Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 160 Views
  • 0 replies
  • 0 Likes

Disk quotas can not be computed due to disk

Hello Team,

We have seen in the PA 5200 series that the following log appears: "Disk quotas can not be computed due to disk" It appears just after the boot in the system logs. Have you ever seen this log? What it means? Is dangerous for the firewall?

P

...

ccoquis by L0 Member
  • 2849 Views
  • 3 replies
  • 0 Likes

Resolved! Upgrade PAN500 from 7.0.2 to 8.0

HI All

 

I am wanting to upgrade the PAN 500 currently on 7.0.2 to 8.0

 

Is there a good read what major release version I have to follow to do the step upgrade?

 

What major release i have to follow if anyone can guide me.

 

Regards

R_Sharma by L2 Linker
  • 4503 Views
  • 6 replies
  • 0 Likes

Resolved! Blank GUI Logs

Hello,

I'm running Minemeld 0.9.46 on RHEL 7.4 installed via Ansible.  Everything appears to be working correctly except I'm not seeing any logs in the Logs tab or the logs page of each individual node.  
I am getting updated statistics for each for ea

...

jt1025 by L2 Linker
  • 2914 Views
  • 1 replies
  • 0 Likes

Resolved! Blocking Access for a User in a Specific AD Group

So I'm looking for the best way to block a user in a specific AD group but get them a response page while I do it.  These users are going to be students who violated network policy and are being blocked to everything except some of the educational/ho

...

jsalmans by L4 Transporter
  • 6081 Views
  • 10 replies
  • 0 Likes

Resolved! DHCP lease assignment order

While configuring the PAN firewall as a DHCP server, is it possible to assign lease to a client starting from the highest to the lowest range? Meaning if the DHCP range for the subnet 10.10.10.0/24, is from (10.10.10.100-10.10.10.254), can the lease

...

Birajan by L1 Bithead
  • 2217 Views
  • 2 replies
  • 0 Likes

ACC - session number meaning

Hi,

  Does anyone know what exactly session number indicates under ACC? For example, we have a specific app

which has constantly around 250K sessions on the firewall. However when I click ACC and set time as "last 15 minutes"

for this specific APP, I se

...

Resolved! SSL Decryption & URL Filtering License

Hi All,

To enable SSL Decryption  and to make use of URL categories to allow or block traffic based on the URL categoy , does URL filreting license is required or SSL Decryption can be used fully without URL filtering.


Regards
Sam

snasheet by L0 Member
  • 4323 Views
  • 3 replies
  • 0 Likes

so TLS 1.3 got IETF branded

hey there,

 

since tls 1.3 is now a ietf standard, is there any use running ssl-decryption in the close future?

as far i understand 1.3 documents, it "looks like" 1.2 for the firewall, so there's no way to just block 1.3 and force both parties to downgr

...

ADK999 by L1 Bithead
  • 6303 Views
  • 6 replies
  • 0 Likes

Resolved! HA Active/Passive MAC address

Hello - In PaloAlto 5220 appliance configured in Active/Passive mode, both the Firewalls do have the same MAC address on interfaces. For example ETH 1/1 of active and standby Firewall have the same MAC address after cluster/HA was created.

 

These the

...

Redirect Users to GPCS Portal for Agent Download

I am trying to figure out a way to automatically get users to my GPCS portal so they can download agent. I have tried setting up the captive portal but that doesnt seem to do more than authenticate my users so i have user-ID info. Would there be a wa

...

PA200 not enought network port

Hello everyone

I have a PA200 which has only 4 network ports. But now I have 2 direct internet connections and 2 4g connections and 1 is uplink to my network. Would it be possible to connect a port of the pa200 not directly to the router but to a smal

...

Lotus Notes decryption

We have a potential customer who would like to analyze email attachments in sandbox. They are using Lotus Notes as their mail application/server. Has anyone tried decrypting Lotus Notes traffic? 

Because if this doesn't work the only solution is a cli

...

santonic by L6 Presenter
  • 4353 Views
  • 9 replies
  • 0 Likes

Swapping the roles of Firewalls in HA Pair

Hi Guys

 

I want to swap the Active/passive roles of the Firewalls in HA pair and let it run for couple of weeks.

I know that can be done by 'suspending the role' from GUI and from CLI too.

want to be careful about pre-emption and donot want to break the

...

R_Sharma by L2 Linker
  • 5023 Views
  • 6 replies
  • 0 Likes

Blocking XPS file types

As of late, Ive been seeing more and more xps file types tied to phishing attempts. PAN does catch it "Microsoft Phishing Site Detection", but as a for production. XPS files are not needed.

 

But as simlar files types are list to be blocked "pdf's, etc

...

k.truex by L1 Bithead
  • 2534 Views
  • 2 replies
  • 0 Likes
  • 23597 Posts
  • 107 Subscriptions
Top Liked Authors
Labels