This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4243 Views
  • 0 replies
  • 0 Likes

Resolved! RDP NAT connection issue?

Hi folks, For test purposes, I am trying to get RDP to work going through my PA-200 OS 6.1.4 to an internal PC.I've been following several articles like this one, but not getting it to work.https://live.paloaltonetworks.com/t5/General-Topics/MS-RDP-NAT-Issue/m-p/15217/thread-id/11171/highlight/true I must be doing something wrong since my intern...

RDPNAT.jpg
RDPsecurity.jpg
OMatlock by L4 Transporter
  • 6599 Views
  • 7 replies
  • 1 Likes

Resolved! NTLM authentication fails

Hi all, I'm facing an issue with captive portal and NTLM. The SSO (NTLM) fails and the users must enter the credentials via the web-form. I've attached print screens from Wireshark and the output from the userid.log: PAN-OS: 8.0.1User-ID Agent: 8.0.1-21 [2017/04/25 11:07:48, 0] utils/ntlm_auth.c:get_winbind_netbios_name(172)could not obtain win...

c1.jpg
c2.jpg

No Block Page when accessing Blocked Categories over HTTPS

Hi there,I have recently noticed that when I test access to URLs of blocked categories over HTTPS, I do not get a 'Blocked Page' display from the Palo. It just says the Page Cannot be Displayed and show the connection was reset. The URL filtering log correctly show as 'Block-URL' for the action. I just do not get a 'Block Page'. SSL decrypt is n...

Bocsa by L3 Networker
  • 11400 Views
  • 6 replies
  • 0 Likes

Resolved! Where can I obtain rsyslog-minemeld?

Hi, I recently deployed an ansible built version of minemeld on Centos. However it does not appear to include rsyslog-minemeld? Is that still required to use the syslog analyzer node? If so, where can I obtain a rpm version of it?

calvinc by L0 Member
  • 4038 Views
  • 1 replies
  • 0 Likes

Question about vlans/Router on a stick.

I'm looking to configure a Palo as a router on a stick for a site to replace a decrepid Cisco 1811r router. The only printed information I can find is a 4.x document with pretty dissimilar UI images. I've configured mutliple subinterfaces underneath my primary trusted interface, each one is tagged with the vlan tags being used on the L2 switches...

Panorama and Scan Type threats

Anyone know if Panorama is supposed to show Scan type threats in the Threats or Unified views under Monitoring? I'm investigating why some of our Autodesk software on campus is having problems reaching the licensing server... Panorama didn't show any problems and I can see allowed traffic but then noticed drops in a packet capture. Checking th...

jsalmans by L4 Transporter
  • 3886 Views
  • 4 replies
  • 0 Likes

User-ID mapping when host has 2 interfaces

We've run into a problem which I understand, I'm just not sure how to fix. A user on her laptop logs into the domain while her laptop is docked, so UIA has her ip address mapping to the wired connection. Later, she undocks and flips over to wireless, but UIA no longer has a valid mapping for her since she AD still associates her wired IP addre...

Resolved! H.323 cisco telepresence configuration

Hi guys, I am very new in PA administration and I am trying to set up voice communication between cisco telepresence sx-20 located with private IP address in my Internal network to some terminals outside the network. I am using IP address like calling number when I am trying to establish the connection.I have tried a lot of configurations, but n...

Untitled.png
Untitled1.png
maximn by L1 Bithead
  • 7022 Views
  • 7 replies
  • 1 Likes

Erroneous application port

I am getting a deny statement for port 8531 for application ssl. 8531 is for ms-update and my policy allows that but the default policy is denying it because it is tying it to ssl for some strange reason. I don't know how to get around that.

tglear by L1 Bithead
  • 2825 Views
  • 3 replies
  • 0 Likes

problem on user time session timeout, only countdown

Hi to all,I'm new on PaloAlto PA-500 7.1 version.I've searched on and I think I did not find my case.Sorry if there is not and found it.I have the wifi sessions (via AP aerohive) timeout all in countdown.The users are in domain via LDAP and RADIUS.The default time is 2700 seconds.With CLI command 'show user ip-user-mapping ip' I can see all the ...

aerspa by L1 Bithead
  • 4979 Views
  • 6 replies
  • 0 Likes

Resolved! Upgrade Path

my appliance is on PAN OS 8.0.0. Can we upgrade directly to 8.0.2. Can't find any info about this. Thanks

AlbertJJ by L1 Bithead
  • 3093 Views
  • 1 replies
  • 0 Likes

Resolved! Allow Vimeo From Specific Website

Hello, I have a customer that would like to block vimeo completely but allow it specifically from one website, aaregistry.org. I have PAN-OS 4.1.6 running right now and have tried to use a custom URL category in my rule to allow vimeo specifically from that one URL, but I am having no luck. I also even added vimeo.com to the URL category and i...

url filtering question

Hi,How PA categorize (business or research....) and filter if a proxy server re writing a url . for example if the original url is https://yyyy.com and after rewriting it became https://yyyy.com.proxy.mycompany.com Is there a possiblity giving certificate error instead of giving access deined message (from palo alto by url filtering)...

simsim by L4 Transporter
  • 6240 Views
  • 11 replies
  • 0 Likes
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks