This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4116 Views
  • 0 replies
  • 0 Likes

Identifying applications inside ssl without decrypting

We have a large amount of ssl traffic which we would like to better break out and identify for clearer reporting. For the most part this is inbound traffic destined to our public application servers, so we know what it is without decrypting it, but it's all lumped together with other "ssl" app traffic in the reports.Can this be achieved with an ...

KGC by L3 Networker
  • 2688 Views
  • 1 replies
  • 0 Likes

Application vs Service

I have a server that I can create a rule with Applications (e.g web-browsing, ssl), but I also need to open up specific ports (e.g udp-20). Do I need to create 2 separate rules (ie are the Application/Service fields an "and") or can I use 1 rule (Application/Service fields are "or"). Right now, I have one policy, but the traffic is still being...

bhelman by L2 Linker
  • 3400 Views
  • 2 replies
  • 0 Likes

Resolved! Permitted IP : Documentation wording

Hi,In the version 4.0 admin guide , the description for permitted IP address in Device > Setup is as follows."Permitted IP Addresses Enter the IPv4 or IPv6 addresses of any external servers that are used to provide updates to the firewall through the management ports."Maybe its just me , but I got a bit confused because of the term "provides ...

Custom Application: No Scroll option for Value: Version 4.0

Hi,On version 4.0 if you try to create a custom report , select App subcategory > select operator > and try to choose the value associated with the sub category, you will not be provided with a scroll option. You have to expand the window to see values that are hidden.Screenshot attached.Tested using Chrome on Ubuntu and Windows 7 Firefox...

Resolved! PAN release 4.0 and NAT feature

Hi all,With this new release, is it possible to define destination NAT rules based on source region criteria ? for example : ASIA => NAT1, Europe => NAT 2 and so on....Thanks a lot.

bdaussin by L0 Member
  • 3729 Views
  • 4 replies
  • 0 Likes

Panorama Security policy & Filtering

I may be being a bit thick (entirely possible). But, when I'm in the security policy on Panorama (pre rules) i want to be able to filter only the particular rules that are on a particular target vsys. Currently I have 2 virtual systems on a single PA4050 - but the rules for both are in the same policy. There is a filter bar at the top of the scr...

fmd by L3 Networker
  • 2119 Views
  • 1 replies
  • 0 Likes

Auto-Lockout Panorama

Hi All; [SOLUTION PROVIDED]I have a Panorama server I manage over VPN. basically when two people login with the same account. The account gets locked. I didnt configure it this way it is somewhat unexpected. Anyway, both users had chrome browsers and after the second logged in as the first, neither login worked. You basically need to create an...

amansour by L4 Transporter
  • 2974 Views
  • 1 replies
  • 0 Likes

LDAP - failed to create page control

Hi All,Seen this in the ldapd.log file.Has anyone come across this before ? Mar 16 10:10:03 connected to ldap server ldap://172.17.23.132 Mar 16 10:10:03 ldap cfg LDAP Server connected to 172.17.23.132:389(index 0) Mar 16 10:10:09 Warning: pan_ldap_search(pan_ldap.c:521): failed to create page control Mar 16 10:10:09 Warning: pan_ldap_search(pan...

Incomplete Packets after Service Applied

Hi There; For some sessions like availability monitors and other systems that make connections over a port that has the "service http or service-https" applied in a policy, these will fail unless you allow any service to the host or create an application override for the specific destination. This is beacuse most of these availability monitors ...

amansour by L4 Transporter
  • 3000 Views
  • 1 replies
  • 0 Likes

HSRP L2 Split Brain

Hi All; Thought I'd post this for anyone who has the PA going through a cisco HSRP L2 at the perimeter. Traffic is intermittent between the two firewalls if you leave the passvie device interface to "Auto" instead of "shutdown" in the passive state. You'll notice if you unplug or turn off the interface on the passive device that the packets are...

amansour by L4 Transporter
  • 4242 Views
  • 1 replies
  • 1 Likes

Can PA recognize user-id from AD using TAP-mode?

Hi All.I tested that PA with AD using TAP-mode.AD-agent, CLI at PA device could recognize users from Active-Directory. but Traffic logs, Threat logs, URL logs could not recognized user-id and session-browser showed user filed was unknown.I think that PA could not recognize user-id from AD using TAP-mode. is it right?Please answer about above.Tha...

ttongfly by L3 Networker
  • 4548 Views
  • 3 replies
  • 0 Likes

SSL decryption and Carbonite

SSL decryption seems to interfere with Carbonite. When the policy is enabled, the Carbonite client reports "waiting for connecton to carbonite pro backup server...". I assume I could add a rule to not touch anything in category "online-personal-storage", but I'd rather not just guess until I get it right.Has anyone had the same experience?Than...

Skype-Probe sessions increase dramtically when blocking skype

Hi All,Seem to be having a bit of a problem with skype-probe.I have a PA-500 in Vwire mode behind a PIX FW, the customer wishes to block Skype traffic.Observations:1. On the ACC the ammount of skype-probe traffic far exceedes any other traffic in terms of sessions2. The ammount of bytes of skype-probe traffic is roughly in relation to th...

Resolved! Create custom report for uploaded excel files

Hello,I would like to create a custom report that will list all the uploaded excel files from our internal network.From the 'Manage Custom Report' I am using the 'Data Filtering Log' Database to create the report but I cannot add a filtering expression for the file name e.g.(filename contains 'xls'). Is there a way to produce such a report?Kind ...

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks