This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 678 Views
  • 0 replies
  • 0 Likes

Create a rule

Hi,

is there a way to create a rule like this?

if

( session_end_reason eq aged-out ) and ( zone.dst eq SERVER ) and ( app eq incomplete ) and ( rule eq MY OUTSIDE RULE ) and ( bytes eq 308 )

block the IP for 300 seconds

s_quasar by L3 Networker
  • 2350 Views
  • 3 replies
  • 0 Likes

Resolved! Global Protect Agent Compatability

This is probably a relatively simple question and I think I know the answer but would like to confirm with the wider community.

 

We currently have Global Protect Client 3.1.1 active on our Firewalls. We are looking to go up to the 4.0.x branch of the

...

Panorama License Upgrade

I am currently running Panorama with a 25 device license limit, and I have purchased and need to upgrade to the 100 device limit. It seems the auth code for the 100 licenses is the same as the auth code for the 25 licenses.

When I go to Panorama, Lice

...

Resolved! Palo stops identifying users in traffic logs

Hi, 

 

we realized that Palo Alto suddenly stops identifying users. We can see an example in this traffic logs.

 

In this screenshot, we see how the user is being identified but there are connectiosn where its not appearing.

 

sometime running show user ip

...

Screenshot1.JPG

customize widgets of the GUI

Hello everybody,

 

one of my customers wanted to expand the size of certain widget. for instance , system log panel, since they don't see the GUI at any time everyday. some of logs would be missed.

do we have a way to expand the widget's size and have i

...

DannyDai by L1 Bithead
  • 1958 Views
  • 1 replies
  • 0 Likes

license transfer failed, device now stuck

Hey out there

 

I have had a failed attempt at transferring a license to a spare device. 

 

The original device is still listed, with its licenses in tact under "devices", however the spare device no longer shows up in the "spares" list, it is in the dev

...

Resolved! How to settings NAT and Application Override?

Hi all.

 

How do I settings NAT and Application Override?

 

PC-A  :201.xx.xx.182

  |

Palo  :210.xx.xx.168

          :210.xx.xx.169 -> 192.168.1.10   and TcpTimeout 4000ms

          :192.168.1.1

  |

Server-A  :192.168.1.10

 

Set Policy is

  Allow From 201.xx.xx.18

...

awawa100 by L2 Linker
  • 3302 Views
  • 3 replies
  • 0 Likes

Resolved! Access during lunch time

Good morning,

 

i wish know if it's possible to allow a websites during a period of time ( example between 12:00 & 14:00 PM) and then reblock the access?

 

 

Thanks in advance for your Reply

 

 

Esteban.

Resolved! Setting-up Palo Alto Firewall without NAT Policy

Dear all,

 

I am a newbie and currently at the first phase to learn Palo Alto Firewall. I am setting-up a simple virtual network topology using VMWare Workstation as follows.

 

 

As you can see from the diagram, there are two zones which are labeled as Tr

...

Drawing1.png
hibagus by L2 Linker
  • 3270 Views
  • 3 replies
  • 0 Likes

Resolved! Linux VPN connectivity to a PAN FW in FIPS Mode

Good morning. I have a situation where I have a bunch of linux clients that need to be able to VPN into an environment protected by a PAN Firewall in FIPS mode. With FIPS mode enabled on the firewall, the ability to use 3rd party vpn clients via the

...

wkintz by L2 Linker
  • 2225 Views
  • 2 replies
  • 0 Likes

URL Filtering category “command-and-control” missing

Hello

 

I'd like to prepare for new category “command-and-control” I have two  firewalls one with BrightCloud and one with PA url filtering database. Both with 7.1.11 PANOS and latest url filtering database but when I try to change default action for t

...

2017-09-20_085752.png
_slv_ by L4 Transporter
  • 3094 Views
  • 4 replies
  • 0 Likes

Mitel Border Gateway / Teleworker

Hi all,

I'm having a problem getting Mitel's Border Gateway (formerly known as Teleworker) working properly. For those not in the know... Mitel is a large VOIP phone system company and they have various addons, including a server which would typically

...

UKRB by L3 Networker
  • 5855 Views
  • 5 replies
  • 1 Likes
  • 23961 Posts
  • 113 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks