General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1693 Views
  • 0 replies
  • 0 Likes

OCS or Lync support

Hi all,

did anyone have any experience or customer with PAN and OCS or new MS Lync 2010?

Does PAN have signature to recognize Lync traffic?

I already know that ms-ocs-video, audio, xfer are identified, but what abount Lync?

Thanks in advance

Resolved! userid-agent vs pan-agent - what's the difference?

Hi.

In trying to diagnose a recent issue with identifying users on my SSL VPN, I deleted the user identification configuration and re-adde it.

I noticed that there are now two types in a drop down box when adding a userid agent - userid-agent and pan-a

...

dagibbs by L4 Transporter
  • 3741 Views
  • 2 replies
  • 0 Likes

SSL VPN Login history

Is there any way to increase the retention of successfull logins to SSL? I would like to retain at least 2 months if possible.

Thanks,

D

Understanding Zone Protection

Hello all,

I recently configured Zone Protection for the external interface (untrust) on a PAN-2020 3.1.6 in a vwire setup.  Initially we have configured ZoneProtection to "Alert" only.

We have set the triggers for "Activate" and "Maximum" to a figure

...

gafrol by L4 Transporter
  • 17416 Views
  • 6 replies
  • 1 Likes

Unable to Ping to Layer 3 interface

Hi , I have a Palo Alto 4020 . I have configured one of the interfaces as Layer 3 and also allowed Ping and telent on this interface . The IP given to this Layer 3 interface is 192.168.90.17 and its default gateway is the VLAN interface 192.168.90.1.

...

TFAUH by L0 Member
  • 9136 Views
  • 8 replies
  • 0 Likes

Application number discrepancy

I noticed a discrepancy in the number of Applications shown under Objects -> Applications.  At the top of the page it shows 1163 matching applications but, at the bottom right of the page it shows Displaying 1 - 40 of 1204

Could you please confirm

...

jwolach by L4 Transporter
  • 2026 Views
  • 1 replies
  • 0 Likes

Ident Agent error

Hi.

I've noticed the following error in my PA logs this morning

12/07 09:30:54

general informational general Pan-Agent read log error: 10.1.30.142 716 time(s)

However, I've checked the DC the agent is running on and it doesn't appear to have any error

...

dagibbs by L4 Transporter
  • 2514 Views
  • 1 replies
  • 0 Likes

regarding url

recently it was found that recently that sudden url sites are not being filitered , like www.vtunnel.com  is  being blocked under the Proxy Avoid and Anonymizers but https:vtunnel.bz , org etc are  not blocked . how to block them .

jerry by L1 Bithead
  • 2412 Views
  • 1 replies
  • 0 Likes

Resolved! SSL VPN and mixed authentication

Hi.

I've got an SSL VPN setup and working fine on my PA firewalls, using LDAP plugged into my AD for authentication.

I want to be able to authenticate LOCAL firewall users against this VPN configuration as well as LDAP useds.

Is this possible? I tried j

...

dagibbs by L4 Transporter
  • 3192 Views
  • 2 replies
  • 0 Likes

PA-2050 connected to Cisco 4000-series switch

Hello,

We had a problem when we connected PA-2050 appliance (PanOS 3.x) to Cisco 4000-series switch. There was simply about 30% packet loss in traffic and it wasn't usable. Then we just put some dummy switch between PA and Cisco and everything works f

...

ahtiakel by L1 Bithead
  • 4473 Views
  • 4 replies
  • 0 Likes

strange arp behaiviour

I configured PA to use my outside interface (192.168.128.61) for update checking (not management interface), after it I noticed strange arp behaiviour from PA:

00:14:40.540937 arp who-has 67.192.236.252 tell 192.168.128.61

PA tries to locate update ser

...

SimasK by Not applicable
  • 2988 Views
  • 1 replies
  • 0 Likes

2008 DC´s are not shown in PAN User Agent

Hi,

to add DC´s in the Palo UA I can push the "Search Button" with the "..." Box.

But the result is that only 2003 DC´s are shown. The 2008 DC´s are missing here.

Agnet Versiomn is 3.1.2.  Someone has an idea why this happens?

Thanks in advance.

Stefan

User activity reports on Panorama

We've just got a new Panorama and Palo Alto implementation done.

Reviewing the reporting options I noticed that a "User Activity Report" can not be requested from the Panorama server.

It can be requested from the devices themselves.

My issue with runnin

...

  • 24216 Posts
  • 117 Subscriptions
Top Liked Authors
Labels