This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4141 Views
  • 0 replies
  • 0 Likes

Outbound Web Access _Authentication

Good Morning to All – Thanks for reading! I was hoping to get some feedback from the community on how everyone handles outbound web access for their users? I have an Active Directory Domain with about 300 users. We use groups from AD on the Palo device to allow users out to the web and or external resources. The problem I have been facing using...

Resolved! LACP from Palo 3020 Active - Passive to Cisco switch

Hi AllAfter some help from the Guru's.I am trying to configure LACP between PA 3020 Active / Passive and cisco switch.I have created the AE group interface Inside with the ip address.I have added 2 interfaces to the AE Group on each FW. I have created a portchannel on the Cisco switch and put the 2 ports from the Active Palo and 2 ports from the...

Minemeld no webpage anymore

Hi, I have installed Minemeld on a Ubuntu 14.4 virtual machine more than a month ago. All worked well, updates, webpage and all.Today I noticed there is no webpage anymore to login to. Ping resolves so network seems ok.I have restarted the VM and tried to update Minemeld to version 0.9.40 but that version was allready installed.Tried to start th...

Resolved! MineMeld CentOS/Docker Stability

What is the current standing of the MineMeld CentOS docker deployment model? The latest post I have seen from @lmori (29/11/2016) is that it is "quite stable now and supported". Could we get an update on PA's current stance on this deployment model? Is it production viable? Cheers

Resolved! Any Packet Lost when Changeing Interface Type from HA to Aggregate (of HA type)

We have an Active/Active PA-5050's in production with HA3 running on a single ethernet (1GB). I need to know if there will be any packet lost (HA packet forwarding) if I change this interface from HA type to AE type/AE group (e.g. ae8). Considering that this aggregated group (ae8) has been already created and have another ethernet (1GB) already ...

Mass by L2 Linker
  • 4941 Views
  • 3 replies
  • 0 Likes

New PA user and currently concerned

Hi I am a new PA user, purchased a pa-850 and 2 x PA5220's Adding these to my OSPF network, i have setup a policy "network protocols" that allows OSPF. But for some reason in my log, I get OSPF time out session and aged out sessions and sessions that have 0 bytes. So I contact support. after 2-3 weeks, they bring it up in their lab and I am tol...

Alex_Samad by L4 Transporter
  • 10392 Views
  • 21 replies
  • 0 Likes

Resolved! Pan Configurator service-edit.php

With Pan Configurator service-edit.php if I want to delete unused objects is it possible to set a count limit? For exampel I dont want to do all 500 at one time unt say 100 at a time. Look to see if there is a string like "maxcount' to end comman below. " php address-edit.php in=2473.xml out=/dev/null actions=delete 'filter=( object is.unused)'

Possible to stop local account passwords syncing when in HA

Hi All, We are currently in the process of roling out a Privielged Account Security platform to mange and rotate passwords across all of our devices. We have ran into a snag with the PAs because of the password sync when in HA... Is there a way to disable the sync of passwords for local account allowing us to have independent passwords on each...

aldow93 by L0 Member
  • 5601 Views
  • 4 replies
  • 0 Likes

Resolved! Checking Global Protect Client Status via Command Line

We have had a heck of a time getting Global Protect 4.0.2 deployed in our environment. One of the things I am coming across is that the install goes fine, at least accoring to the exit code on msiexec and in looking thoguht the log created by msiexec. However, the pangps service does not always get created. Granted, the number of macine affec...

BeejCyr by L1 Bithead
  • 27559 Views
  • 7 replies
  • 0 Likes

Port Scan Options

Hi all, Looking for some feedback from anyone else who has run into this issue before. Basically we have zone protection set up for our Wifi and ResNet security zones. Included in this zone protection is a block-ip rule for port scanning. We've received a request to allow client devices on these networks to reach a server using a specific piec...

jsalmans by L4 Transporter
  • 5225 Views
  • 6 replies
  • 0 Likes

Custom application tutorials?

Anyone know where I might find an in depth tutorial on creating a more advanced custom application? The tutorials I've found have all been HTTP related, which is great, but I was hoping to find something that did something a little more complex like something that used TCP and/or UDP signatures. Thanks!

jsalmans by L4 Transporter
  • 5629 Views
  • 7 replies
  • 0 Likes

Resolved! How to specify which program generates malicious traffic?

Hello all, I know this question is outside of the PAN device matter. But my customer asked me how to specify the program on his computer for removing malicious program.Let me tell you exmaple: When I see threat log, it showsSrc 192.168.1.1:12345 Dst 100.100.100.100:80 We can understand that we need to investigate 192.168.1.1 device.On this devic...

emr_1 by L5 Sessionator
  • 2951 Views
  • 1 replies
  • 0 Likes
  • 24340 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks