by L3 Networker
  • 4157 Views
  • 5 replies
  • 0 Likes

Upgrade to 4.03

Does anyone have any experince upgrading to 4.03? I just saw it and there's some feature in there that fixes my issue but not really that emergency.

friento by L3 Networker
  • 3375 Views
  • 2 replies
  • 0 Likes

Mac OSX Server Open Directory

We use Open Directory as our primary LDAP service whcih normally works pretty well.I'm trying to get LDAP authentication profiles up and running and am only having limited success. By limited I mean I can authenticate a user against a simple config where I am looking for the "uid" login attribute in the users group using cn=users,dc=server,dc=my...

ethiSEC by L2 Linker
  • 4709 Views
  • 4 replies
  • 0 Likes

Resolved! Pcap exports fail

From the cli:adming@pan2020> scp export threat-pcap from 20110619 to root@linuxhost:/root/pcapsPassword: hunter2/opt/panlogs/session/pan/threat/20110619: not a regular fileadmin@pan2020>Bug? Should I feed it bran or yogurt?Edit: OS 3.1.8

nwallette by Not applicable
  • 6794 Views
  • 6 replies
  • 0 Likes

Resolved! How to set up Active Directory user ID?

Hello,I am new the Palo Alto networks firewall device (model PA-500). I have it deployed in my environment but am just letting it pass all traffic right now; I want to get a handle on the traffic before I start limiting things. In any case, I would like to have the PA-500 identify AD users and groups for our domain. I've tried to research thi...

synapse by L0 Member
  • 6705 Views
  • 5 replies
  • 0 Likes
  • 24362 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks