This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4237 Views
  • 0 replies
  • 0 Likes

Resolved! application dns and action reset both

need to understand deeply reset both action by PA for dns query in threat logsI know PA send the tcp fin to both ends. But client who is doing dns query if it does not get reply what does it shows there ?does the client again makes query? or does PA allow some traffic and drops some?how can i fgure this out?

MP18 by Cyber Elite
  • 8231 Views
  • 11 replies
  • 0 Likes

Resolved! Source Users and Source Users Reported as "None" By FW

Hello,I'm on version 8.1.2, in ACC tab I do have a User Activity "widget" or pane that shows Source User, Destination User, Bytes, Sessions, Threats, Content, URLs and Apps. Always the Source User, presents "None" for Source User and also I see "None" for the Destination User with the most number bytes sent (or could be received). I do have va...

Restrict network access for mobile devices

Hello, I have an environment where mobile devices are managed using MobileIron. I want to restrict network access such that the only mobile devices that can connect are managed and belong to a known user. What is the best way to approach this problem? I have done some preliminary testing and it seems that the HIP checks requiring the device to b...

mikembau by L0 Member
  • 2501 Views
  • 1 replies
  • 0 Likes

Resolved! GlobalProtect - To which ethernet interface? WAN Facing?

Greetings,I am setting up GP on a small home office PA220 . I have a single E 1/1 Untrusted L3 interface that is internet facing.My logic tells me this interface should have the GP configured on it. However, the documentation and video turtorials don't specifically outline that the GP needs to be on an internet facing interface. I have followe...

catrock by L2 Linker
  • 7720 Views
  • 6 replies
  • 0 Likes

Almost all traffic identified as unknown-tcp?

We are seeing some of our Palo's periodically logging (almost) all traffic as unknown-tcp. As the traffic is being allowed through (and logged against) rules that do not allow it we assume this is a problem with the logs, rather than traffic being miscategorised. However we do seem to be be experiencing some random issues that may, or mayt not ...

apackard by L4 Transporter
  • 5319 Views
  • 4 replies
  • 1 Likes

Resolved! Flags field in csv file

i have a question about flags in csv log. do you know what does mean Flags 0x19?in NTP OR DNS logs, flag is 0x19.Thanks.

20180802_154251.png
hbshin by L2 Linker
  • 13079 Views
  • 8 replies
  • 0 Likes

Blizzard New Game Overwatch PA not allowing voice traffic through, Even with custom service ports.

It seems that I can not seem to get the voice chat in Blizzards over watch to work through a PA. So as a test i put TCP ports 1119, 3724, 6113, 80, and udp 26503-36503 and 3724 forward through allowing any app, to the PC running the game. Still didn't make a differance. Not sure if anyone has a PA setup with users playing games behind it or no...

taviss by L1 Bithead
  • 10180 Views
  • 13 replies
  • 0 Likes

Application dependency behavior

Rule 1 blocks apps A & BRule 2 allows the same apps as they are included in an application filter, along with otyher apps. Why do i see app dependency warning for the apps that are blocked by rule 1, & how can i resolve this. Rule 1 allows apps A & BRule 2 allows there dependent apps. I still see warnings for app dependancy. Why? I d...

raji_toor by L4 Transporter
  • 2802 Views
  • 1 replies
  • 0 Likes

OSPF Issue in 8.1.1

Hello, I am facing a flapping issue in OSPF, where the neighbor keeps going up and down, I tried adding a static route but the connectivity still drops packets between two devices behind the firewall on one side and behind the other mpls router on the other side, I wanted to check if this is related to the bug that was addressed in 8.1.2 as bell...

u-turn - why?

Hello,i'm moving complex configuration from Juniper's ISG2000 (ScreenOS) to PA-5220 and i faced a problem with internal servers (in DMZ zone) which should be available for everyone (including our own employees) on public IP addresses. On ScreenOS it was simple:Created MIP/VIP object (server-public-ip -> server-internal-ip)1st rule from trust ...

MarcinR by L1 Bithead
  • 13540 Views
  • 9 replies
  • 1 Likes

Decryption and Firefox

Greetings From my research into useing decryptiona nd the SSl certificate.I believe I need to manually install the certificate for each user? Is there not a better way? As a School that equals 100 users and about 300 PC's. If there is not a better way then there isn't. Thanks

Wykeham by L1 Bithead
  • 4999 Views
  • 4 replies
  • 0 Likes
  • 24358 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks