Discussions
Check out LIVEcommunity discussions to find answers, get support, and share knowledge related to Palo Alto Networks tools and products.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Discussions
Check out LIVEcommunity discussions to find answers, get support, and share knowledge related to Palo Alto Networks tools and products.

Browse the Community

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

24244 Posts

Custom Signatures

The Custom Signatures discussion is a resource for security professionals to discuss the creation process of custom signatures in their PAN-OS appliance.

173 Posts

VirusTotal

Have you encountered a false positive verdict for Palo Alto Networks (Known Signatures) on VirusTotal? Use this forum to submit a verdict change request. Change requests should include the File Hash, Link to VirusTotal report, current VirusTotal verdict, and description.

763 Posts

Network Security

Post questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to all things Network Security.

5531 Posts

Cloud Delivered Security Services

Post questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to Palo Alto Networks’ Cloud Delivered Security Services.

638 Posts

Secure Access Service Edge

Post questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to Prisma Access and Prisma SD-WAN.

528 Posts

Cloud Native Application Protection

Post questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to Prisma Cloud and Cloud Identity Engine discussions.

502 Posts

Security Operations

Post questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to Cortex XDR, XSOAR, and Xpanse discussions.

3826 Posts

Activity in Discussions

About what delimiter firewall use when sending multiple syslog messages in a single TCP stream

Attention: JAPAC TPM team Hello I'm Saiya Ota. I would like to ask about the delimiter used at messages during syslog forwarding. On the receiving side, when the syslog server accepts messages via TCP, the following specifications apply:------------------------------When multiple syslog messages are sent consecutively over a single TCP strea...

THREAT MAP on GUI is unable to export

Attention: Global TPM team, THREAT MAP on GUI is unable to export in PAN-OS 11.1.12.I found the below issue. In PAN-OS 11.1, when do this issue fix? // PAN-OS 11.2.8 Addressed Issueshttps://docs.paloaltonetworks.com/pan-os/11-2/pan-os-release-notes/pan-os-11-2-8-known-and-addressed-issues/pan-os-11-2-8-addressed-issues----PAN-290923(Panorama v...

MasaW by L1 Bithead
  • 54 Views
  • 0 replies
  • 0 Likes

Deduping in Playbooks

I'm confused as to how to use the DedupBy command/script in my Playbook. I have a set command that grabs all the UPNs from a list of alerts in the data. This results in the Context data of:Defender:{UPNs:[0:"user1@domain.com"1:"user2@domain.com"2:"user1@domain.com"3:"user3@domain.com"]}I'd like to Dedup this list to use later on in my Playbook b...

sackett by L1 Bithead
  • 44 Views
  • 0 replies
  • 0 Likes

Restrict Access to Box Account

Hi Team, We have a requirement to restrict the access to box account only when they get re-directed to box account from one particular website. So for example. User logs in to Facebook.com and need to upload a document. In facebook there will be a link to upload a document, when clicked it will re-direct to box account. So we need to restrict us...

Upgrade from Basic Threat Prevention to Advanced Threat Prevention

Currently, two PA-320 peers are in HA configuration with Basic Threat Prevention license which is expiring in Feb 2026. I am going to buy ATP license in the upcoming renewal. Do I have to configure the ATP profiles from starch and bind those profiles with the security rules OR Basic Threat prevention profiles(such as AV, Vulnerability protection...

Ajay358 by L2 Linker
  • 124 Views
  • 1 replies
  • 0 Likes

How to delete Endpoints that have old agent and could not be uninstalled

Hello, I have 2 endpoints with old version: - 7.3.0.16740 on a server - 8.6.0.3704 on a computer I could not upgrade them and have no more access to those computers (in another country). I asked admin to uninstall, he did not. How to remove link between Agent and Cortex XDR server to recover the licenses. Thank you in advance for any help

Cortex XDR EXCEPTIONS CONFIGURATIOS

Hey ,Under the EXCEPTIONS CONFIGURATION in Cortex XDR , I am seeing 2 options 1. Disable Prevention Rules2. Legacy Agent ExceptionsWhat is the key difference between these two ?i can add file paths/process in both of these , what is the preferred one ?

OSPF & Static Routes

Hi, I have OSPF configured on PA460 firewall with profile redistributing Static. I have another redistribution profile not to redistribute certain subnets/routes. Now I want to add some new routes with metric higher than that of OSPF. Will these routes be redistributed in OSPF. Thanks

Gloabl Protect -Gateway selection

Hello, As per the PA document - GlobalProtect uses a network discovery method to select the best available gateway from the available multiple gateway options. GlobalProtect attempts to communicate with all the gateways and uses criteria such as gateway priority, load, and response time from the gateway to determine the best available gatew...

VivekMs by L0 Member
  • 124 Views
  • 0 replies
  • 0 Likes
Register or Sign-in
Top Solution Authors
Top Liked Authors