General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 590 Views
  • 1 replies
  • 4 Likes

downloads time out

Greetings,

 

i built a new dmz with a short list of apps allowed in (trust) out (untrust) and am having issues with downloads initiated using http(s)

seeing the download age out. i have allowed ssl and web-browsing and  a few other apps....can anybody h

...

tcsmithh by L0 Member
  • 601 Views
  • 3 replies
  • 0 Likes

Reporting on Coin Miners

I would like to get a view on what crypto/coin mining activity is going on inside my network but there isn't an application category that covers this - they are just classified as internet-utility and have varying other attrributes.  I can't create a

...

djr by L3 Networker
  • 552 Views
  • 1 replies
  • 0 Likes

TCP session timeout behaviour

Hello,

 

I have a question about the mechanism of TCP session timeout on PA FW. Assuming that default TCP timeout on PA device is 3600 seconds. What happen after a TCP session is idle after 3600 seconds ? Does the FW send TCP RST at each endpoints ? Or

...

Pre-defines application not working ?

Apology for asking multiple question for the past one week..

 

We've define a policy to allow active-directory-base application which includes most of the AD standard ports, but the traffic is not hitting the policy, eventhough the destination ports ar

...

annielee by L2 Linker
  • 504 Views
  • 1 replies
  • 0 Likes

Resolved! Service route and DHCP interface

Hello,

 

We have PA-220 devices that are configured with DHCP interface for Internet access. We need to change the service route config for all update-related trafic (URL, dynamic contents, EDL, ...) since default mgmt interface has no Internet access.

...

Unable to access Google Drive

Hi,

Google drive is allowed in Gsuite url category but user is able to access gmail and google calendar but when try to access Google drive and Docs and sheets,it is being blocked by firewall under storage-and-backup category.

What is the possible so

...

User-ID rule to bypass HIP check not matching.

Hi all,

 

I have a rule to allow certain Global Protect users DNS and RDP traffic by matching the user-id. However, even though it looks like the traffic should match when I view the traffic log it's not?! For some users the rule works fine but others

...

Resolved! Best/Most Efficient way to view exact URLs

We're currently in the process of moving over from Cisco to Palo and are still trying to work through everything.

 

We currently have a URL profile attached to every policy and the only actions we have on categories are allow and deny. Should we set

...

bafergel by L2 Linker
  • 1183 Views
  • 3 replies
  • 0 Likes

External Dynamic List retrieval on PAN-OS 9.1.2

Hello message board, this is my first post!!!!

 

I am trying to set up a EDL feed from XSOAR into the NGFW for O365 IPv4 addresses. Tested the feed using curl, both locally and remote, and it is working. The issue is fetching the list from within the N

...

Source ip region/country showing incorrect on PA firewall

In the Palo alto firewall for the public ip 205.254.183.218 source ip region is showing as US. but user is located at India.
we have given access on firewall for source region India only for inbound traffic.

In the traffic logs source country is showin

...

SurajN by L2 Linker
  • 860 Views
  • 3 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors