This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4244 Views
  • 0 replies
  • 0 Likes

Resolved! Expected behaviour for Null, FIN and XMAS scans

Running through a few very basics tests to prove Zone Protection etc with a customer, what is the expected default behaviour for reconaissance scans such as Null, FIN and XMAS scans? Currently I can get the following nmap commands to run without issue and no logs beyond ping or icmp.nmap -sXnmap -sFnmap -sN What would be the appropriate measure ...

Resolved! GP Server Certificate Verification Failed

Hey guys, I wanted to upgrade the Global Protect Version. Currently, I have version 2.3.4 in use an everything works fine. Now I have a new mac with 10.12 and therefore I need version 3.1.1 of GP. So I activated it on the firewall, installed it on the mac 10.12 and now there's is an error: "Server Certificate Verification Failed" I'm not able to...

MPI-AE by L4 Transporter
  • 23324 Views
  • 14 replies
  • 0 Likes

Resolved! Commit error

I'm getting an error when committing on an instance I had spun down for a year and then upgraded yesterday when spinning back up. Looking in logs it looks like it's having problems resolving one of the miners but I'm not positive. Any thoughts on how to troubleshoot this?

chirss by L3 Networker
  • 4884 Views
  • 4 replies
  • 0 Likes

PA Default Behaviour for un-matched UDP traffic?

Hello, I am pretty new to PA firewalls, and started looking at the default firewall behaviour for various kinds of traffic.Hence wanted to know, what happens when PA sees unmatched UDP traffic, say a DNS reply, from outside for which it doesn't have a DNS request recorded from the inside? Does it drops the incoming DNS reply or does it allows it...

Fatema by L2 Linker
  • 9562 Views
  • 12 replies
  • 0 Likes

Resolved! Offline Filtering Options

Is there an offline agent/option that will filter URL traffic when an end point is not routing through the Palo Alto? We have several company provided laptops that we want to secure when users take them home.

tmerta by L0 Member
  • 3194 Views
  • 2 replies
  • 0 Likes

Configuring User-Id With Radius

Hello Dear Community, I have a client who wants view user-id users name of the radius server on Palo Alto Logs (Like happens with LDAP Active Directory) The SO of the Radius Server is Windows Server 2008. I saw there is a link on Palo Alto KBs to configure the user-id for Radius users from the Syslog Server: https://www.paloaltonetworks.com/docu...

AitorGD by L1 Bithead
  • 31783 Views
  • 8 replies
  • 0 Likes

Resolved! Best way to manage Dropbox

I am looking for a good way to manage the use of dropbox. Ideally I would like to deny all and allow particular people to access. Any help on this would be great.

GLO-ISO by L0 Member
  • 10750 Views
  • 7 replies
  • 0 Likes

Running Minemeld on CentOS

Is there any plans to package this up to be installed on CentOS? I am using it curently in AWS for dev but would like to bring it in-house for production and currently our Linux team only supports Rhel/CentOS.

AlexZu by L1 Bithead
  • 12575 Views
  • 12 replies
  • 1 Likes

Post process Minemeld URL list

Hello - I am loving the product so far, but ran into an issue recently. The miners are pulling the URL's correctly from Microsoft, but some of the URL's are not formatted correctly for use. A few examples: *-my.sharepoint.com *word-view.officeapps.live.com autodiscover-*.outlook.com http://sr.symcd.com There is also the issue of the way...

Zach by L0 Member
  • 7298 Views
  • 3 replies
  • 0 Likes

DHCP Server on Palo Alto

The DHCP server on Palo Alto does not clear the Expired sessions, its stays and we have to manually go and clear the sessions. Can you please help.

Denis by L2 Linker
  • 5874 Views
  • 10 replies
  • 0 Likes

Commit process hangs at 99%.

I have job stuck in queue . Tried clearing job,restart mgmt getting same error. Server error : Timed out while getting config lock. Please try again.

Site to Site VPN Tunnel is up, but no traffic pass through

Hi all. I am trying to setup a site to site VPN tunnel with one of our customer. I've got the dedicated layer 3 zone, tunnel interface, IKE Gateway, Virtual Router etc. configured per the Palo Alto admin guide. In the "IPSec Tunnels" section, it shows the VPN tunnel is up. However, I cannot access any of the server located at the customer's ...

User-ID client device specific

Hi All, I'm trying to figure out a work around to a user-id issue I'm having. We're currently running Novell Open Enterprise Server as our back end identity store. I have the User-ID agent installed on a windows box and communicating via ldap to my novell servers. It will ID people correctly sometimes. If someone puts their laptop into stand...

ICarder by L1 Bithead
  • 4299 Views
  • 4 replies
  • 0 Likes
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks