This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4247 Views
  • 0 replies
  • 0 Likes

Resolved! URL Filtering Wildcards?

I have a custom URL category which contained*.sourceforge.net with an action of "allow" (the normal action for category shareware/freeware is "alert".When I visited "http://sourceforge.net" it logged an alert.I had to change the custom category to contain:*.sourceforge.net sourceforge.netFor the allow to take effect.I was a little surprised as I...

Palo always resolves rDNS - any way to override?

Let's say you have a single physical host with multiple IP addresses with each IP running one or more websites/services.DNS best practice is apparently to have PTRs pointing to the physical host name, so you might have:PTR hostname.domain.com 1.1.1.1PTR hostname.domain.com 1.1.1.2PTR hostname.domain.com 1.1.1.3when your forward DNS is:A hostname...

Resolved! Custom reports

Hi, I am wondering if there is a document listing the most useful custom reports to setup.Thanks

unable to pass active directory loing in trasnparent mode

hi,recently i implemented pa-2050 in a network where they have MS-ISA acting as a proxy, the moment i installed the PA i transparent mode front of the proxy it can pass network traffic ( ping telnet etc... ) but the browsing traffic which include integrated authentication it doesnt work, if we remove the authentication from the Proxy , everythin...

u3974 by Not applicable
  • 2288 Views
  • 1 replies
  • 0 Likes

Updates - problem

Hello,I have problem with my PA-500 os 3.0.2When I try to get updates for example software I get Failed to get upgrade info. Please try later.Policy is just fine, BUT I don't see any traffic going into updates.paloaltonetworks.com.I setup filter and perform debug but couldn't see any traffic dst for updates.paloaltonetworks.com.My service router...

ifpilm by L1 Bithead
  • 2486 Views
  • 1 replies
  • 0 Likes

Zero-day Vulnerability in Internet Explorer

Microsoft released a security advisory today regarding a zero-day vulnerability in all supported versions of Internet Explorer that can be exploited remotely.We are working on creating signature to protect against corresponding attack. Please stay tuned.Thanks,Sandeep

Resolved! Colour Coding Rules?

I can put in a feature request but I figure it's also worth asking here as maybe this is just something I'd find useful, maybe it isn't..Are there any plans to allow colour coding of policies?Even on our small scale PA-500 I find it quite difficult to quickly distinguish between inbound and outbound policies if I'm looking at the full list - bei...

Resolved! Swamped with Syslog logging...

Our PAN is in an L3 config, and our syslog server is in a virtual-wire zone.Basically, if I look at monitor/traffic or monitor/session browser, I'm simply swamped with syslog messages as everything is being syslogged once as the PAN management NIC goes from trust (LAN) to untrust, then again as it goes through the vwire-untrust to the vwire-dmz....

Speed Test through Palo Alto pair

Hello group,We are in the process to set up and replace the current firewall with PA-4020 pairs . During pre-test, one thing came up. Using several Speed Test sites, the results are not what we expected, particularly the UPLOAD speeds are far off .It is a big HELP if the group let us know what are your Speed Test results comparing to the expecte...

leole by L2 Linker
  • 9420 Views
  • 7 replies
  • 0 Likes

Resolved! Commit - Error

Hi,I am getting this error.Operation : CommitStatus : FAILIEDDetails : A commit is pending. Please try later.The issue has happened once before and the only way I could fix it was a reboot, i really do not want to do that, I have waited over an hour but the issue still remains.Is there a CLI command avaible to reset this issue?ThanksDarren

djbisbey by Not applicable
  • 3623 Views
  • 3 replies
  • 0 Likes

Proxy block

Hi,we have some clever students...they have found if they get a proxy address (prior to joining our network) and add it into their firefox they are getting out on the internet and from what they say bypassing the Palo URL check.Is there a way I can lock this down, I did think of http-proxy would this do it or is there a more robust clever way?Th...

djbisbey by Not applicable
  • 3090 Views
  • 2 replies
  • 0 Likes

Exporting translations for an IPAM system

I've been working on automated scripts to export my firewall configurations, gather the NAT translations and reformat the exported data into the XML format used by my IPAM system.I've managed to automate this on our Check Points by parsing the objects.C file directly from our firewall managers - however, chopping through the PA config isn't quit...

jsilvia by Not applicable
  • 3026 Views
  • 2 replies
  • 0 Likes
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks