Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
24286 PostsThe Custom Signatures discussion is a resource for security professionals to discuss the creation process of custom signatures in their PAN-OS appliance.
175 PostsHave you encountered a false positive verdict for Palo Alto Networks (Known Signatures) on VirusTotal? Use this forum to submit a verdict change request. Change requests should include the File Hash, Link to VirusTotal report, current VirusTotal verdict, and description.
778 PostsPost questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to all things Network Security.
5716 PostsPost questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to Palo Alto Networks’ Cloud Delivered Security Services.
645 PostsPost questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to Prisma Access and Prisma SD-WAN.
546 PostsPost questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to Prisma Cloud and Cloud Identity Engine discussions.
470 PostsPost questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to Cortex XDR, XSOAR, and Xpanse discussions.
3942 PostsI have a rule in Palo Alto PA 440 running 11.2.6 to allow 'any' to Azure AD. I see only DNS responses from Azure AD. For ping and LDAP packets received is zero. The traffic is hitting the right rule though. I did a packet capture I don't see ping request on the transmit stage on the firewall. Ping and LDAP working from another site. How do I fix...
hi my customer got an issue regarding palo alto. This issue happens thismorning, no changes was done beforehand. The website was still accessibleyesterday until this morning. We have done a few testingsas per below. Office LAN users – Notaccessible Bypass website’s Public IP– Not accessible Bypass website URL – Notaccessible Wi-Fi users – Acce...
Dear all, I have a pair of HA PA-440 with the software version of 11.2.7-h4, now I want to install the version 11.2.10-h2 to remediate CVE-(High Severity Vulnerability in PAN-OS) and (Customer Advisory on Device Certificate Renewal for NGFW Devices in Active-Passive High Availability (HA) with Service Route) Now I want to install software ve...
Hello everyone, Our team is trying to utilize the XDR host inventory dataset to gather details on what applications are installed on each host. We’re encountering an issue with Cortex XDR Host Inventory queries returning stale host data, which is producing duplicate host/application sets in our results. Is anyone aware of how we can resolve ...
Hey guys I have 2 PA-5445 in HA setup, I noticed that the HSCI port shows blinking amber LED on both sides. Dashboard shows HA is up. Should it be green or is it fine? Because the 5260 models show solid green LED.
we had an internet outage at out data center this last monday. it dropped all users off VPN. the users are trained that if they cant connect to production VPN to try the DR site VPN. only about 1/3 of the users were able to connect to the DRVPN. the rest got a message "The network connection is unreachable or the portal is unresponsive. Che...
with GP auth, is it possible to do RSA authentication along with biometric auth? we would like to replace certificate auth with biometric.
We have migrated our on-premises firewall from FortiGate to Palo Alto and are experiencing an issue with VPN traffic routing that previously worked as expected. We have an Azure Point-to-Site (P2S) VPN and an Azure-to-Corporate Site-to-Site (S2S) VPN. A P2S client with IP address 10.40.1.2 is unable to access resources on the Corporate LAN (19...
Hi all, I recently added a PA-440 to my home network, everything seems to be working fine with the rules I have set up (Just allowing all from the internal zone to the external zone at the moment) however Discord voice chats fail to connect. I took a look at the traffic logs and saw a lot of packets "aging-out" so I changed the timeout of what I...
Hi I have list of branch firewall and hub firewall in the SDWAN group managed through the panorama if i removed one particular firewall from the SDWAN group will it lost it's connectivity on the panorama
After updating our firewall from 10.1.13 to 10.1.14-h20 as per CVE-2026-0227, it's no longer possible to access the GP Portal via a web browser: the authentication via SAML continues to work but now gives back an error page. Checking the GlobalProtect log gives the error message "Username from SAML SSO response is different from the input". ...
For Cortex XDR with XDR Pro licensesI would like to know if we can set up a Broker VM in cluster for "active/active" applets, Is it mandatory to have a external load balancer or is there any alternatives, Is it possible to use Global load balancers. Please provide more info or relevant links to refer.
Hi, Setting up a lab by provisioning a Palo BYOL VM Firewall in Azure and setup a simple Trust and Untrust zones. I also have a Win 10 VM in the trust zone which connects to internet through the Firewall. All of them are in the same Vnet with different Trust and Untrust in different subnets. All work good. However, when I onboard the firewal...
1. Currently, four tunnels (at each of the two Hubs) are used for the four IPsec tunnels between these two Hubs (based on two SDWAN circuits at each Hub). Can the four existing tunnels (labelled tunnel.50xx) at both existing hubs (CHT and ELP) be used for the new IPsec tunnels to/from Agave2? 2. Can we use IP addresses assigned directly to int...
I've been using GP recently and it keeps disconnecting and reconnecting.I'm sure my network is working properly.I checked the pas log:(P1336-T19828)Debug(2485): 01/22/26 21:59:49:665 Received a tunnel packet with fragment 0x8D(P1336-T4260)Debug(1047): 01/22/26 21:59:50:828 select() timeouts, retry(P1336-T4260)Debug(1047): 01/22/26 21:59:51:840 s...
| Subject | Likes |
|---|---|
| 4 Likes | |
| 4 Likes | |
| 4 Likes | |
| 2 Likes | |
| 2 Likes |
