This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4235 Views
  • 0 replies
  • 0 Likes

user-ID user mapping problems

Our PA 4.1 has problems mapping entries received from user-ID agent and LDAP queries.show user ip-user-mapping command produces following output:192.168.1.1 AD grybai\vltr12345678 Here grybai is our NetBIOS domain name for domain and vltr12345678 is sAMAccountName attribute of user object in LDAP.However command show user user-IDs (which...

SimasK by Not applicable
  • 3889 Views
  • 3 replies
  • 0 Likes

Resolved! Please suggest about mac-address control

Hi expert , I would like to know about suggest mac-control because my customer use Fortinet which use device control and I will replace and migrate to Palo-alto if that possible about control this thing . Thank you

Block "internet-communications-and-telephony" but allow Skype4Business connections

Hi community Has anyone of you already had to deal with a request to generally block the URL category "internet communications and telephony" but at the same time allow connections to Skype for Business services of other companies?The only way I can think of about this is to manually maintain an exclusion list ... Thanks for your input.Remo

Remo by L7 Applicator
  • 3869 Views
  • 1 replies
  • 0 Likes

Guide to FTPS?

One of our partners is switching it's service to FTPS, Does anyone know of a decent guide on implementing FTPS? I saw a brife article by "sdurga" but it's not very detailed. We don't presently do any SSL decryption so unsure of what we need to do and what effect it may have on other parts of the system??? Thanks Robin

TRAPS Logs 4.1.2 to panorama 8.0

Hello, I have tried push logs to panorama by KB link but I have still same error message "Connection to pan.xxx.xx:23001 failed.I am using TCP 23001 without SSLDo someone have same problem? https://www.paloaltonetworks.com/documentation/41/endpoint/endpoint-admin-guide/reports-and-logging/forward-logs-to-panorama/enable-log-forwarding-to-panoram...

How to limit global protect for specific android/ios users?

I have an interesting scenario. We have windows users accessing global protect. I am looking to buy gateway license to enable a set of users(10) out of 400 users to use android/iphone to connect to vpn. We have IBM MaaS360 MDM installed on phone to collect mobile attributes. Is there a way I can enforce a policy to limit specific users to use m...

Tunnel Monitor

Hi Members While setting up the Tunnel monitor, what would the destination IP on the ipsec tunnel. Is it the IP of the peer? and where does the alert gets generated, within the PA system logs? Regards,

R_Sharma by L2 Linker
  • 2949 Views
  • 1 replies
  • 0 Likes

Resolved! Logging Searches

Is there a way to log or record user searches on the firewall or panorama for auditing purposes? There are a lot of information in the Monitor tab that can be potentially misused, so we'd like to record the searches in that tab. Thank you.

Resolved! packet drops on traffic going through IPsec tunnel.

Hi,We are getting packet drops on traffic going through IPsec tunnel.We have checked ISP link but there is no drops on ISP link even no load on it. Tunnel is aslo up but getting intermittent drops on traffic goint on IPsec tunnel.We have checked both end firewall but no sucesses.Kindly help.uleThnaks & RegardPradeep Chaugule

Resolved! Custom Reports takes ages

Greetings All,I am presently running PanOS 5.0.4 on a PA-500 HA. When I try generating a custom report for "URL Log" for a period of 7 days for Top 50 grouped by Top 50 groups with the URL consisting of porn and category not equal to web-advertisements, it takes ages to generate the report i.e. approx. an hour and then when I try to export in e...

After upgrading to 8.1.1 VPN always on pre-logon->user-logon failings

Wondering if anyone else has seen this? We upgraded to 8.1.1 from 8.0.8 this morning and immediately had users reporting their VPN client prompting for credientials over and over again forever. The firewall says invalid username/password hwoever we can cerifiy this is not the case using the CLI test commands... Rolling back to 8.0.8 resolves the...

commit_warnings_on_8.1.1.png
hshawn by L4 Transporter
  • 3585 Views
  • 5 replies
  • 0 Likes
  • 24358 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks