This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4111 Views
  • 0 replies
  • 0 Likes

Resolved! AV version 349

The Release Notes for AV version 349 are empty - no new viruses and no new old viruses. At 66MB is should be a large update. Is version 349 suspect, or are we ok to install it? Thanks --

cshep by L1 Bithead
  • 2535 Views
  • 1 replies
  • 0 Likes

Resolved! Changing the URL for whois lookups

Hallo! I'm trying to figure out the format of ip-address-lookup-url which defaults to http://www.networksolutions.com/whois/results.jsp?ip= The Network Solutions site is not that useful for addresses allocated to RIPE, APNIC etc so I tried to specify a custom URL using ip-address-lookup-url in the CLI. If I specify "http://www.example.com/uri...

jojo by L0 Member
  • 3760 Views
  • 1 replies
  • 1 Likes

Is ther an OSPF issue in PAN-OS 3.1.5

Hello,We were doing some tests on ospf, and we noticed that the firewall dont flush his ospf adjacency table even if a nheibour goes down, and this for a duration of one hour, in wich it continue to include the wrong information (concerning the gone neibour) into it's advertisement, wich cause inconsistency in routing politique.Is ther any idea,...

asia by L3 Networker
  • 3552 Views
  • 3 replies
  • 0 Likes

Resolved! Virtual Wire - Guide?

We have a PA-500 that's in L3 mode with a simple ethernet1/1 (trust)and ethernet1/2 (untrust) setup.I want to add a virtual wire to do IPS inspection on traffic to a DMZ network that is currently in front of the PAN, and where it would be a lot of effort to bring it fully behind the PAN.I've found a guide that's geared towards 3.0 (we're on 3.1....

Resolved! Feature Request - DNS name as source/destination

It would be very useful to use a public DNS name as a source address or destination address directly in Security Rules. Currently, a domain/category etc.. can be blocked or allowed through the URL filter as a destination. However this can make the single outbound rule function as an end allow and end deny. This is a challenge if you need additi...

nrouten by Not applicable
  • 4081 Views
  • 4 replies
  • 0 Likes

More granular with Vulnerability Exceptions?

When adding a Vulnerability Exception, is there any way to make the exception more granular? (being able to add the exception along with an IP host or range, source or destination IP, zones, or virtual systems.) For example, If I wanted to ignore a certain vulnerability that is causing false positives and is coming from the inside of the networ...

jambulo by L4 Transporter
  • 4255 Views
  • 3 replies
  • 0 Likes

Recommended max user per Platform

Hi everybody,is there an best practice or recommendation for how many usersyou should take which platform?For example:until 200 user take a PA-500greater 200 and less than 800 user take a PA-2020and so on!Kind regardsChristian

indevis by L2 Linker
  • 3872 Views
  • 2 replies
  • 0 Likes

Packet Capture instance within Details of Traffic Log

Hello,What is the significance of the "green down arrow" packet capture within the "Details" field of the Traffic Log? We have no packet capture defined and it only shows up randomly for certain connections. Is this an automatic output if there are issues within the session? Thanks!Cheers,Mike

MGoodnow by L4 Transporter
  • 4088 Views
  • 2 replies
  • 0 Likes

Honeynet off of PA

Hello All,I have just started configuring PAN 4020 for the first time - a newbie - planning to run it as virtual-wire. However, I was informed that the FW supports hybrid routing - i.e. l2, l3; my question regards a honeynet, that I want to hang off the PAN - has anyone done this, and if so could you provide suggestions, documentation, links, e...

tchong64 by Not applicable
  • 2716 Views
  • 2 replies
  • 0 Likes

Resolved! SSL VPN client support - Apple iPad?

Does anyone know of a way to get an SSL VPN established with an iPad?I've managed to make it work with XP, Windows 7 (32 and 64 bit) and OSX, but I don't think the iPad is supported.Is this likely to be on the roadmap, or failing that is there an alternative method of getting a VPN connection to an iPad working with PanOS?Thanks

dagibbs by L4 Transporter
  • 4938 Views
  • 3 replies
  • 0 Likes

Resolved! URL Group Management

Question - I have a default URL profile for all departments blocking a vast number of categories. I want to allow contain sites for other groups say sales, admin, IT, surveyors... Do I need to copy all the URLs or can I set a profile that simply adds the extra URL allows for the specific group to a rule? Currently I can only seem to create wh...

djmac by Not applicable
  • 3441 Views
  • 1 replies
  • 0 Likes

FTP slow through PA-500

Hi,We have our PA-500 set up as follows:Ports 1 & 2 as VWire connected to our firewall with AV and malware scanningPorts 3 & 4 as L3 for our user traffic, scanning AV and Malware and URL filteringWhen a user uses FTP to send files to servers on our DMZ through the L3 connection they are only getting 2-300kbp/s throughput, but if they use...

lhank by L0 Member
  • 6859 Views
  • 4 replies
  • 0 Likes

eDirectory V7.3

Has anyone tried the UserID agent with V7.X? I know its only supported from 8.8 but has anyone had a go with V7.3?

djmac by Not applicable
  • 2897 Views
  • 2 replies
  • 0 Likes

Ultrasurf blocking

Hi, We have PAN 500 with the firmware version of 3.1.2. It faild to identify the new version of ultrasurf (Ultrasurf version 10.02).How to identify and block the Ultrasurf by paloalto.is there any other way to block it. pls help me.

PAN Agent Settings

We are implementing the PAN User ID agent and we were wondering what everyone else was doing.. did you just leave it as the defaults?

network by L0 Member
  • 3299 Views
  • 2 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks