General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 194 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 876 Views
  • 0 replies
  • 0 Likes

PA 3050 Logged in user web filtering

Hi , ive got a 2 PA 3050's running well , however sometimes they seem to fail to detect the user thats currently logged in and then it follows the sert rules to allow then a "Student-level" web filtering rules whereby shopping , and social media etc

...

VICO88 by L0 Member
  • 1808 Views
  • 1 replies
  • 0 Likes

How PAN firewall deals with deceptive or invalid URL ?

Users in my  organization received spam email with embeded link URL like 

 
http://いい中古車.com
  When I check  URL category in PA test URL website it says 
"http://いい中古車.com" is not a valid URL.
 What are the option to block this other than adding it in Bl
...

Fail over with SRV records

I know this isn't really a question for PaloAlto but I was hoping I might get some insight from the community.
We are looking at acquiring a second circuit from a different ISP for a backup failover, not load balancing. I have been studying SRV record

...

Bvance by L2 Linker
  • 2215 Views
  • 1 replies
  • 0 Likes

Problem w/ user ID

Hi Gurus,

 

I'm trying to implement user id agentless.

The LDAP & User Identification are created correctly.

 

Below is the output:

J-C.Valiere.da@PA_Ecore_Master> show user group list

cn=vpn ecore employee,ou=roles,ou=global,ou=organization,dc=corp,dc=ecor

...

Resolved! Customizing response page

First time doing this and I'm fairly familiar with HTML and CSS however I'm not sure how to target Subcategories

Is there a way to target Subcategories when using a custom response page?

 

The online documentation only mentions <category/>

 

also do you u

...

Sanity Check on the Firewall

Hi team

 

 i am new to firewall. 

Please explain what is sanity check and also the packet flow in Palo Alto Firewall.

Need Flowchart for Packet flow fo Palo Alto Firewall

Resolved! Asymetric Bandwidth On IPSEC VPNs and MPLS Tunnels

We are having unidirectional problems with our site to site circuits bandwidth. I am not sure if this is a PAN problem or a problem with the providers. It’s interesting that IPERF shows slowness to the remote site on MPLS but on IPSEC the slowness is

...

traffic_examples_2017-12-12_14-43-38.jpg
BrianRa by L3 Networker
  • 6375 Views
  • 7 replies
  • 0 Likes

Resolved! ECMP Weighted Round Roubin

Hi,

 

I have a case where we have to PA FWs and there is 3 connections between them,

1- Two Microwave Links (Up to 100mbps)

2- One DSP Link (Up to 10mbps)

 

There is a total of 3 IPSec Tunnels and i'm using weighted round robin, however, i don't know how t

...

Resolved! What to do when IPSec VPN proxy IDs are the same?

Hi folks,

 

We have several IPSec VPN connections and luckily so far all with unique Proxy IDs.

I am trying to prepare when I create a new one and has the same Proxy ID as another.

I see this article and talks about creating a NAT both ways.

https://live.

...

OMatlock by L4 Transporter
  • 5490 Views
  • 5 replies
  • 0 Likes

User-ID

When enabling user-id where does it check against to get the information to identify  the users? I have it turned on for serveral zones and it only seems to work on the VPN user-id's.

jdprovine by L4 Transporter
  • 10964 Views
  • 42 replies
  • 0 Likes

PAN DB URL Filtering - HA

Has anyone in an active/passive HA cluster experienced all urls logs being catergorized as 'not-resolved' after failing over to the passive box? We have had this happen multiple times now, to fix the issue we have re-download the seed database under

...

clewis1 by L3 Networker
  • 2116 Views
  • 2 replies
  • 0 Likes

Decryption problem

We have such a problem with Microsoft Exchange OWA which we have recently published through Palo Alto.We have installed certificates with private keys,created necessary rules for PBF and NAT.

Everything is working fine except decryption.We can see in

...

CC.png
Radmin_85 by L4 Transporter
  • 4677 Views
  • 6 replies
  • 0 Likes
  • 24011 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Posts
Top Liked Authors
Labels