General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1710 Views
  • 0 replies
  • 0 Likes

Resolved! Different Threat ID for Data Filtering and Wildfire

Hello all,

 

Once upon a time, I stumbled across a page with all the threat ID's used for Data Filtering.

From what I remember"PKG File Detected(52152)"  is the threat name and ID used when the firewall sees a PKG file.  Windows Executable (EXE) (52020)

...

Why paloalto-updates application is SSL now?

Since 03/April/2017 02:00 Firewall detect paloalto-updates application as SSL then firewall can't update new signatures because there is no SSL allow in policy.This problem occur to my 3 customer now.

 

Do anyone have the same problems?

 

Customer 1Custo

...

cust_1.png
cust_2.png
Sarun by L0 Member
  • 3174 Views
  • 3 replies
  • 0 Likes

MS Windows 'Auto-VPN' and UWP

MS Windows 10 has the concept of 'Auto VPN' which will make use of their UPW plug-in architecture.

 

Universal Windows Platform (UWP) VPN plug-in platform are built on top of the Windows VPN platform

 

I am told There are a number of Universal Windows Pl

...

Resolved! Best method to see blocked RTP traffic?

Hi folks,

 

There is an issue with our Lync VOIP system and consultants are saying they think that RTP traffic if being blocked inbound to our firewall.

 

What is the best method to verify that?

 

Traffic log or do I need to do a packet capture?

 

Thanks

OMatlock by L4 Transporter
  • 4427 Views
  • 2 replies
  • 0 Likes

RDP over VPN login only works after 2nd time?

I've configured and established succesfully a GlobalProtect VPN connection to my firewall (PA-3020). I want to create a RDP session to a server,I login to the GlobalProtect portal on my Windows 10 client and start mstsc. The first time I connect to t

...

Data-Filtering ALLOW

I am using PAN-OS 7.1.

 

I have figured out how to use basic data-filtering to block traffic with certain patterns in the payload, but I want to do the opposite. I want to configure a rule that will only ALLOW packets with a certain pattern, and automa

...

JohnPa by L1 Bithead
  • 3828 Views
  • 6 replies
  • 0 Likes

interface to interface connevtivity not working

hello - apologies in advance but im a newbie on Palo Altos - come from working on Check Points and Junipers and am now here tasked to set up a palo alto.  I've got my network working to where all the vlans hanging off of the PAN can ping it and it ca

...

bwfreas by L1 Bithead
  • 5726 Views
  • 14 replies
  • 0 Likes

Google Search

Hi

 

Anyone have any tips or tricks around forcing a particular country for Google search? Currently our IP address is misregistered in the Google database and we are being redirected to a foreign location. 

 

 

Thanks

Recommended PANOS version

Hi Guys,

 

I would like to know if there's any resources that provide information about what recommended versions of PANOS to be upgraded to or from? Also, what caveats one might face during the upgrade process?

 

Thank you,

Dennis

Layer 2 v. V-Wire

Anybody think of a situation where I would prefer a layer 2 connection over a vwire in a basic setup? i.e. [users]--[core switch]--[PA]--[router]

 

Right now I have:

 

([switch] --VW--[PA]--VW--[router])x4

 

Moving (becuase of lack of PA support for LACP L

...

PeterT by L2 Linker
  • 4013 Views
  • 5 replies
  • 0 Likes

Resolved! SSL decription between firewall and proxy

Hi Guys,

 

We have a palo alto 3020 firewall in peremeter and websense proxy server in internet network acting a explicit proxy. So users are browsing internet through proxy server and the proxy will forward the traffic to internet via PA firwall.

 

We n

...

irshad.n by L1 Bithead
  • 2881 Views
  • 1 replies
  • 0 Likes

Skype on PAN 8.0

Hi 

 

Has anyone had issue with Skype on PAN 8? This week we needed to bypass decryption of *.skype.com to get Skype to work on the Apple iOS Skype app (consumer Skype). Our setup inspects all ssl traffic apart from the finance /banking / health catego

...

Resolved! How to enable Ping on ISP interface with Dynamic IP?

Hi folks,

 

As I continue my baby step learning, I am successfully using a PA-200 to access the internet from my internal clients.

I am now trying to understand how to enable ping (at least temporarily) on my 1/1 Untrust-L3 interface.  I like to be able

...

ping1.jpg
ping2.jpg
ping3.jpg
OMatlock by L4 Transporter
  • 9519 Views
  • 4 replies
  • 0 Likes
  • 24220 Posts
  • 117 Subscriptions
Top Liked Authors
Labels