General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

session end threat

I had a user that was not able to connect through a mapped drive to one of our servers. Looked in the monitor and it said session end reasson threat but it didn't identify anything about the threat not cve no ID information

jdprovine by L4 Transporter
  • 1418 Views
  • 4 replies
  • 0 Likes

Blocking EXE files but allowing file names

Hi guys,

 

I'm trying to block .exe files, but allow file names for some users.

 

For example, I would like to allow the GoToMeetingLauncher.exe for GoToMeeting webinars, but the links look like the below which means it can't be done. 

 

https://download.c

...

PA-200 Slow browsing with url filtering

Hi,

 

a couple of questions on the matter:

 

- to get URL reports i need URL Filter on the rule to be on . Is this correct? Or can i have url reports without that enabled?

- with a PA200 with 1 computer connected, with URL fitler when i enter the website,

...

myrdin by L2 Linker
  • 2322 Views
  • 3 replies
  • 0 Likes

Resolved! Printing Application

I was wondering about a printing application on Palo Alto. Is there an app I can allow that allows printer ports automatically, or should I do it by creating a service?

blandis by Not applicable
  • 4081 Views
  • 3 replies
  • 0 Likes

Cannot loggin with my own personal account

Are there more people having trouble login in to websites of Palo Alto.

 

I pass my PCNSE 7 today, but login in the palo Alto Live community website, no way.

The company I work is parner, but we not owning PA firewall our self, juist managing the PA's o

...

Url Filtering Doesnt Works (not-resolved)

We faced with problem in URL filtering. While trying to open any site PA returns blocked mesage and url category : unknown.

This is the output from CLI :

 

test url nasa.gov

nasa.gov not-resolved (Base db) expires in 0 seconds
nasa.gov government (Cloud d

...

Failed to determine issuer

Hi guys,

 

I have a certificate that I need renewing as it's expired, but I am seeing "failed to determine issuer" when attempting to do this.

 

The certificate is a self-signed certificate, but it wasn't generated on the Palo, but rather an external CA.

...

Redistribute Route to GlobalProtect with BGP

Background:


We have a 172.20.0.0/16 internal network that is connected to our Amazon AWS VPC. A route is successfully advertized to our AWS peer using BGP and from the local network I can reach our server instances in the VPC. AWS resources are assign

...

Resolved! Block streaming media for sports only

Hello,

 

We have received a request to block streaming media only for the sports category.  Is that possible and how would we go about doing that?

 

We have a PA-3020 running software version 7.06

 

thank you

mike

JustMike by L1 Bithead
  • 3111 Views
  • 6 replies
  • 0 Likes

Resolved! Panorama or Firewall PAN-OS? What to upgrade first?

Hi Guys,

 

We currently have 12 Palo Alto firewall appliances and 1 Panorama management server. Panorama version is currently 5.1.9 and the firewalls are all on version 5.0.14.
We are looking at upgrading the entire estate to version 7.0.8  and it’s a m

...

Help with inter-subnet routing

Looking for input on a subnet routing, issue I am having. 

 

So I have let’s say for argument I have two zones, Trust and Untrust. 

 

Interfaces

Int 1/1 - Untrust Internet 192.168.0.1

Int 1/2 - Trust 10.8.1.20

Int 1/3 - Trust 10.26.96.1

 

I have a vi

...

ckluck by L0 Member
  • 1942 Views
  • 5 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors