This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4468 Views
  • 0 replies
  • 0 Likes

SSL VPN Client Compatibility

We have a customer using SSLVPN for users and 3rd-party peers.A 3rd party of theirs is using the SSL VPN client. It doesn't seem to work when co-existing on a PC with other clients on it (Cisco, Checkpoint and others) but does work if it's the only client software on the PC. Can anyone confirm compatability of the PAN SSL Client with other clients.

Managing policy with Panorama - what is best practice?

We are looking at deploying multiple firewall instances managed centrally by Panorama, and would like to maintain a global baseline policy across all of them.We recognize that regional instances will have specific local policy requirements not shared globally, so we have the option of either implementing them directly on the firewall, or instead...

KGC by L3 Networker
  • 3752 Views
  • 1 replies
  • 0 Likes

Panorama - Master device

Hi,could anyone tell me what does really mean the voice "Master Device" in device group configuration in Panorama?Unfortunately the only documentation about this says:"[...] select a masterdevice from which the user information will be retrieved from [..]What does user information mean?Thanks

Resolved! Panorama on Vmware - memory usage

Hi Guys,We have installed Wind 2008 server, with 20 GB Ram with 800 Gb HDD for Panorama.But when we configure panorama, it does not show that it can use anything more than 3.6 Gb of Ram.We have installed VM ware Server, which on Vmware site says would support up to 8 GB ram.But in our case, the Panorama cannot be modified to anything more than 3...

ta185020 by Not applicable
  • 4323 Views
  • 2 replies
  • 0 Likes

file blocking(file types) question.

hello all.quick question.in the File Blocking -> File types, probably we don't support "txt or text" extention as a supported file types..do we have any specific reason for this?but when it comes to Data Filtering, there is "text/html" File Types that is available.would you please teach me the implict meaning of this one?thank you very much....

bhlee by Not applicable
  • 3302 Views
  • 2 replies
  • 0 Likes

Captive portal not requiring password with user id

Hi,We've implemented a PA4020 box in a v-wire configuration with another jack on the box configured as an L3 in order to have captive portal functionality. The reason is that there are multiple computers that are logged in to with generic accounts, and we want to track individual users web traffic. Captive portal is being used as a redirect with...

jasbeck by Not applicable
  • 5278 Views
  • 3 replies
  • 0 Likes

Issue creating multiple DMZs with layer3 interfaces

I have an issue with getting 2 DMZs working in layer 3 mode on Palo Alto version 3.1.7.I have set up my first DMZ and can communicate perfectly with the internal network. When I setup a second dmz (using completely different interface ports), but exactly the same configuration I cannot communicate from the internal network to the new dmz. Funnil...

ailfionn by L0 Member
  • 3983 Views
  • 4 replies
  • 0 Likes

PAN-OS 3.17 - High Availability - Not Sync Properly

I am configuring 2 PA 2020's for a customer and am having the following problems w/the HA pair once built. Has anyone came across this issue?***** Text below was sent to my internal technical team *****I have HA setup, configured and the failover active/passive tested okay w/no issues. However the synching of the running config is having issue...

jpeadro by Not applicable
  • 6201 Views
  • 6 replies
  • 0 Likes

Response page with button continue?

Hi,Is it possible to make in response pages the button "continue"? I want to make a response page warning that this url it's not permitted, but if the user wants to continue press this button.Thanks

COMIP by L2 Linker
  • 3177 Views
  • 4 replies
  • 0 Likes

About Data-filter function for Korean language.

HelloI tested Data-filter function that can recognize English character with regex.But Korean language with regex was not recognized by Date-filter function.I think PA cannot recognize double bytes character such as Korean, Japanese and Chinese at Data-filter function right?We need PA to recognize 2 bytes character at Datafilter function.Can you...

ttongfly by L3 Networker
  • 2727 Views
  • 2 replies
  • 0 Likes

about FAST FLUX attack for BOTNET and spreading malignant code.

HelloNowadays BOTNETs are using FAST FLUX technic that makes change regularly their Hyper Link, URLs and IPs interval about 2-5 minutes. Also I guess you known kind of above attack. so It could not be prevented denying IP address, URLs and others.I wonder that PaloAlto device how protect and prevent fast flux attack for BOTNET activity and sprea...

ttongfly by L3 Networker
  • 2541 Views
  • 2 replies
  • 0 Likes

QoS Profile Classes - Maximum Egress (Mbps)

In looking at the documentation for configuring QoS, I'm not clear on the QoS Profile Classes/Maximum Egress value. Is this PER SESSION or TOTAL? We're playing around with limiting (before we block it entirely) P2P traffic. I would like to knock the user down to something low (like dial-up speeds). So do I set this at Class 8 and .05Mbs or s...

bhelman by L2 Linker
  • 6681 Views
  • 5 replies
  • 0 Likes

Resolved! Default Wire Policy Question

We're putting in a 4020 in Wire mode and to start I dont want to block anything. I just want traffic to pass through so I can gather stats. I am assuming my policy will be something like this:TRUST UNTRUST Any Any Any AcceptUNTRUST TRUST Any Any Any AcceptLook right ?Thanks,Justin

jhickey by L3 Networker
  • 3672 Views
  • 1 replies
  • 0 Likes

Resolved! Disable logging for specific users

Is it possible through rules to disable logging for specific users? We have a child protection devision in our police dept that uses peer-to-peer and bittorrent -- which makes our threat level sky rocket. Is there a way to prevent that traffic for those specific users from showing in ACC?

  • 24379 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks