This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4125 Views
  • 0 replies
  • 0 Likes

Global Protect IP assignments

Its seems with the 4.1.4 client then when a user connects and gets an IP address that the client remembers the IP. I have an issue where that has happened, but the user got it out of the wrong pool and I can't seem to find a way to get it released. Also can you use a DHCP server with Global Protect and have different IP blocks based on the conf...

gzygadlo by L1 Bithead
  • 2164 Views
  • 1 replies
  • 0 Likes

Captive Portal on second firewall

Hi community Most of you know about the captive portal feature on paloalto firewalls, to get user-ids for not yet somehow authenticated users. All this is also well documented exept this situation: I was wondering if it is possible to configure the captive portal redirect host to an FQDN which points to an interface on another paloalto firewall....

Remo by L7 Applicator
  • 1744 Views
  • 1 replies
  • 0 Likes

Mac OS High Sierra Virtual keyboard problem

I use Mac OS High Sierra 10.13.6 (17G65) and GlobalProtect version 4.1.2-11. I use an Apple Bluetooth wireless keyboard and track pad. I have a physical disability and use the virtual keyboard that comes with Mac OS High Sierra. GlobalProtect is perfectly happy to take text input from the Appe Bluetooth wireless keyboard. When I try to enter...

Resolved! Top Talker/Conversation in Paloalto 5220

Hello All - How to generate Top Talker report for a particular period. The Report should contain as below Source IP addressDestination IP addressBytesServices/TCP UDP Port numbers These are the minumum filed should be in the Report. Can you pleae help to know who to achieve this. Roughly i tried using ACC module, but i couldnt achieve. I get Top...

FTP Data Transfer very slow through Palo Alto

Dears I created Local ftp over Tls through Palo alto . I published this server and create both nat rule and security policy rule and i am connecting from internet using filezilla but the transfer rate is very slow 25KB/Sec . I have dedicated leased line 8 MB. I think that i can reach 1mB/Sec transfer rate . I disable Server response inspection a...

How to configure QoS with a limit per user

I am looking to configure our Palo Alto firewall to limit every user on our network (approx 5,000) to 10Mbs or less. I have a 1Gbit pipe. The documentation I have seen so far has shown how to do this for 1 person. How do I set it up so that 1 rule covers every person? Our users are spread across several vlan and IP ranges. Even if went through t...

ggranular sharepoint filtering

I am trying to implement granular url filtering within sharepoint site but firewall is considering it as a generic. Eg: https://xyz.sharepoint.com/pages/department/* is the url I want to allow and block rest of sharepoint. Whenever I try this link,Firewall is taking it as https://xyz.sharepoint.com/ I did test by enabling ssl decryption but of n...

DMZ with multiple VLANs, multiple Zones?

If you have a DMZ behind the Palo and it contains multiple VLANs or sub-interfaces, would you create multiple Zones(one for each VLAN)? Or create a single "DMZ" zone and apply that to all of the VLANs?

jambulo by L4 Transporter
  • 5507 Views
  • 4 replies
  • 0 Likes

Disk quotas can not be computed due to disk

Hello Team,We have seen in the PA 5200 series that the following log appears: "Disk quotas can not be computed due to disk" It appears just after the boot in the system logs. Have you ever seen this log? What it means? Is dangerous for the firewall?PANOS 8.0.10

ccoquis by L0 Member
  • 3624 Views
  • 3 replies
  • 0 Likes

Resolved! Upgrade PAN500 from 7.0.2 to 8.0

HI All I am wanting to upgrade the PAN 500 currently on 7.0.2 to 8.0 Is there a good read what major release version I have to follow to do the step upgrade? What major release i have to follow if anyone can guide me. Regards

R_Sharma by L2 Linker
  • 5687 Views
  • 6 replies
  • 0 Likes

Resolved! Blank GUI Logs

Hello,I'm running Minemeld 0.9.46 on RHEL 7.4 installed via Ansible. Everything appears to be working correctly except I'm not seeing any logs in the Logs tab or the logs page of each individual node. I am getting updated statistics for each for each node (Add/Updates/Withdraws). And the dashboard is populated with dynamic data. When I navigat...

jt1025 by L2 Linker
  • 3511 Views
  • 1 replies
  • 0 Likes

Resolved! Blocking Access for a User in a Specific AD Group

So I'm looking for the best way to block a user in a specific AD group but get them a response page while I do it. These users are going to be students who violated network policy and are being blocked to everything except some of the educational/homework sites we run. Initially I thought of just doing two security policies... a permit with FQD...

jsalmans by L4 Transporter
  • 8749 Views
  • 10 replies
  • 0 Likes

Resolved! DHCP lease assignment order

While configuring the PAN firewall as a DHCP server, is it possible to assign lease to a client starting from the highest to the lowest range? Meaning if the DHCP range for the subnet 10.10.10.0/24, is from (10.10.10.100-10.10.10.254), can the lease be given in the order of 10.10.10.254 1st, 10.10.10.253 2nd, 10.10.20.252 3rd and so on until 10....

Birajan by L1 Bithead
  • 2783 Views
  • 2 replies
  • 0 Likes
  • 24336 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks