General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Response page for blocked FTP, SSL, etc...

Hi all,

Why is there no response pages for users when application like ftp, ssl, etc.. are blocked?

I have software version 3.1.1. and everything works with blocking but users don't see any info about it. Problem is, that kind of traffic is blocked at

...

volksbank by Not applicable
  • 3094 Views
  • 2 replies
  • 0 Likes

Web servers redundancy inside PA with PBF

Hi, is there anyway to have web servers redundancy with PBF. What I would like is to use PBF to balance the traffic between two internal servers and, of course, monitor this servers and chnge to one of this in case the other fails. I'm testing in lab

...

Upgraded to 3.1, URL wildcards not working

Just upgraded to 3.1.0 from 3.0.6.

I had the following URL filtering profile that I used on an inbound rule with SSL decryption so that people could only connect to valid Exchange/Outlook Web Access URLs:

webmail.ourdomain.co.uk/favicon.ico

webmail.ourd

...

SSL VPN and other options for client VPN

I'm currently using a Watchguard firewall for our remote users to connect and authenticate using built in Windows (and Mac) VPN.

I have a Palo PA-500 in the Dev environment being configured to replace the Watchguard firewall, however we have come acro

...

moha by L0 Member
  • 2860 Views
  • 1 replies
  • 0 Likes

URL Filtering Profiles - Category/Action

I'm torn even asking this question, but it seems like it might be a nice feature but at the same time possibly misused. It might also be a support nightmare when people call saying they can't get to a URL.

Would you consider adding a "Block-No-Log" to

...

jmck9999 by L1 Bithead
  • 2886 Views
  • 1 replies
  • 0 Likes

Resolved! SSL VPN- Config ERROR PAN OS 3.1

Hi,

I m trying to configure SSL VPN on PAN OS 3.1 and its giving error msg even after submitting all the necessary information.

My SETUP Details:-

1: SSL VPN using Tunnel Interface ( Newly Created in Trust Zone)

2: External Interface IP

3: Created Self Si

...

How to find objects and rules using CLI?

Hello,

I need to know if there is any method to make research based on ip adresses or groups to find out witch rules are using it on the cli. In other words, how can i use the cli to search policies in witch an ip adresse or a group of ip adresses is

...

asia by L3 Networker
  • 5849 Views
  • 6 replies
  • 0 Likes

Virtual Wire DMZ - Help Please

Hoping for some clarification on using Virtual Wire to inspect traffic to our DMZ please.

Right now the external interface of our PAN has a public IP of 1.2.3.1/24.

Its default gateway is another firewall in front of it, it's internal interface has a p

...

Unable to authenticate users on Captive Portal

Hi,

We have following issue with our setup:-


1: Captive Portal is set for entire network ( 192.168.1.0) and in Active Directory the group ( IT) is choosen which will be filtered or monitored. There are two users ( user1/user2) who are member of this gr

...

User Information in Firewall Database Cache

1: Captive Portal is set for entire network ( 192.168.1.0) and in Active Directory the group ( IT) is choosen which will be filtered or monitored. There are

two users ( user1/user2) who are member of this group.

Firewall Rule :
==============

1:  Trust

...

PA-4000 series and agg/dual links

Hi,

I'm looking to upgrade my company firewall (PA-2050) to one of the PA-4000 series to be the internet gateway for all our US sites.  Anyone here is using PA-4000 with aggregate links with Cisco switches?  I'm thinking to have aggregate links for bo

...

akatev by L0 Member
  • 2329 Views
  • 1 replies
  • 0 Likes

UIA / PAN Agent to Firewall Communication

Hello,

Looking at the User Identification with PAN-OS 2.1 Tech Note rev00E 03/09, I can read :

"The User Identification Agent must have IP connectivity to the firewall management interface.
This is true even if the firewall is managed by an inline, Laye

...

  • 24296 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels