General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Custom Category block per default

Hi

 

When I create a custom URL Category, it is automatically added to all URL profiles with action set to "none".

Can I set this default action to "block" - that means, the new URL category will be automatically added to all URL profiles with action se

...

Forward Trust Certificate greyed out

Hi

I have an enterprised signed CA Certificate and also intermediate certificate. But when I install either of these, it shows that cert is valid but I cannot mark the check box for Forward Trust Certificate. It is greyed out. I can only add self sign

...

Global Protect IP assignments

Its seems with the 4.1.4 client then when a user connects and gets an IP address that the client remembers the IP.  I have an issue where that has happened, but the user got it out of the wrong pool and I can't seem to find a way to get it released.

 

...

gzygadlo by L1 Bithead
  • 1698 Views
  • 1 replies
  • 0 Likes

Captive Portal on second firewall

Hi community

 

Most of you know about the captive portal feature on paloalto firewalls, to get user-ids for not yet somehow authenticated users. All this is also well documented exept this situation: 

I was wondering if it is possible to configure the c

...

Remo by L7 Applicator
  • 1261 Views
  • 1 replies
  • 0 Likes

About side scrolling in the UI

Hi. I'm used to do side scrolling in Chrome by using this combination: shift + mouse wheel.

 

But when I try that (for example in the Policies tab) i get "diagonal" scrolling.

 

I think that current implementation of scrolling relies on javascript. You s

...

Mac OS High Sierra Virtual keyboard problem

I use Mac OS High Sierra 10.13.6 (17G65) and GlobalProtect version 4.1.2-11. I use an Apple Bluetooth wireless keyboard and track pad.   I have a physical disability and use the virtual keyboard that comes with Mac OS High Sierra.  GlobalProtect is p

...

Resolved! Top Talker/Conversation in Paloalto 5220

Hello All - How to generate Top Talker report for a particular period. The Report should contain as below

 

Source IP address

Destination IP address

Bytes

Services/TCP UDP Port numbers

 

These are the minumum filed should be in the Report. Can you pleae hel

...

FTP Data Transfer very slow through Palo Alto

Dears

 

I created Local ftp over Tls through Palo alto . I published this server and create both nat rule and security policy rule and i am connecting from internet using filezilla but the transfer rate is very slow 25KB/Sec . I have dedicated leased l

...

How to configure QoS with a limit per user

I am looking to configure our Palo Alto firewall to limit every user on our network (approx 5,000) to 10Mbs or less. I have a 1Gbit pipe. The documentation I have seen so far has shown how to do this for 1 person.

 

How do I set it up so that 1 rule co

...

ggranular sharepoint filtering

I am trying to implement granular url filtering within sharepoint site but firewall is considering it as a generic. Eg: https://xyz.sharepoint.com/pages/department/* is the url I want to allow and block rest of sharepoint. Whenever I try this link,Fi

...

DMZ with multiple VLANs, multiple Zones?

If you have a DMZ behind the Palo and it contains multiple VLANs or sub-interfaces, would you create multiple Zones(one for each VLAN)? Or create a single "DMZ" zone and apply that to all of the VLANs?

jambulo by L4 Transporter
  • 3772 Views
  • 4 replies
  • 0 Likes

Disk quotas can not be computed due to disk

Hello Team,

We have seen in the PA 5200 series that the following log appears: "Disk quotas can not be computed due to disk" It appears just after the boot in the system logs. Have you ever seen this log? What it means? Is dangerous for the firewall?

P

...

ccoquis by L0 Member
  • 2638 Views
  • 3 replies
  • 0 Likes
  • 24297 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels