This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4239 Views
  • 0 replies
  • 0 Likes

Microsoft glitch

anyone aware of Minemeld downloading a blank FQDN file then passing it to Palo Alto? for ofcie365, for whatever reason Minemeld is unaware that Microsoft has a glitch and the FQDN file is blank. Would either Minemeld or the Palo Alto’s have a way to detect that the Microsoft site has a glitch and a blank file could be avoided? any idea ho...

PA-VM Cannot ping eth1/2 internal interface

Hi Guys, I am running a PA VM with a VM-100 license on vmware workstation 12.5. I have the mgmt interface bridged to my network and can access the PA GUI, CLI and the internet. For my internal interface i have setup eth 1/2 to vmnet3 and unchecked the "connect as host only adapter". Also on the vmnet3 i have setup a DSL(**bleep** small linux) ...

vmnetcfg_2017-10-22_09-54-29.png

File blocking in windows shares

Hi Guys,Please need your support in blocking files when clients tries to copy files from local system to a shared folder on a server.I want to just allow text files and block all other files from being copied from local to remote server. Thanks

mahmoodm by L3 Networker
  • 2825 Views
  • 1 replies
  • 0 Likes

Resolved! Decrypt inbound inspection and panorama

Hi I can't seem to configure inbound decryption because I need to select a cert, but there is nothing in the drop down list ! is it just me ? Certs are kept in templates not device groups so seems a bit strange . Alex

Palo Alto Forward Proxy?

We presently leverage a fwd-proxy solution that a selection of hosts (2000-3000) on various networks pass through in order for us to funnel them to a few IP's and enforce a more STRICT URL policy at the perimeter. The hosts are managed through GPO. My question is will PAN or has PAN developed the capability to take the role of a fwd-proxy server...

Web Advertisement URL Filtering

I have enabled URL filtering to block web advertisements, but it looks really bad cosmetically on the users end when they get to a web site where the advertisement should be there is big texted block page. Anyway we can eliminate the block page for web advertisements or make this look "prettier"

Using file blocking and wildfire profiles together

Hi Guys, Please can someone explain me why we would use the file blocking profile as well as the wildfire profile on the same security rule.What i understand is that once the file is blocked then no need to send it for the wildfire analysis..Please correct me. Now what will happen if the file is allowed,will it be sent for analysis and meanwhile...

mahmoodm by L3 Networker
  • 10726 Views
  • 15 replies
  • 0 Likes

Resolved! Ports required to register and activate Panorama

Hi folksJust sanity check required here, make sure i'm not missing something.with regards to: updates.paloaltonetworks.com Can I please ask community to confirm only Port 443 is required, as I currently have FW blocking Panorama registrastion process. Thanks in advance !

nawaza by L2 Linker
  • 3079 Views
  • 2 replies
  • 0 Likes

Enable Multicast IGMP proxy

Hi all, I've a PA-3020 and i'm trying to configure multicast between 4 zones.All zones are directly connected to the PA.ZoneA -> There are all my HDMI - WIFI adapter (Airtame)ZoneB -> Users BZoneC -> Users CZoneD -> Guests When an user is in ZoneB, or C or D and executes Airtame software, it starts a multicast discover to find all HD...

Resolved! Global Protect Client and KRACK WPA2 exploit

Will the GP VPN client provide encryption for WPA2 sessions comprimised by the recent KRACK method? Does that cover all the OS varients - Win, Mac, IoS, android? I realize that only covers traffic routed back to the firewall.

NeilR by L2 Linker
  • 3110 Views
  • 1 replies
  • 0 Likes

ALG (Application Layer Gateway) and Oracle

Hi, I've an application who has to query an Oracle database to get information from it. There is a PaloAlto firewall between my application and the DB. I actually reach the database, but I can't collect the information that I need. Making a quick tcpdump of incoming packets on the server in which my application is running, I noticed on wireshark...

Block Cyberghost IPs

I see a lot of threat (thousands in a few minutes) to one of my webservers from IP 176.10.115.140.This IP belongs to cyberghost, so probably someone used this to hide his own IP and attack our webserver.Is there a way to block this traffic (before the threat prevention blocks it)? I know I can try to block this ip (or even the scope), but when s...

Sjoerd by L2 Linker
  • 5040 Views
  • 2 replies
  • 0 Likes
  • 24358 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks