This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4127 Views
  • 0 replies
  • 0 Likes

ACC - session number meaning

Hi, Does anyone know what exactly session number indicates under ACC? For example, we have a specific appwhich has constantly around 250K sessions on the firewall. However when I click ACC and set time as "last 15 minutes"for this specific APP, I see 20-21k sessions for the last 15 minutes which doesn't make sense. I wonder how I can see the s...

Resolved! SSL Decryption & URL Filtering License

Hi All,To enable SSL Decryption and to make use of URL categories to allow or block traffic based on the URL categoy , does URL filreting license is required or SSL Decryption can be used fully without URL filtering.RegardsSam

snasheet by L0 Member
  • 6053 Views
  • 3 replies
  • 0 Likes

so TLS 1.3 got IETF branded

hey there, since tls 1.3 is now a ietf standard, is there any use running ssl-decryption in the close future?as far i understand 1.3 documents, it "looks like" 1.2 for the firewall, so there's no way to just block 1.3 and force both parties to downgrade to 1.2, or i'm wrong? any news/tech docs from pan about the 1.3 "issue"? so longo/

ADK999 by L1 Bithead
  • 8790 Views
  • 6 replies
  • 0 Likes

Resolved! HA Active/Passive MAC address

Hello - In PaloAlto 5220 appliance configured in Active/Passive mode, both the Firewalls do have the same MAC address on interfaces. For example ETH 1/1 of active and standby Firewall have the same MAC address after cluster/HA was created. These the switchport connecting the StandbyFirewall doesnt learn the MAC address of the Paloalto interface....

Redirect Users to GPCS Portal for Agent Download

I am trying to figure out a way to automatically get users to my GPCS portal so they can download agent. I have tried setting up the captive portal but that doesnt seem to do more than authenticate my users so i have user-ID info. Would there be a way to do this with URL Filtering or some other mechanism? Use-Case: User is attempting to visit...

PA200 not enought network port

Hello everyoneI have a PA200 which has only 4 network ports. But now I have 2 direct internet connections and 2 4g connections and 1 is uplink to my network. Would it be possible to connect a port of the pa200 not directly to the router but to a small 8port switch to which my two routers are connected? These have the IP 192.168.5.1/24 and 192.16...

Lotus Notes decryption

We have a potential customer who would like to analyze email attachments in sandbox. They are using Lotus Notes as their mail application/server. Has anyone tried decrypting Lotus Notes traffic? Because if this doesn't work the only solution is a client based sandboxing solution.

santonic by L6 Presenter
  • 6158 Views
  • 9 replies
  • 0 Likes

Swapping the roles of Firewalls in HA Pair

Hi Guys I want to swap the Active/passive roles of the Firewalls in HA pair and let it run for couple of weeks.I know that can be done by 'suspending the role' from GUI and from CLI too.want to be careful about pre-emption and donot want to break the HA pair.Does suspending teh device on active means forcing the device to be passive plus taking...

R_Sharma by L2 Linker
  • 7708 Views
  • 6 replies
  • 0 Likes

Blocking XPS file types

As of late, Ive been seeing more and more xps file types tied to phishing attempts. PAN does catch it "Microsoft Phishing Site Detection", but as a for production. XPS files are not needed. But as simlar files types are list to be blocked "pdf's, etc", theres no option to block XPS file types? Could this have been added in a certain OS version? ...

k.truex by L1 Bithead
  • 3257 Views
  • 2 replies
  • 0 Likes

Resolved! Mining Domains from mixed IP/Domain List

Hi guys, I would appreciate some help withe this issue. I wanto to mine domains from a list that has IP/Domais mixed. The list has on the top a short description whose lines start with the "#" character. Thats fine, I can use the "ignore_regex ^#" to avoid it. But the list is composed by: 10.200.1.36 domain1.com172.31.31.31 domain2.com192.168.0....

Minemeld and production installation

Hi, I'm considering how to do some of the following, if anyone has advice or links to documentation I'm not finding I would appreciate it: Export the configuration in a way that any local custom miners are also backed up, meaning the restore is a literal one liner command or something along those lines. The export backup is a manual click and wo...

chirss by L3 Networker
  • 4564 Views
  • 1 replies
  • 2 Likes

Resolved! Panorama VM-Series Multiple Interface support

Hi Guys, We are planning to deploy virtual Panorama for one of our customers on ESXi platform. One of the requirements is that customer wants to have read-only access to the Panorama management. So we were discussing the solution to attach two interfaces to the VM - one for management access to the Panorama (routed to our internal NMS network) a...

what is the best for social-networking category ,Decrypt or no decrypt

Dears In my company ,unfortunately, allow facebook.com website we note when do "SSL Decryption" for social-networking category ,There is huge utilization on CPU (Up to 85%) what is the better for this case as design : Decrypt Facebook or no decrypt ? if we do "no-decrypt" ,Can palo alto to apply the policy of deny for some application on facebo...

  • 24336 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks