General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone, Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June. This event will cover the following points related to the newly unveiled Zero Trust Network Security: Secure access to the right applicat...

seattle-launch-live-community-r2b-1100x120.jpg
jdelio by Community Team Member
  • 512 Views
  • 1 replies
  • 4 Likes

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 18292 Views
  • 41 replies
  • 32 Likes

Firewall is doing packet captures on it's own

Hi,I just noticed two traffic log entries that had packet captures attached. I didn't enable this anywhere, and just to make sure, I just went through the whole config (all profiles) to make sure I didn't enable it by accident. Are thre any circumsta...

Resolved! Google Mail for Business

Hi all,Anyone has experience in using SSL decryption with Google Mail for Business? My concerns are the incoming emails will no longer go thru our mail content filtering engine and we don't have adequate tools to prevent data loss in outgoing mails (...

Resolved! Question regarding ARP timeout

Hi,I have a question regarding ARP caching and timeout on the Palo Alto platform.Based on the output of the "show arp all" command, it looks as if the "default timeout" is 1800 seconds. I am doing some work with failover for a cluster inside my firew...

dsulli99 by Not applicable
  • 831 Views
  • 1 replies
  • 0 Likes

Groups that the user belongs to

Hi,When we want to look at ip address of a user show user ip-user-mapping ip ........Groups that the user belongs to (used in policy) comes empty.I trieddebug user-id refresh group-mapping allAlso I can see all gorups on group mapping.

panos by L6 Presenter
  • 594 Views
  • 4 replies
  • 0 Likes

Kill Login Sessions

Hi,Is there a way I can kill or log out other administrators that is authenticated in Palo Alto Management? Hoping for your assistance.Thanks,Xer

iPhone Applications

I have turned on SSL Decryption for my organization and am now receiving reports that iPhone/iPad applications have stopped working and there is nothing in the logs. To test whether the PAN firewall was the cause I contacted a user and put in a polic...

Resolved! Some has a problem blocking Youtube Application?

I recently had problems with blocking youtube, I added a policy where I deny the application access to youtube. When I go to the YouTube page and I try to watch a video, the first time if it hangs correctly, but if I try more times with other videos,...

Resolved! Excel XLSX recognized as ZIP file

Hello,I configured a File Blocking profile to block specific file format (like Exe, PE, RAR, etc).Unfortunately, this profile also blocks Excel file in new format (.XLSX).No problem, with the old format (.XLS) !!After reading some doc, it seems that ...

licenselu by L4 Transporter
  • 1958 Views
  • 2 replies
  • 1 Likes

Resolved! group member attribute

when you create a ldap profile by default the group member attribute is defined to member my question is member for palo does mean "memberOf" for Ldap group attribute.and in this way each autentication request is answer with all users nested groups

Gregoux by L4 Transporter
  • 981 Views
  • 4 replies
  • 0 Likes

Resolved! DNS proxy policy

when you create a dns Proxy policy you declare only the ingress interfaceor egress interface ?

Gregoux by L4 Transporter
  • 824 Views
  • 3 replies
  • 0 Likes

Radius Authentication

Hi,we use Vpn authentication for portal LDAP and for gateway RadiusUsers can connect using their names to portal with typing user and passwordafter that they type another user name and password for Radius.When we look we see the logs of users coming ...

panos by L6 Presenter
  • 557 Views
  • 4 replies
  • 0 Likes

Palo Alto as a route reflector

Hi,I have a couple of PA-500 clusters and I want to use them as route reflectors for my internal BGP network. There doesn't seem to be anything in the documentation on how to do this but the documentation suggests the Palo will do it, I was wondering...

Gareth by L1 Bithead
  • 750 Views
  • 5 replies
  • 0 Likes

ICMP reply size in 4.1

Is it possible in 4.1 to limit the size of icmp replies or strip any payload in order to discourage tunneling via ICMP ?

mbecker by Not applicable
  • 618 Views
  • 5 replies
  • 0 Likes