This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4244 Views
  • 0 replies
  • 0 Likes

Security policies, mixing app and "service" options, ping, PPTP and NAT?

I've a bunch of Citrix servers that I need to have a security rule for. I put together an address group for their public IPs, and I see that there is a "Citrix" application definition.However, the Citrix servers also need port 8080 routed to them for the Citrix XML browsing service (these are Metaframe 4.5 servers). Normally you'd run the XML ...

bradenmcg by L3 Networker
  • 5813 Views
  • 4 replies
  • 0 Likes

Custom application

Hello,I would like to creade a Custom appl at the moment based only on host on http GET request.from wireshark I got host: www.facebook.com\r\n (see sniffer.jpg).I created a custom app as from attched Custom APP.pdfI seams that isn't reconized, what's wrong ?

Is it possible that a firewall configured in tap mode block traffic?

Hi,I have recently installed a pan device in TAP mode, with a port mirroring on a cisco switch that copy traffic to the tap interface. On the policy cofigured to allow all between TAP zone and TAP zone, i have configured default security profiles, specially url filtering profile that block some categories by default, so the question is, while be...

asia by L3 Networker
  • 5949 Views
  • 4 replies
  • 0 Likes

"Release Notes" now require a username/password

On my PA-2050 (version 3.1.4 - two boxes in an HA pair) under Dynamic Updates, for just the two Antivirus listings, when I click on Release Notes, a pop-up window tells me "The server updates.paloaltonetworks.com at updates.paloaltonetworks.com requires a username and password." The Release Notes for the Application and Threats listings both co...

cshep by L1 Bithead
  • 5744 Views
  • 6 replies
  • 0 Likes

ata2.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x0.

This morning there were 3 unusual system alerts on our PA-4020:1. /* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-parent:""; mso-padding-alt:0in 5.4pt 0in 5.4pt; mso-para-margin:0in; mso-para-m...

dbaumann by L1 Bithead
  • 4022 Views
  • 1 replies
  • 1 Likes

New to PAN - Traffic log Destination column question

Hello,What information is the Traffic Log's "Destination" column giving me?We are just setting up a pair of PA-500s and I am perusing through the traffic log and noticed that the destination column doesn't seem to reflect the website destination that a user has tried to go to. Instead it seems to only list either the DNS name of the destination...

cnelson by Not applicable
  • 2642 Views
  • 1 replies
  • 0 Likes

Cannot open group_memebers.txt file, casue is 2!

An error like in the subject occurs in the log. The UIA is unable to read group information, nor IP to Username information.Tested with 3.1.1 and 3.1.2 version. Server Windows 2003 R2. Please explain what does "cause 2" mean.Best Regards,Radek

mstawow by Not applicable
  • 2170 Views
  • 1 replies
  • 0 Likes

Resolved! Captive portal port assignment

Is there any way to change the default ports used by a redirected Captive Portal? In my test environment, the users are redirected to the firewall interface, but on port 6082. I'd like to have it redirect back to the std SSL port instead.So instead of:https://<firewall int IP>:6082/xxxjust:http://<firewall int IP>/xxxThanks,Tariq

rahmant by Not applicable
  • 4141 Views
  • 2 replies
  • 0 Likes

User is not in allowlist

Running PAN 2020 v3.1.4 using LDAP authentication with eDirectory. I have a userid that will not authenticate via Captive portal. I am seeing a " User is not in allowlist" error in the System Log. I have verified that the userid in quesiton is in Server group. That Server Group is referenced by a Security policy as the source User. I have ver...

creating custom reports

hi,if i create a cutom reports, does it take time to generate data or it gives the report immediatly from data previously collected ?i mean when i creat a custom report do i have to wait for some time then only i can generate it ot it will be immediate .

u3974 by Not applicable
  • 2936 Views
  • 2 replies
  • 0 Likes

Additional File Types

Hello,In light of the recent email worm that utilized the dowload of a malicious .scr file - is there a reason the .scr extension is not availabe in the current file extention list? Is there a method to create custom extensions? The current list is a bit limited.Cheers,Mike

MGoodnow by L4 Transporter
  • 3813 Views
  • 3 replies
  • 0 Likes

Resolved! Routing question with semi-private (MPLS) connection

Hello all,I currently have the following:e1/1 - untrusted - L3 interface - "Internet_VR"e1/2 - trusted - L3 interface - "Internet_VR"We have an MPLS network handled by our ISP that links remote facilities back to corporate HQ. For the most part the remote facilities can be considered "Trusted," but it would be nice to be able to segregate traff...

bradenmcg by L3 Networker
  • 6132 Views
  • 4 replies
  • 0 Likes

Resolved! Dynamic URL filtering???

What is it exactly - and is it recommended? I've seen some posts here that indicate turning it off solved some poor performance issues. I guess I'm asking whether I should turn this feature on and what will it buy me?Ver 3.1.4 PA 2020

CWillms by L2 Linker
  • 3780 Views
  • 2 replies
  • 0 Likes

Admin users AD authentication HELP

/* Style Definitions */ table.MsoNormalTable {mso-style-name:"Tabla normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-parent:""; mso-padding-alt:0cm 5.4pt 0cm 5.4pt; mso-para-margin:0cm; mso-para-margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:10.0pt; font-family:"Times New R...

  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks