This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4131 Views
  • 0 replies
  • 0 Likes

Resolved! NAT question

Hello,I have migrated a configuration from an netscreen firewall.On the netscreen on the outside interface (against the internet) there are two mip ip's configured, one of the MIP ip's are on the same subnet as the ip on the main ip. But the other IP is on a different subnet.Like this:main public ip: 192.168.1.1/29MIP ip one: 192.168.1.2MIP ip t...

NSS Labs report

Hello guys,I was reading the recent NSS Labs Report and noticed at page 5 the following:'security effectiveness was excellent. Using the default policy, the PA blocked 56,6% of attacks. After rapid tuning that consisted of changing just three settings within the policy by a Palo Alto engineer the effectiveness improved to 93,4%'.Does anyone know...

IPsec VPN

/* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-qformat:yes; mso-style-parent:""; mso-padding-alt:0in 5.4pt 0in 5.4pt; mso-para-margin-top:0in; mso-para-margin-right:0in; mso-para-margin-bottom:10....

roshithw by Not applicable
  • 3651 Views
  • 1 replies
  • 0 Likes

Resolved! Active Directory 2008 Supportability

Hello,New to PANs (PA2020s) and trying to find if the Agents are usable with AD 2008. We are migrating and want to ensure we are not about to break the authentication.Thanks in advance.

Memory Utilization on PA-500

Is it normal for a PA-500 to have memory utilization in the 95 percentile?Just recently unboxed a unit and after all the applicable updates, available memory seems to be around 15 - 20 megs (out of 1000).

Security Certificate Error

We've had a few instances where we are on websites, the one I have witnessed is simply cnn.com, and then while I am browsing I'll suddenly get a certificate error well after the page is loaded that is generated by the PA-500 unit. I did not see this on the eval unit which was running 3.1.1, our purchased unit is running 3.1.2. Has anybody else...

ScreenOS to PAN VPN?

Tomorrow I intend to try and get a Juniper SSG talking to our PAN so I can have a VPN tunnel between two sites.The PAN is already configured using the defaults in the example PDFs on the knowledge base.Does anyone know if there are any specifics that need to be configured on the SSG?There are a few examples in the ScreenOS manual and I'm hoping ...

Resolved! URL Filter Conflict - Which Wins?

I've done some testing but I just want to be 100% sure of this.Let's say I have a URL Profile that blocks shareware sites.Let's say I create a custom URL category that contains shareware sites, and on that URL Profile I set my custom category to "allow".It seems to allow the sites in my custom category.This is what I want, I just would like to c...

Firefox Download being classified as Trojan-Downloader/Win32.banload.aumr.

The Firefox 3.6.9 downloads from any of the mirros is being classified as Trojan-Downloader/Win32.banload.aumr, threat ID 2549505. Problem on Mozilla's end?Here's the data from the PCAP:fox/releases/3.6.9/win32/en-US/-Type: application/octet-streamMZ......................@...............................................!..L.!This program cannot b...

mharding by L4 Transporter
  • 4303 Views
  • 2 replies
  • 0 Likes

Resolved! Speed limit each user ?

Is it possible to ratelimit each user in a usergroup or adressgroup using the QoS feature ?I want to limit each user to examle 3 mb/s maximum (all kind of traffic)Regards Stig

stig by L1 Bithead
  • 6882 Views
  • 3 replies
  • 0 Likes

Resolved! “Here you have” Virus (aka W32/VBMania@MM)

New virus, described here:http://www.avertlabs.com/research/blog/index.php/2010/09/09/widespread-reporting-of-here-you-have-virus/Is this virus recognized by the PAN devices? I'm not sure how to look that up, or I would do so myself.If not, any thoughts on mitigating risk? I don't see .scr files in file blocking.Thanks,Grant--------------

Resolved! Range of logs stored on PA-4050 appliance

Hi All,How do I find out the date range of the logs still be stored on an appliance?If its FIFO Id like to know how far back the current logs on the box go back."show system logdb-quota" will tell me what space is being used and by what,but not when it starts and ends.Cheers, SteveR

KatanaNZ by L3 Networker
  • 3720 Views
  • 2 replies
  • 0 Likes

Resolved! URL Filtering Logs and policy

I just started up our PAN FW and playing around with the default url filtering policy. Currently it will only log things in the URL filtering logs if it comes across a request that is in the block category.How do i write the URL Filtering profile so that we will log all types of URL access, blocked or not?

Block Web Links in Web based Email Portals

Hello,Is it possible to create a policy that would block a user from clicking on an embedded URL link in an email from a web based email portal such as Yahoo or Gmail?I am aware how to limit uploading and downloading of attachements through File Blocking. But still need to block the clicking of links. Could I create a Custom Signature for Vuln...

MGoodnow by L4 Transporter
  • 4231 Views
  • 3 replies
  • 0 Likes
  • 24337 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks