General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

New throughput measurements values with 64KB HTTP/appmix transactions

Hi all , As all you know, the throughput measurements definition changed with 9.0 version. But there are two values forexample PA-5220 firewall throughput value is seen as 17/20 Gbs . So why we are using two values here? What does HTTP/appmix transactions mean? How we compare this new measurement with previous ? Also how we calculate this new m...

Traffic vs Threat Logs

I am searching for the reasons behind the relatively large disparity between traffic logs and threat logs for specified traffic searches in splunk. Redirected sessions cant be a contributed factor when the firewall is set to "log container page only"

Captive Portal

Dear Friends ! Good Morning,there is 2 questions regarding Palo alto 1. how to reset user session by GUI when he is login to PAN vial Captive Portal for internet Access ?2. how to ping, traceroute and other testings via PAN GUI Mode ?

How to secure PA to Panorama communication channel

Hey, can some one put some light on the authentication & authorization of the PA to Panoram ommunication channel? from what i know is that on panorama side we must have the SN for initial communication.what happens from the point that the PA first contact panorama ? what happens on regular basics on the communication between the PA and the ...

minow by L4 Transporter
  • 4218 Views
  • 1 replies
  • 1 Likes

Best way to identify Macs for URL filtering?

All the Macs are AD joined and everyone logs into the domain. Problem we are having is that after a few hours the Macs are not identified any longer and the URL filtering stops working. The Mac users are creative and get some relaxed filtering....so they can't go to sites they are allowed to go to that the general population is not. Is there a s...

Internet Access Captive Portal

Dear Friends ! i have restrice Internet Access to Clients but before they fall in to Captive Portal Page, they reach to google.com https certificate then PAN poral Certificateas well the Clients are able to ping, traceroute destinations in Internet before they login to Captive Portali would like to configure PAN in such a way to 100% restrict cl...

Resolved! Cust Data Pattern for Azure Information Protection (AIP)

Hello, We're looking to leverage Palo Data Filtering to provide some DLP in our enterprise. PANOS 8.0.12 on a 5020 pair. Microsoft shop running Win 10, and we have implemented Microsoft Azure Information Protection (AIP), which is MS's labeling/protection mechanism. MS Publishes the DLP Tag information here. They call it a 'Custom Property.'...

User ID for ncomputing environment

HI all,My customer has ncomputing (thin client) environment and all servers are Ubuntu. They wanted to implement User-ID feature in this environment. As we do not have any User ID agent for Linux, how can we get user info? Can we use Captive portal, will that work per session?Thanks,Abhijeet

DNS Security Subscription on EXISTING PA-220 Lab Appliance

Is anyone having the same problem as me? I have an existing PA-220 lab appliance (the lab SKU includes all available subs and support) that was deployed prior to the announcement of PAN-OS 9.0 and DNS Securty. I have since upgraded the appliance to 9.0, but I cannot find a way to add the DNS Security subscription to the appliance within the su...

Resolved! Is there a way to disable specific traps in PAN?

I have a long open issue with PAN TAC where the PAN 5060 is sending traps when detecting an issue with HA secondary availability. The HA is fine so these messages are just spam for practical purposes. Is there a means to disable these specific traps?

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels