General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1209 Views
  • 0 replies
  • 0 Likes

Resolved! TAP:Specifying external interface

I'm working on a home lab, have an ESXi server with some UTM VMs running and I'd like to give them something interesting to look at. 

 

Following the online documentation (both in support and this: https://live.paloaltonetworks.com/t5/Configuration-Art

...

Resolved! Issue allowing port 2463

I'm trying to allow port 2463 (lsi-raid-management) traffic from my untrust zone to one of my vlan zones. I have added it to an application group and added a policy for traffic between my untrust zone and vlan zone with that application group. Every

...

tglear by L1 Bithead
  • 6134 Views
  • 12 replies
  • 0 Likes

Resolved! Google Play Store Problem

Dear Members,

Am here a new member, please I wish to know how to block only the google play store.If I try to block only that with google base application, other traffics also blocked.Let me know how to block only google play store.

Regards,

RKV

Resolved! Multiple Response Pages

Does anyone know of a way to make multiple response pages for different user groups. Specifically the URL Filtering and Category Match Block Page? 

Essentially what I'm trying to do is create two different responses; one that will tell you your reque

...

BPry by Cyber Elite
  • 9168 Views
  • 8 replies
  • 0 Likes

palo alto firewall insufficent data in traffic Logs

I see lots of enteires in regards to Insufficient-Data but  how does one go by troublshooting them? I understand the definition btu is Packet capture the only way to get reason for it? Considering I have a any port any service rule I wouldnt expect t

...

Resolved! How to check drops on PA-500 due to performance limits

Hello!

 

Is there way to check session/packet drops on PA-500 due to performance limitaions?

 

Scenaro:

There is PA-500 appliance, that provide internet access to +2000 users with agentless integration with AD.

 

Management CPU average load is about 70-100

...

SSL Decrypt Problem with Chrome

Hello all,

 

 

We are having some problems with SSL Decrypt with Chrome. When we try to connect to some pages appears certificate error that I attached.

 

I have PanOS 7.1.8 and only occurred this with Chrome. Know somebody how I can fix this problem ?

 

Ki

...

error.png
SOC_CSG by L4 Transporter
  • 5136 Views
  • 5 replies
  • 0 Likes

Resolved! Expected behaviour for Null, FIN and XMAS scans

Running through a few very basics tests to prove Zone Protection etc with a customer, what is the expected default behaviour for reconaissance scans such as Null, FIN and XMAS scans?

 

Currently I can get the following nmap commands to run without issu

...

Resolved! GP Server Certificate Verification Failed

Hey guys,

 

I wanted to upgrade the Global Protect Version.

 

Currently, I have version 2.3.4 in use an everything works fine.

 

Now I have a new mac with 10.12 and therefore I need version 3.1.1 of GP.

 

So I activated it on the firewall, installed it on th

...

MPI-AE by L4 Transporter
  • 20791 Views
  • 14 replies
  • 0 Likes

Resolved! Commit error

I'm getting an error when committing on an instance I had spun down for a year and then upgraded yesterday when spinning back up. Looking in logs it looks like it's having problems resolving one of the miners but I'm not positive.

 

Any thoughts on h

...

chirss by L3 Networker
  • 4336 Views
  • 4 replies
  • 0 Likes

PA Default Behaviour for un-matched UDP traffic?

Hello,

 

I am pretty new to PA firewalls, and started looking at the default firewall behaviour for various kinds of traffic.

Hence wanted to know, what happens when PA sees unmatched UDP traffic, say a DNS reply, from outside for which it doesn't have

...

Fatema by L2 Linker
  • 7905 Views
  • 12 replies
  • 0 Likes
  • 24173 Posts
  • 117 Subscriptions
Top Solution Authors
Top Liked Authors
Labels