This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4118 Views
  • 0 replies
  • 0 Likes

Injecting a default route into OSPF

I have an OSPF virtual router configuration with two interfaces. One interface (int1) is part of the default area (0.0.0.0) whereas the other one (int2) is not. There is a static default which points to the next hop on the non-OSPF interface network.I want to announce or generate a default route into the OSPF area and have clicked the "Allow ...

quist by Not applicable
  • 14148 Views
  • 2 replies
  • 0 Likes

IKE pre-shared key: is there any forbidden character?

Hi Everybody,when configuring an IPSec VPN between our PAN appliance and both Cisco and CheckPoint devices, we had problems with using a long pre-shared key, which included special characters too (e.g. more than 30 letters, both small and lower case, numbers, "!", "$").Is there any constraint with the key lenght, or any forbidden character?Thank...

Bucche by L2 Linker
  • 7731 Views
  • 2 replies
  • 0 Likes

Resolved! Upload page for tech support

I am really suprised that the SSL cert for the web page used to upload tech support files doesn't have a trusted cert. Is that by design, because uploading my firewall config to an untrusted SSL site makes me feel a little weird... Especially when I am sending the config to a security based company ?

PDFs and MS-updates

Hi PAN Experts,Has anybody faced problem of MS-updates and PDFs not able to go through a PAN in vwire mode ? policy is allow all in either direction. Version is 4 0 2.BR

Problem with IPSec and GRE

HelloI have a bg problemThe need is to create such a configuration: external IPSec tunnel and next GRE tunnel inside the previous one. IPSec tunnel must be created between my PA device and external gateway. GRE tunnel mus be created between my cisco router inside my network and other cisco router behind external gateway. Then there must be allow...

Revoked Certificate treating as Valid, is it a bug?

I have set up Client Certification Profile, and use in SSL VPN. I tried to revoke a cert. Firefox already able to valid that cert is invalid but PaloAlto still allow that certificate, I was able to verify from my OSCP server that PaloAlto had a successful query to my server, but I dont know what it is still allowing that revoked cert in SSL VPN.

muratahk by Not applicable
  • 5317 Views
  • 4 replies
  • 0 Likes

Resolved! Mobile Devices (Apple & Android)

Our school district has started purchasing mobile devices, the iPad2's and some Xooms.I've noticed in the Monitor logs that they don’t always fall until the default rule? So far two have been using the Admin rule which opens all but Adult content. These devices are not logging into the domain, they do not requester with DNS but they do get the...

Resolved! Application Choice in Security Policy

All,I am setting up a security policy that will allow inbound ssl traffic only to a secured web server. The NAT rule is already created but I have a question about the application choices for the security rule. If I just list ssl as the application will that work or do I also need to have web-browsing added also?Ken

tohoken by Not applicable
  • 2324 Views
  • 1 replies
  • 0 Likes

Palo Alto Site Survey

Hellofor my job, i will need to do a site for the installation of Palo Alto Firewalls (not still decided if it will be a cluster or not)Do soemone has some experience for that? What does i need to consider? Power supply, rack space, connectivity?Thanks for help

mmichel by Not applicable
  • 2054 Views
  • 1 replies
  • 0 Likes

Howto filter javascript in mail-data?

It seems to be not possible to write a custom signature, which filters out javascript in mails.The challenge is to avoid something like that:#> telnet server 25helo willimail from:<otto@lbsost.de>rcpt to:<m.huels@lbswast.de>dataFrom: Mannis Emailcheck <otto@lbsost.de>To: willi@lbswist.deX-Mailer: Mein Mailer Subject: test f...

mhuels by L3 Networker
  • 3158 Views
  • 3 replies
  • 0 Likes

Drive By Downloads

We turned on block/continue protection for .exe and PE files yesterday, but we're having issues with some sites not showing the page at all and sometimes the window is so small and not resizeable.This happens in both IE9 and Firefox 3.6.I was trying to download from cnet downloads and the links were basically all broken.I tried to download winFF...

Can you use the PANOS 3.1 style (CSS) in PANOS 4.0 GUI?

Is it possible to replace the PANOS 4.0 styles with the ones from PANOS 3.1? The higher-contrast colors that were used in PANOS 3.1 were much easier on my aging eyes. The very subdued PANOS 4.0 colors make it difficult to differentiate between different states - enabled/disabled/global/local rules for example. The new styling seems to me to be a...

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks