General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 404 Views
  • 0 replies
  • 2 Likes

Resolved! URL Filtering - is this necessary - need clarification

My predecessor managing the Palo firewalls always entered a website/URL four times in the URL Blocklist using the format below as an example:

 

netflix.com

*.netflix.com

netflix.com/

*.netflix.com/

 

Is this really necessary?

 

Doesn't *.netflix.com

...

Windows User-ID Agent Access is denied

I'm setting up User-ID.

 

  1. i have a windows server 2012r2 domain controller, and a windows server 2019 domain member for the agent software.
  2. I have configured a service account with user rights assignment to allow logon as a service on the agent host. 
...

Resolved! Upgrading PanOS from 9.1 to target version 10

Hello Bros'

               currently we are in the PanOS version 9.1.x and according to this link https://www.paloaltonetworks.com/services/support/end-of-life-announcements/end-of-life-summary this version will be EOL by 12/2023.

from this I can und

...

URL list to block AI online tools

Hello Community,

I know there is a new application for AI tools, but its just for Chatgpt and I already have a DENYALL plus a special filter for new Applications using the Filter:

 

However does anyone have a comprehensive URL list for AI websites?

...

OtakarKlier_0-1683730824509.png

External list not populating

I have a simple ask to pull a list of IPs from an external txt file into a PAN.   I can reach the URL and its simply a text file with CIDRs separated by lines.  However, when looking at the list entries and exceptions its blank.   I seem to have the

...

drewdown_0-1621012597299.png
drewdown by L4 Transporter
  • 9085 Views
  • 8 replies
  • 0 Likes

Allow WeTransfert download but block Upload

Hi,

 

i will try to block upload and allow download. I would try to use app-id but the two app-id download and upload depend on wetransfer-base.

 

Example :

 

If im allowing wetransfer-download and im blocking wetransfer-upload and wetransfer-base : 

...

IT-DSIC by L0 Member
  • 1339 Views
  • 1 replies
  • 0 Likes

Split-tunnel not working properly

Hi folks,

 

Our customer configured split-tunnel on VM to include only certain IP addresses and domains and want to exclude any other traffic, so exclude options are blank. It seems that some traffic is still routed through tunnel (f.e.Telegram, bitt

...

Resolved! How to filter traffic log by non-empty user

Hello

How to filter traffic log by non-empty user name in Source User field?.

I have Captive Portal for uers, but some exeptions for printers and other stuff that isn't able to logon. Id like to filter traffic and get only traffic that isn't authentica

...

_slv_ by L4 Transporter
  • 4967 Views
  • 3 replies
  • 0 Likes

Resolved! Can Panorama M-200 support PA-5410

I'm upgrading to PA-5410 and I can't find the documentation showing if the M-200 supports this device. Is there a link that shows what PA devices are managed by each Panorama device? I've looked everywhere online and can't find anything.

Resolved! Simple IPsec tunnel interfaces not passing MAC address

Good afternoon,

 

I've got a simple site to site IPsec tunnel in non production that I'm having a problem with.  Currently I have the mgmt interface up.  I also have my trust/untrust interfaces connected to a Cisco switch on the appropriate VLAN's fo

...

danoman2 by L3 Networker
  • 1879 Views
  • 4 replies
  • 0 Likes
  • 23694 Posts
  • 109 Subscriptions
Top Solution Authors
Labels