General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1700 Views
  • 0 replies
  • 0 Likes

QoS Profile Classes - Maximum Egress (Mbps)

In looking at the documentation for configuring QoS, I'm not clear on the QoS Profile Classes/Maximum Egress value.  Is this PER SESSION or TOTAL?  We're playing around with limiting (before we block it entirely) P2P traffic.  I would like to knock t

...

bhelman by L2 Linker
  • 5721 Views
  • 5 replies
  • 0 Likes

Resolved! Default Wire Policy Question

We're putting in a 4020 in Wire mode and to start I dont want to block anything. I just want traffic to pass through so I can gather stats. I am assuming my policy will be something like this:

TRUST          UNTRUST      Any     Any     Any      Accep

...

jhickey by L3 Networker
  • 3331 Views
  • 1 replies
  • 0 Likes

Resolved! Disable logging for specific users

Is it possible through rules to disable logging for specific users?  We have a child protection devision in our police dept that uses peer-to-peer and bittorrent -- which makes our threat level sky rocket.  Is there a way to prevent that traffic for

...

Regexp case sensitivity

I'm trying to create case insensitive regexp for data filtering, however couldn't find any standard regexp way which would work.

Also when I tried to workaround and created following data pattern [Vv][Ii][Dd][Ii][Nn][Ii][Aa][Mn] (which is perfectly va

...

SimasK by Not applicable
  • 3917 Views
  • 2 replies
  • 0 Likes

Scheduling PANOS command using ssh?

I'd like to have a command run on our PAN at a scheduled interval.

I know this can't be done "on-box" but I should be able to schedule a job to connect to the PAN and run the command.

I've been experimenting with plink and whilst I can make it connect

...

allow icmp type 3

Hello,

How to configure policy to deny all icmp types, but only allow icmp type 3. Is it possible at all?

Thanks!

ahtiakel by L1 Bithead
  • 3212 Views
  • 2 replies
  • 0 Likes

SSL VPN Problem

Hi All,

I'm having teething problems with our SSL VPN client.  The client installs fine on Win7-64 and XP.  I've followed the recommendations for Win7-64 and the installation all seems fine. Everything works fine when establishing the tunnel. My polic

...

URL Filtering - Changes in 3.1.7?

I have a PAN that has been running 3.1.6 quite happily.

We have an internal Exchange/OWA server so we have rule in place to allow inbound access to it, and the rule uses a URL filtering profile that allows only the IIS virtual directories needed to ac

...

Captive Portal & 3.1.7

Hi,

we upgraded to 3.1.7 on Monday, afterwhich our iphones and android devices failed to get through, it appeared they didn't even close as there was no evidence on the logs.

Today I rolled back to 3.1.6 and the captive portal worked again.

Anyone el

...

djbisbey by Not applicable
  • 2406 Views
  • 2 replies
  • 0 Likes

PA4050/Panorama Log Archive Strategy help

We have one of our new PA4050s running in TAP mode listening to our datacentre firewalls (the firewalls they will replace - these are ASFs running Checkpoint FW1). We are also running Panorama on test machine in our testlab. The PA4050s are logging l

...

fmd by L3 Networker
  • 5149 Views
  • 6 replies
  • 0 Likes

About regular expression at data filter for Korea SSN

Hello.

I was able to test function of data-filter for credit card number and social security number. so I created custom signature of data patterns for Korea social security number but I could not apply custom data pattern as a data filter.

PA box said

...

ttongfly by L3 Networker
  • 2297 Views
  • 1 replies
  • 0 Likes
  • 24217 Posts
  • 117 Subscriptions
Top Liked Authors
Labels