This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4133 Views
  • 0 replies
  • 0 Likes

Resolved! Google Play Store Problem

Dear Members,Am here a new member, please I wish to know how to block only the google play store.If I try to block only that with google base application, other traffics also blocked.Let me know how to block only google play store.Regards,RKV

Resolved! Multiple Response Pages

Does anyone know of a way to make multiple response pages for different user groups. Specifically the URL Filtering and Category Match Block Page? Essentially what I'm trying to do is create two different responses; one that will tell you your request was blocked because of policy, and the other one will simply block the traffic and display a b...

BPry by Cyber Elite
  • 10271 Views
  • 8 replies
  • 0 Likes

palo alto firewall insufficent data in traffic Logs

I see lots of enteires in regards to Insufficient-Data but how does one go by troublshooting them? I understand the definition btu is Packet capture the only way to get reason for it? Considering I have a any port any service rule I wouldnt expect too see it

Resolved! How to check drops on PA-500 due to performance limits

Hello! Is there way to check session/packet drops on PA-500 due to performance limitaions? Scenaro:There is PA-500 appliance, that provide internet access to +2000 users with agentless integration with AD. Management CPU average load is about 70-100 %Data plane CPU: 40-60%Session utilization 40-60% Main internet-access rule has Threat-Prevention...

SSL Decrypt Problem with Chrome

Hello all, We are having some problems with SSL Decrypt with Chrome. When we try to connect to some pages appears certificate error that I attached. I have PanOS 7.1.8 and only occurred this with Chrome. Know somebody how I can fix this problem ? Kind Regards

error.png
SOC_CSG by L4 Transporter
  • 5712 Views
  • 5 replies
  • 0 Likes

Resolved! PDF Summary Reports - How to increase the "TOP" hits in the TOP Denied Sources

Hello Experts,I have a Daily Summary Reports where i have the output for almost 16 sources (meaning daily summary data on Top Connection, Top Destination countries, etc. etc). I noticed that it only displayes the "TOP 5", is there a way i can increase this? Perhaps even just for a single report (Top Denied Sources). My objective is to see the to...

Resolved! Expected behaviour for Null, FIN and XMAS scans

Running through a few very basics tests to prove Zone Protection etc with a customer, what is the expected default behaviour for reconaissance scans such as Null, FIN and XMAS scans? Currently I can get the following nmap commands to run without issue and no logs beyond ping or icmp.nmap -sXnmap -sFnmap -sN What would be the appropriate measure ...

Resolved! GP Server Certificate Verification Failed

Hey guys, I wanted to upgrade the Global Protect Version. Currently, I have version 2.3.4 in use an everything works fine. Now I have a new mac with 10.12 and therefore I need version 3.1.1 of GP. So I activated it on the firewall, installed it on the mac 10.12 and now there's is an error: "Server Certificate Verification Failed" I'm not able to...

MPI-AE by L4 Transporter
  • 23087 Views
  • 14 replies
  • 0 Likes

Resolved! Commit error

I'm getting an error when committing on an instance I had spun down for a year and then upgraded yesterday when spinning back up. Looking in logs it looks like it's having problems resolving one of the miners but I'm not positive. Any thoughts on how to troubleshoot this?

chirss by L3 Networker
  • 4816 Views
  • 4 replies
  • 0 Likes

PA Default Behaviour for un-matched UDP traffic?

Hello, I am pretty new to PA firewalls, and started looking at the default firewall behaviour for various kinds of traffic.Hence wanted to know, what happens when PA sees unmatched UDP traffic, say a DNS reply, from outside for which it doesn't have a DNS request recorded from the inside? Does it drops the incoming DNS reply or does it allows it...

Fatema by L2 Linker
  • 9386 Views
  • 12 replies
  • 0 Likes

Resolved! Offline Filtering Options

Is there an offline agent/option that will filter URL traffic when an end point is not routing through the Palo Alto? We have several company provided laptops that we want to secure when users take them home.

tmerta by L0 Member
  • 3160 Views
  • 2 replies
  • 0 Likes

Configuring User-Id With Radius

Hello Dear Community, I have a client who wants view user-id users name of the radius server on Palo Alto Logs (Like happens with LDAP Active Directory) The SO of the Radius Server is Windows Server 2008. I saw there is a link on Palo Alto KBs to configure the user-id for Radius users from the Syslog Server: https://www.paloaltonetworks.com/docu...

AitorGD by L1 Bithead
  • 31186 Views
  • 8 replies
  • 0 Likes
  • 24337 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks