This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4257 Views
  • 0 replies
  • 0 Likes

Update PA2020 from 3.0.6

Hello all,I'm doing some maintenance work on a PA2020 and just found out that it is way out-of-date. The software release is 3.0.6 and the other updates Threat and Apps is nonexistent...What is the recommended upgrade procedure for this? I would like to take this to 3.1.8Should I export the configuration and do a factory-reset to release 3.1.8 o...

Resolved! what "session table utilization" is really mean?

Hello guys.I have question about session information of PA. PA showed session table information after command "show session info"And this command contains that information of "session table utilization" but I wonder about that information about maximum session or concurrent session?Thanks.Regards.Roh.

ttongfly by L3 Networker
  • 3554 Views
  • 2 replies
  • 0 Likes

Resolved! About Link Aggregation

Hello guys.I tested about link aggregation for PA4060 that connected CISCO SW. but PA only connected "channel-group mode on" that mean disabled PAgP en LACP only with Cisco SW.I think PA should connected other devices using LACP (802.3ad) but result was not.So I want to know that configuration of guideline for link aggregation of PA.Thanks.Regar...

ttongfly by L3 Networker
  • 6725 Views
  • 4 replies
  • 0 Likes

Not able to get DNS working

Hello,After visiting the forum, i have tried all options, but still the PA 500 wouldnt talk to the outside world.Source recognition under device to routing has all been checked. But there is one peculiar error whichi am getting again and again Device: Invalid IP address (NaN), but the forum said it is a bug and i verifiedif there is anything un...

nsalian by Not applicable
  • 7111 Views
  • 4 replies
  • 0 Likes

Resolved! Palo Alto configure as access port

Hi All,It has been sometime that i haven't touch on Palo Alto device and i want to clarify whether can i configure as access port (or called as untagged port) other than normally create L3 vlan routing?I don't see such settings available on the configuration.

eugene by Not applicable
  • 4378 Views
  • 1 replies
  • 0 Likes

Resolved! Filtering On Multiple Brightcloud Categories

I have come across a site that has been assigned three categories by Brightcloud. They are Streaming Media, Adult and Pornography, and Internet Communications, in that order. In our setup we allow Streaming Media and Internet Communications but block Adult and Pornography. It would appear that Palo Alto only looks at the first category in the Br...

shopeman by Not applicable
  • 6518 Views
  • 6 replies
  • 0 Likes

Looking for options to control access to web site.

I've read the authentication doc, but have not found a suitable solution for limiting access to a single hosted site via the PA. Is there something I am overlooking?What I'd like to do: Host a test site, but only offer access to users we hand pick. It would be fine if we had to provide credentials of some sort to these users, but we do not wa...

JKoss by L2 Linker
  • 2294 Views
  • 1 replies
  • 0 Likes

Resolved! Application or Service Port

Hoping someone can help me out here:I have a system that needs to ssh/sftp/http/https.I attempt to define using applications: ssh/ssl but cannot find any for http or sftp. If I search the applipedia for the port, it shows other apps that are on port 80 or 22, however, they are not listed as http or sftp.*EDIT: found app for 80 is listed as web-b...

dc_cubed by L0 Member
  • 7961 Views
  • 2 replies
  • 0 Likes

frequently HA connection down

Hi,we have 2 PA-500 configured in active-passive mode.Since two week ago we frequntly receive na alarm about the Ha connections that goes down and then goes up.We have checked and changed the crossover cable used for the Ha interface; we have increased the parameteres for the HA checks...but the PA continue to register event like :SYSTEM ALERT :...

u4353 by Not applicable
  • 7180 Views
  • 6 replies
  • 1 Likes

Resolved! Drive-By Protection?

We're finding that there's a small amount of drive-by stuff, typically fake AV, that's making it past the content filtering, spyware filtering, and antivirus filtering in our Pan running 3.1.8.Are there any non-default settings that are recommended as, tbh, the antivirus/anti-spyware feature hardly ever seems to catch anything?Also I believe the...

Resolved! UI Functionality - Simultaneous Edits

When you are editing your policies you can select multiple rows and use the functions at the bottom. However, in my experience, if you click on a setting, such as profiles, it lets you edit just the one attribute even though you have several rows selected. We would like the ability to select rows and make modifications to all of them at the s...

dc_cubed by L0 Member
  • 2889 Views
  • 1 replies
  • 0 Likes

URL Filtering Activation

Hi,URL Filtering Activation.I have activated the URL Filtering Lic, but still when I click on Objects > URL Filteringit shows me " License required for URL Filtering to function "Also when I go into devices, and Licensing, i see the following.Date IssuedNovember 04, 2010 Date ExpiresNovember 04, 2011 DescriptionBrightCloud URL Filtering Activ...

ta185020 by Not applicable
  • 6719 Views
  • 9 replies
  • 0 Likes

Resolved! Captive Portal Ports in PANOS 4.0

Hello everybody,When enabling Captive Portal either in vWire or Layer3 mode, the Layer3 interface that is used for redirection and has the "Response Pages" option enabled, is listening to certain ports for Captive portal.Let's say that the configured hostname for redirection and for NTLM host is "palo alto" and is pointing to the IP address 10.0...

ggoudr by L2 Linker
  • 4100 Views
  • 1 replies
  • 0 Likes

Which ports are being used by PAN?

When you for example set an url-category into "continue" the continue response-page is issued through tcp 6079.However there is no need to setup a policy for this traffic since the PAN will handle this on its own.But when I enabled captive portal with ntlm-auth I noticed blocked traffic towards the L3 interface of the PAN at tcp 6080 and 7080.Wh...

rps by L3 Networker
  • 5322 Views
  • 2 replies
  • 0 Likes

Resolved! Client IPSEC VPNs

Hi, Can anyone confirm whether IPSEC VPNs(Client) be integrated with active directory for authentication ?

  • 24362 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks