This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4234 Views
  • 0 replies
  • 0 Likes

Missing IP's in Minemeld feed

We pull Zeus IP's using minemeld. Statics page shows the current number of IP' 109, which is the same as hosted on this URL. https://zeustracker.abuse.ch/blocklist.php?download=ipblocklist Every few months i got notified to comunication with one of theses IP's and when i check the zeustracker.abuse.ch shows the IP in the list but the output is ...

image.png
image.png
raji_toor by L4 Transporter
  • 2817 Views
  • 3 replies
  • 0 Likes

Resolved! Understanding Throughput

i need help with understading how threat prvention throughput works ,i mean for all integrated features(ips,antivrus,..) what is the throughput of each alone ,as in specsheet only total throughput is mentioned

2FA on both portal and gateway

If you have two factor auth on the portal and the gateway without using the cookie or passing the auth from the portal to the gateway will it ask you to authenticate twice?

jdprovine by L4 Transporter
  • 6550 Views
  • 15 replies
  • 0 Likes

Resolved! DShield list

Hi guys, recently I've noticed a strange behaviour in my DShield miner (dshield.block prototype, https://www.dshield.org/block.txt). I have 2 MM (0.9.46 and 0.9.48), and both present the problem. Time to time, I can't precise the period, in fact it is not regular, my miner presents 0 indicators mined. First, I would like to know if somebody else...

GlobalProtect Client with Android 9 (pie)

Is PAN abondoning the GP mobile client on Android? The last update was a while ago, the UI is just horrid and it crashes under Android 9. Several reports of the issue have been made but all is quiet so far. Does anyone have any inside info? I was using XAuth but after upgrading to 8.1.3 I am getting funny behavior so I was going to give the GP c...

hshawn by L4 Transporter
  • 3056 Views
  • 3 replies
  • 0 Likes

FTPS connections are not working

Hi, We have a inbound NAT for FTPS but the connections are not working. We can not see any deny in FWs.We dont have decrypt SSL configured. I think it shouldnt be necessary, right?Policy configures has "ssl" and "ftp" allowed. this is the ftp log: Why ftps connections are not working?? any dynamic port or something like that?

Logs ftps.JPG
BigPalo by L4 Transporter
  • 4657 Views
  • 3 replies
  • 0 Likes

Resolved! problem matching rule with user-id

hello, I have a problem matching rules using user id, in uadebug.log I can se this warning:[ Warn 2813]: Device thread 1 replied get BloomFilter msg with no BFsomeone know what that means? Thanks

Marivi by L2 Linker
  • 6252 Views
  • 1 replies
  • 0 Likes

SSL proxy allocation error

I had ssl decryption in place on PA_5020 and it seems like during peak times, my internal data traffic is reaching max ssl decryption session limit and those beyond the limit are shown as decrypt error and are sent un-decrypted. Is there any solution for this besides hardware upgrade, offload ssl decrypt to proxy? Thanks.

IKE traffic recognised as unkown-udp since September 6th

Customer had an application based rule for VPN traffic. However since September 6th the traffic on UDP 500 is no longer recognised as IKE. Some VPNs stopped working, some still work even if they shouldn't really. Release notes of last 3 content updates don't mention anything about changes to IKE. Anyone has similar problem?

santonic by L6 Presenter
  • 2403 Views
  • 3 replies
  • 0 Likes

Can someone please recommend an Email Server Setting that will work for Email Threat Notifications

Can someone please recommend an Email Server Setting that will work for Email Threat Notifications on a PA-220 ?I have tried the Gmail Server - ASPMX.L.GOOGLE.COM and it is not workingPlease provide a step by step example for how i can configure email threat notificationPlease provide some email servers that does not use TLS as wellthat works wi...

GlobalProtect SSL VPN - Slow SMB Transfers

Hi. First let me say that I have managed to get some improvement to transfer speeds by tweaking the MTU setting on the tunnel interface for the GP VPN. When I first started my testing, if I copied a single large file ( a 400 MB ISO ) from a remote server share to my VPN connected workstation, it was going pretty slow, only transferring at 1-2 MB...

colesch by L2 Linker
  • 11578 Views
  • 1 replies
  • 0 Likes

Interconnect between layer 3 and layer 2 interface possible?

Is below configuration possible? 1. 1 layer3 interface act as gateway and DHCP2. 1 layer2 interface interconnect to the layer3 interface above. The computer connected to this interface can reach the layer3 gateway and IP address receive from its DHCP In short, 2 interfaces use the same gateway and DHCP.

jeremylo by L3 Networker
  • 6004 Views
  • 9 replies
  • 0 Likes

Resolved! New PA820 replacing PA500

Hi all,Just wanted to get some ideas on performance of the PA820, right now our PA500 is acting as a router/gateway to internal lan, and will be migrating to the pa820, so if I were to keep the settings, like just migrate over the configs, will the pa820 perform better as a router, cause currently some users are complaining of slow intervlan per...

cdcirexx by L3 Networker
  • 5390 Views
  • 2 replies
  • 0 Likes

show system disk-space

Is this information still correct for 7.1.16 , I am trying to plan my upgrdae from 7.1.16 to some version of 8 and trying to make sure I have enough space on the disk to do it /dev/md6 - PAN-OS Image repository.(Device/Software)/dev/md2 - Service related logs./dev/md8 - - Allocated for PAN logs./dev/md5 ...

jdprovine by L4 Transporter
  • 10412 Views
  • 18 replies
  • 0 Likes
  • 24358 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks