General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Join the Fuel User Spark Event on March 19: Dealing with Threats !

 

Join us at the Fuel User Group Spark Event on March 19!

 

Get ready to ignite your cybersecurity knowledge and connect with industry experts at our upcoming Spark event hosted by the Fuel User Group. Whether you're a seasoned professional or just

...

kiwi_0-1709893724672.jpeg
kiwi by Community Team Member
  • 281 Views
  • 1 replies
  • 2 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3166 Views
  • 2 replies
  • 14 Likes

Non-RFC Compliant DNS Traffic on Port 53/5353

HI,

Continuously receiving vulnerability threat events (Non-RFC Compliant DNS Traffic on Port 53/5353(56538))  form the same source IP towards our PA public IP addresses.  The source is also clean and belongs to Vodafone ISP.

 

I could not find any o

...

The 2034-24 Cyber Elite Program Is Here!

LIVEcommunity is pleased to announce the 2023-24 Cyber Elite Program

 

Cyber Elite members are LIVEcommunity super-users and cybersecurity experts who are generous in sharing their insights and expertise to help others in LIVEcommunity. 

 

Want to

...

jforsythe_0-1692904865177.png
jforsythe by Community Team Member
  • 782 Views
  • 1 replies
  • 3 Likes

Resolved! Panorama vm running slower and slower until stuck

Hi The issue on panorama is there for long time. Anyone can help to resolve it? When panorama vm is created on eve-ng on ESXi, its speed is very slow and even stop or stuck there. I found the slowness is related with memory and storage size available

...

kevinospf_0-1693017474861.png

Issues without using Proxy IDs on IPSEC tunnel

We are running into issues with VPN when we chose not to use PROXY ids between two PA firewalls.

We see it works fine when we add the proxy ids, but we shouldn't need to if both of them are Palo Alto, isn't it?

We see phase 2 keeps failing and the tu

...

GLOBALPROTECT split navigation

Hi everyone.

 

Currently I have a request. When vpn user is accessing throught globalprotect is necessary that fullfill two thing: If device is corporate (domain) he can use internet resource enterprise internet. But, when device is personal he must

...

apazmino by L1 Bithead
  • 604 Views
  • 3 replies
  • 0 Likes

VPN Proxies

I have a VPN tunnel, which is up and running. I have two proxyIDs in the tunnel with the same local address but different remote addresses.

I can only get one proxy to connect.

For example, I currently have proxyID1 connected and can ping the other s

...

perton by L0 Member
  • 468 Views
  • 2 replies
  • 0 Likes

TS User-ID and FSSO in the same server

Good morning,

 

reviewing the documentation of palo alto and fortinet informs me that they use the same internal ports for the fsso and for the user-id and to rule it out completely I wanted to know if you could configure the fsso and the user-id in

...

review cached URL continue challenge entries

Hi Guys,

 

according to below article URL entries is cached for users per category.
is it possible to check cached entries per user/URL/category to see current state?

 

Continue Action in URL filtering not working as expected 

 

Thanks,

jogyulas by L0 Member
  • 533 Views
  • 1 replies
  • 0 Likes

Blocked traffic log has no url logged

I want to look at the url address of a data packet that was blocked by a deny rule. I had url filtering applied on the rule but the denied traffic log shows the url category but not the url address. Please advise me in logging url address for denied

...

  • 24091 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels