This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4111 Views
  • 0 replies
  • 0 Likes

Resolved! Vulnerability protection ip exception

We have our regular penetration tests coming up and we need to allow the IP addresses that are doing the testing to scan our network. Is there a way to create an IP based vulnerability protection exception? I know how to create an exception for a specific threat, but is there a way to allow a specific IP or set of IPs through the vulnerability p...

Rule bypassed when specific ip entered for destination (PanOS 8.1)

I have a rule that has been failing to allow connections to the internal system. To test i've set up the rules below. (IP's obfuscated)When I run> test security-policy-match source 1.1.1.206 destination 2.2.2.226 protocol 22the response is"External-TEST-OPEN; index: 2" { I am currently able to connect from external to internal with the Extern...

rwolsen by L1 Bithead
  • 3843 Views
  • 4 replies
  • 0 Likes

Panorama Security Profiles Problem - Pushed to device

hi,I am facing a strange Problem in my LAB environment. I have created some File Blocking, WildFire and Data Filtering Profiles in VM based Panorama (9.1.4) and Pushed to PA-200 (8.1.16). The profiles in Device seen very strange. Here Sample images are attached, help required to resolve this issue.

2020-09-19_17-09-47.png
2020-09-19_17-09-53.png

UserId Agent stating connections port 135

Hi, We need to know why our UIAs are starting sessions to INTERNET in port 135. how can we mitigate this flow? WE disblae UIA in INTERNET zone but we still see these sessions. Here you can see the kind of sessions: any idea?

UBE1.JPG
BigPalo by L4 Transporter
  • 3154 Views
  • 3 replies
  • 0 Likes

Interstate DR setup with site replication.

Hi All, We are currently in the build process of a interstate warm DR. Our primary DC has a pair of 850s while the interstate has a pair of 820s. I have begun implementing Panorama to manage both sites, both devices are configured with a simple clean config currently running on the DR 820's. We will be using VMware site recovery manager to move...

Panorama doesn't load on firefox

Hi All, I have been struggling with this issue for few months now.The panorama VM site just doesn't load on my system, using firefox browser. It shows blank white page and after few refreshes of the page (and praying - please load this time), it finally loads but way too slow to be functional.I have tried changing browsers, as many suggested, bu...

Fatema by L2 Linker
  • 6009 Views
  • 6 replies
  • 0 Likes

IPSEC Tunne with IBM cloud

HI I have setup a tunnel with IBM cloud and tunnel is UP. However I am unable to ping from both side. Routing and security policies are configured correctly, I can see on firewall logs byte sent is there but byte received is zero.There is no traffic arriving from IBM cloud device to palo alto firewal, I suspect issue from IBM cloud side. I am n...

Wildfire File Check

Hey Community, maybe someone can give me a hint or help about the following Topic: Does Wildfire re-checks Files after we have got a verdict ? For example, if a File is uploaded to Wildfire and the verdict is Benign, but after some Time something has changed in this File and it now has a malicious behaviour, does Wildfire checks the File after s...

Prevent User Traffic from Proton VPN Application

Hi All, Just wondering if anyone has a solution in creating either an application id for proton vpn, and or other methods in preventing users from bypassing the palo firewall. https://protonvpn.com/ I have discovered today that this application is not being blocked or denied access from internal users.ThanksRegardsDaniel

DWilkin by L0 Member
  • 6273 Views
  • 2 replies
  • 0 Likes

URL Filtering Log - MAC Address

Good morning, We are trying to leverage as much functionality from our PA FW right now. At the moment we are using 3rd party filtering and 3rd party captive portal. The challenge is always matching the URL filtering logs with the user mac address. Is there a way to see the MAC address of a client from the URL filtering logs?

btolsta by L0 Member
  • 3014 Views
  • 1 replies
  • 0 Likes

UserID agent - different two major

Hi, Just to confirm. it would be compatible this:UserIdagent in version 9.0.xand FWs in version 8.0.13 WE need to upgrade FWs to version 9.0.x, and we are thinking to upgrade first UIA, but we are not sure about compatibility in UIA two major higher.

BigPalo by L4 Transporter
  • 1829 Views
  • 1 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks