This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! Security Rule order

Lets say I have rules set up like this...First rule uses a URL Filtering Profile on just port 80/443, and another rule below it that uses the Antivirus and Spyware profile also on just port 80/443. If the first rule allows traffic through, will that traffic be checked by the next rule down(Antivirus/Spyware profile)?? Or is it, once the rule al...

jambulo by L4 Transporter
  • 6461 Views
  • 7 replies
  • 0 Likes

Resolved! User Agent timeout and expiration timer

Hello,I have configured Age-out timeout to 720min and configured "<enable-full-expire>1</enable-full-expire>" on config.xml.There is the way to check the timer for a particular users to check how last for expiration ?If I restart the PAN-Agent services, does the timer for users will be set to 720min or they will continue as no restar...

Resolved! ARP Question

When logged in via CLI on the PAN 500 and I view the ARP table, it says maximum of 500 entries. Does this mean that the PAN will only support 500 unique connections at a time?I'm still trying to track down a problem I've been having with some machines unable to actually get out to the internet for a few minutes at a time and then they suddenly ...

Weird blocking behaviour..

Greetings.I have a user who is using a specific protocol - FTP with explicit TLS or otherwise known as FTPES (not to be confused with SFTP or SCP), and for some reason my firewall is blocking it.The PA identifies the transaction as SSL - which I would expect - but both FTP and SSL is explicitely in my allowed protocol/application rukle - yet the...

dagibbs by L4 Transporter
  • 3876 Views
  • 3 replies
  • 0 Likes

Resolved! Panorama/ Report Creation...

...suitable for presentation. I guess I don't understand what I'm seeing or I don't understand what I should expect from Panorama. Quickly: I have 2 PA-2020's logging to a single Panorama instance where I attempt to create "consolidated" reports. Ver 3.1.4 for all componants.1.) I generate a raw report using filters within Monitor/URL Filtering ...

CWillms by L2 Linker
  • 4325 Views
  • 4 replies
  • 0 Likes

Resolved! performance data

Hello team.can you please tell me where I can have perf data w/ Smartbits, IXIA or avalance?I'm in the tender process to some customer, this is required from that customer like..PA-4020, PA-4050 etc.64 byte, 128 byte,256byte,512byte,1024byte,1500byte-requirement1. performance data2. latencywould you please help me out?thank youBH Lee

bhlee by Not applicable
  • 3105 Views
  • 2 replies
  • 0 Likes

processor specifications?

HiI want to know, how many processors of each device, which marks are the processors and how fast they work?I thank you very much any help I can give. Best regards...

disk quota limitation for each log items.

Hi all.PAN 4.0.x is able to change disk quota for save log. And Disk of PAN for save log has been allocated about 46GB as a max even though disk space is a 160GB.If I want to change disk quota for save log, does it have size limitation?For example..Total disk size is a 160GB.Log for traffic has been allocated 14GB and unused disk space is a 146...

willstech by L3 Networker
  • 2702 Views
  • 2 replies
  • 0 Likes

FLV Filetype not covers SWF Files

Because of the occassionally recurring vulnerability of flash players it would be a good idea to block all Flash files. Unfortunately the file type FLV do not cover all flash files, especially SWF will not be blocked by a so specified file blocking profile.How can i make a service request to Palo Alto to build such a SWF file type? Does anybody ...

mhuels by L3 Networker
  • 2567 Views
  • 2 replies
  • 0 Likes

Resolved! Advice on upgrading HA pair

I have read the couple of docs regarding the upgrading oh HA pairs, but I was more interested in actual user experience with the process. Does anyone have any sage advice for me as I plan my own upgrade event? I will be taking my PA500's from 3.1.6 to 3.1.8. I thought about moving to 4.0.1, but I hesitate to go to a .1 version of anything and...

Resolved! Password encryption when using RADIUS

I have looked through the RADIUS configuration guide located at https://live.paloaltonetworks.com/docs/DOC-1701, and I was wondering about the requirement to enable unencrypted PAP authentication. We are subject to PCI Data Security Standards compliance, and one of the requirements is that passwords never be transmitted in clear text across a n...

Resolved! Unknown Virus

Hi all, I came across this "virus" alerts on PAN-OS 4.01. What does that mean ? There is no info available for these ID's....

gafrol by L4 Transporter
  • 13019 Views
  • 8 replies
  • 0 Likes

Resolved! Security policy using group in negate form

Hi,is it possible to create a security policy with user/group with NOT form?for example : LAN => WAN !domain-group any all-app denyMy task is to create a rule in order to block all known users except those belongs to a specific domain group indentified correctly in the PAN GUI via LDAP handshake.I've tried introducing a simple "!" si...

zanonibs by Not applicable
  • 4882 Views
  • 2 replies
  • 0 Likes

PDF Summary Reports

Hello,Does anyone know if there is a way to export all PDF Summary Reports at once off panorama? Please let me knowThanksPaul

Resolved! same zone and throughput

Hello guys,My question is about a Palo Alto PA-500.The firewall througput is around 250Mbps, and 100Mbps with inspection of packets.I have 1 Firewall PA-500, with 5 interfaces (L3):Eth1/1: Untrust zoneEth1/2: DMZ ZoneEth1/3 to Eth1/5: Trust zoneWhat about the throughput between 2 interfaces (L3) in the same zone ?As far as I understand, this tra...

  • 24381 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks