This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4117 Views
  • 0 replies
  • 0 Likes

Pre-Logon Machine Certificate placement

When doing pre-logon with machine certificate, where does the certificate need to be placed? Documentation says to put it into computer>personal, but i am unable to do this via GPO directly. Can it be placed into any of the other stores?

welly_59 by L3 Networker
  • 2246 Views
  • 1 replies
  • 0 Likes

Switch Redundancy at Access Layer

This is a bit off topic, but I thought some folks might have some knowledge and wisdom to offer. Where I work we're working dilligently to provide robust resiliency and redundancy for our firewalls using dual powersupplies, HA, and multiple ISP circuits with policy-based routing for failover. Our core switching (also our core router) is also fu...

locampo by L2 Linker
  • 11379 Views
  • 12 replies
  • 0 Likes

Problems with SIP

HelloWe have 3CX server - IP telephony inside the network.When we pass the SIP traffic through PA it gets problemsWe try to connect through SIP :5060 port o outside server on ISP side but it doesnt workwe made application override and also disabled ALGIt is natted also by PA itselfhave you ever some problems regarding SIP?

Radmin_85 by L4 Transporter
  • 3069 Views
  • 2 replies
  • 0 Likes

User-ID agent and SSL Error

I have been getting a ton of email alerts with issues with user-id agent and ssl connection errors even though the status is "green" showing "connected." I have verified the cert is valid and it is a self signed cert valid until Feb 2019. I have performed the steps in the following articles to no avail: https://knowledgebase.paloaltonetworks.com...

Resolved! application dns and action reset both

need to understand deeply reset both action by PA for dns query in threat logsI know PA send the tcp fin to both ends. But client who is doing dns query if it does not get reply what does it shows there ?does the client again makes query? or does PA allow some traffic and drops some?how can i fgure this out?

MP18 by Cyber Elite
  • 8002 Views
  • 11 replies
  • 0 Likes

Resolved! Source Users and Source Users Reported as "None" By FW

Hello,I'm on version 8.1.2, in ACC tab I do have a User Activity "widget" or pane that shows Source User, Destination User, Bytes, Sessions, Threats, Content, URLs and Apps. Always the Source User, presents "None" for Source User and also I see "None" for the Destination User with the most number bytes sent (or could be received). I do have va...

Restrict network access for mobile devices

Hello, I have an environment where mobile devices are managed using MobileIron. I want to restrict network access such that the only mobile devices that can connect are managed and belong to a known user. What is the best way to approach this problem? I have done some preliminary testing and it seems that the HIP checks requiring the device to b...

mikembau by L0 Member
  • 2474 Views
  • 1 replies
  • 0 Likes

Resolved! GlobalProtect - To which ethernet interface? WAN Facing?

Greetings,I am setting up GP on a small home office PA220 . I have a single E 1/1 Untrusted L3 interface that is internet facing.My logic tells me this interface should have the GP configured on it. However, the documentation and video turtorials don't specifically outline that the GP needs to be on an internet facing interface. I have followe...

catrock by L2 Linker
  • 7582 Views
  • 6 replies
  • 0 Likes

Almost all traffic identified as unknown-tcp?

We are seeing some of our Palo's periodically logging (almost) all traffic as unknown-tcp. As the traffic is being allowed through (and logged against) rules that do not allow it we assume this is a problem with the logs, rather than traffic being miscategorised. However we do seem to be be experiencing some random issues that may, or mayt not ...

apackard by L4 Transporter
  • 5261 Views
  • 4 replies
  • 1 Likes

Resolved! Flags field in csv file

i have a question about flags in csv log. do you know what does mean Flags 0x19?in NTP OR DNS logs, flag is 0x19.Thanks.

20180802_154251.png
hbshin by L2 Linker
  • 12900 Views
  • 8 replies
  • 0 Likes

Blizzard New Game Overwatch PA not allowing voice traffic through, Even with custom service ports.

It seems that I can not seem to get the voice chat in Blizzards over watch to work through a PA. So as a test i put TCP ports 1119, 3724, 6113, 80, and udp 26503-36503 and 3724 forward through allowing any app, to the PC running the game. Still didn't make a differance. Not sure if anyone has a PA setup with users playing games behind it or no...

taviss by L1 Bithead
  • 9921 Views
  • 13 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks