This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4254 Views
  • 0 replies
  • 0 Likes

PAN AGENT FLAPS

Hi,The user to ip mapping in the pan agent flaps frequently.It gets established and disconnects frequently.Any specific reason for this? There is no firewall installed in agent.

blocking parent domain n allowing child domain in URL

hi,i have specific url filter requirement,the parent domain should be blocked,but child domain should be allowed for specific users.For ex: www.apple.com should be blocked for specified users but www.apple.com/iphone should be allowed for another group of users.

LDAP: Step by Step Guide needed

Hello,i am looking for a step by step configuration guide to use LDAP users for SSL-VPN authentication and captive portal authentication.I am confused by the "allowed users/groups" lists. How do i use them and what happens, if i leave them blank. I used LDAP for authentication on other platforms before, but i am not able to get it working on PAN...

patrick by Not applicable
  • 6797 Views
  • 2 replies
  • 0 Likes

PAN_agent NETBIOS Probing

Hello, from DOCs on teh Palo Alto site is not clear for me what NETBIOS probing on the PAN_Agent 3.0 does ?Since the login is checked on DC reading security log messages, what is the purpose of the NETBIOS probing ? How does it work exactly ?

Resolved! Crashinfo as important file

Hi,When I entered the command "show system files" on my PA-2050 it showed me/opt/dpfs/var/cores/:total 4.0Kdrwxrwxrwx 2 root root 4.0K Jun 30 11:54 crashinfo/opt/dpfs/var/cores/crashinfo:total 0/var/cores/:total 589Mdrwxrwxrwx 2 root root 4.0K Jun 30 11:52 crashinfo-rw------- 1 root root 157M Jun 30 12:01 core.3417-rw------- 1 root root 151M Jun...

Resolved! Double running Pan Agent - Precedence

Hello,We have Pan Agents running on 2 servers - querying against the same list of AD controllers. Is there a precedence that the PAN devices will utilize if the Pan Agent logs have 2 entries for the same IP - but not the same user - or none?For instance one Pan agent has a listing of "192.168.1.10 to _unknown_" and the second Pan Agent has "192...

MGoodnow by L4 Transporter
  • 2883 Views
  • 1 replies
  • 0 Likes

FTP Brute Force Attempt vulnerability protection

I enabled "FTP Brute Force Attempt" (ID 40001) vulnerability protection, but my FTP server logs are still filling up with unsuccessful brute force login attempts. I've tried "drop", "drop-all-packets", and "reset-both" but it doesn't seem to make any difference.For example, last night's ftp server log shows 810 unsuccessful login attempts within...

dbaumann by L1 Bithead
  • 7099 Views
  • 3 replies
  • 0 Likes

Resolved! PAN agent 3.1.1 connectivity problem

Hi All,I am using PA 2020 and running v3.1.2 with PAN agent v3.1.1. However, the PAN firewall cannot get the info from agent with below error. It capture from PAN agent log file.2010 05 26 15:08:37, New Connection(10.123.10.107:39564) Socket(652)2010 05 26 15:08:38, SSL read error in pan_host_agent_rcv_data -2-16-02010 05 26 15:08:38, Connection...

how do I get a pcap of threat on PANOS 3.0.x?

Dear manager.I trid to find command on PA using panos 3.0.8 for packet capture of threat but could not. and I couldn't find any information in this community.I wonder that threat pcap is being used only PANOS 3.1.x? or having a different command?Thank you.RegardsRoh.

ttongfly by L3 Networker
  • 2650 Views
  • 1 replies
  • 0 Likes

BGP authentication

I have an RFP with a requirement for BGP support RFC2385 MD5 signatures within BGPv4. Can PAN-OS 3.1.2 do this?

KatanaNZ by L3 Networker
  • 3373 Views
  • 3 replies
  • 0 Likes

server load balancing on PA-4020?

I'm working on a Data Center redesign. One design we are considering will require replacing a core switch which currently gives us the ability to load balance a few sets of systems (within a set, not across) by defining an outwardly facing IP that balances traffic to N "inside" servers. This balancing also allows for a weighted balance (ie Ser...

bhelman by L2 Linker
  • 2548 Views
  • 1 replies
  • 0 Likes

Windows EXE Data filter

Howdy,Quick question: Does anyone know how to filter on just Windows Executable (EXE) in the data filtering log? Thanks in advance!Ebowd

ebowd by Not applicable
  • 2615 Views
  • 1 replies
  • 0 Likes

Resolved! Brute force and scanning signatures

Box: PA-2020 (probably all)OS Version: PANOS-3.0.6 Hi! I have some questions and suggestions for the threat-ips part of the box. 1. Ability to view settings for scanning and brute force signatures. - What are the settings for these signatures? I cant find for instance how many attempts/ips/ports is needed for the signature to trigger. 2. Ability...

u2521 by Not applicable
  • 878733 Views
  • 13 replies
  • 1 Likes
  • 24362 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks