This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Have to reboot globalprotect client to connect.

WE have a problem with globalprotect-  The users sometimes need to disable the globalprotect client in order to connect to another VPN.  Later when the globalprotect client is re-enabled, any attempt to authenticate immediately returns a username/pas

...

fmurray by L1 Bithead
  • 6677 Views
  • 5 replies
  • 0 Likes

Management Profile and Security rules

Hi There,

I got a question, on non-mgmt interface firewall, I configured a management profile to access SSH and HTTPS do I need to allow the security policy explictly to access firewall ? 

Rokkam by L0 Member
  • 3093 Views
  • 2 replies
  • 0 Likes

Resolved! Check software update failed

Hi all!

 

I have this problem: when i check new software updates, clicking "check now" button, this error appears: "Failed to check upgrade info due to generic communication error. Please check network connectivity and try again."

 

Doing a traceroute we

...

DKanta by L3 Networker
  • 20416 Views
  • 16 replies
  • 0 Likes

Resolved! How To Best Control Access to SFTP Server in DMZ

I have an interesting problem. There is a requirement for moblie devices (Throughout the Us and Canda) to access an SFTP Server from the Internet and upload files to it. No other devices are allowed access, from the Internet, to the SFTP server. The

...

vsys CPU utilization

Just wondering if the more vsys you add, how much more CPU utilization or resource utilization will be used?  Does the more you add degrade the system at all?  I'm looking at a 5060 or a 5560 with at least 7.0 OS.

 

Is there any documentation that stat

...

Unknown source user showing in activity report

 

Hello,

 

We create a automated weekly report for Internet Usage and every report shows an average of 10/11GB unaccounted for.

User-ID is configured properly as we can see the list in the source user column after the first blank entry.

Please advise how

...

Report.png
Farzana by L4 Transporter
  • 1191 Views
  • 0 replies
  • 0 Likes

Anyway to block Webex plugin?

After hearing the news that the Webex extension in Chrome has a serious vulnerability is it possible to block this at the Palo Alto?

 

http://arstechnica.com/security/2017/01/ciscos-webex-chrome-plugin-opens-20-million-users-to-drive-by-attacks/?commen

...

pmc by L2 Linker
  • 4116 Views
  • 4 replies
  • 1 Likes

Use wildcard in user/group based policy

Hi,
We have a Splunk Server that sends to your id-agent (on a windows server) the information of guest users.

Now on PA We can se user@acme.com in the logs, is possbile for us create a rule for all users from acme, without define each user?

 

So a group

...

Resolved! ssh problem on mac os x

Hey guys,

 

I have such a weird problem.

 

A user has to connect to a samba server. He does it on his mac with cyberduck, Port 999 and ssh.

 

in the monitor, the application is "incomplete", the action is "allow", and session end reason is "aged-out".

 

Curr

...

MPI-AE by L4 Transporter
  • 5232 Views
  • 12 replies
  • 0 Likes

Netflow bandwidth usage and link-aggregation

We've added a netflow server profile to 4 sub-interfaces on ae1 that connects ISP. The netflow is then reported to Solarwinds where we have poll and collect netflow from these sub-interfaces. But we are also seeing notifications i Solarwinds that all

...

one globalprotect client two portals

I have two global protect portals one for staff and one for contractors. I regularly have to test both and the only way I have found to do it so far it to change the portal name on the client. Is there anyway to add both portals and toggle between th

...

jdprovine by L4 Transporter
  • 2429 Views
  • 5 replies
  • 0 Likes

Virus/OSX.WGeneric.lcwwz

IP address (IP: 4.35.21.146) is pushing out a Google update (url:GoogleSoftwareUpdate-1.2.7.43.dmg) but Palo Alto show it as Virus (Virus/OSX.WGeneris.Icwwz)

shekeba by L0 Member
  • 1624 Views
  • 1 replies
  • 0 Likes

Firewall optimizer

Any one out there using firemon or algosec to optimize your firewall? I am interested in your opinions whether you like it or not and which one is better or if there are other options

jdprovine by L4 Transporter
  • 2144 Views
  • 6 replies
  • 0 Likes
  • 24195 Posts
  • 100 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks