This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4451 Views
  • 0 replies
  • 0 Likes

Resolved! URL exeptions best practis

Hi All.I'm new in Palo Alto.My goal is to exclude some IPs (Mainly some Broadcast TV channels) from scaning and intrusion ditection, for improving throughput. Now there are some ways to achive this, but i wondwer what is the best way? Regards' Goldy

YGoldy by L1 Bithead
  • 4181 Views
  • 6 replies
  • 0 Likes

GlobalProtect VPN on Win11

When I attempt to connect to a GP VPN site I get an error "Can't reach this page" - but only on my Win11 laptop. I used to be able to connect with this PC but not anymore. Tried removing all the updates - still no luck. I have 2 other laptops, both Win10 still - and no isssues. Is there a known Win11 issue with GlobalProtect?

sburleso by L0 Member
  • 1353 Views
  • 1 replies
  • 0 Likes

Resolved! Croxyproxy Block

Hi Team, We want to block croxy proxy in palo alto firewall. There is no application for this proxy to block. We already tried blocking the category proxy avoidance but it doesnt help even after applying it after decryption ssl packets. We are seeing URL is getting changed and hitting the server until it get sucessful connection so some URL cat...

Resolved! Palo Alto VM seris HA and vSYS

Hello, I have a question regarding Palo Alto VM series HA and vSYS, when I tried to create a new profile with the credit needed for two virtual Palo Alto each one of them installed on a seprate ESXi host , but both ESXi host are in the same location and they have the same network and we need them in HA active/active mode , I choose to add flexib...

Zurattos by L1 Bithead
  • 2501 Views
  • 3 replies
  • 0 Likes

Pushing dynamic updates from Panorama to firewalls or download direct to firewall

Looking for advice on best practice regarding dynamic updates (AV, IPS, WF) when managing firewalls from a Panorama. Currently we are download and pushing these dynamic updates from Panorama to about 15 firewalls but will be managing more firewalls from Panorama in the future. We have discovered some of these dynamic update jobs becoming hung an...

clewis1 by L3 Networker
  • 5863 Views
  • 4 replies
  • 0 Likes

Unsupported cipher. Supported client cipher bitmask: 0x00000000

Hi,have a decryption policies for inbound ssl decryption to a webpage. Therefor I have included the private Certificate.At decryption monitor there is a message:( error eq 'Unsupported cipher. Supported client cipher bitmask: 0x00000000. Supported decrypt profile cipher bitmask: 0x00000014.' ) Found this link https://docs.paloaltonetworks.com/pa...

Moritz by L1 Bithead
  • 7658 Views
  • 5 replies
  • 1 Likes

Migration FW Paloalto model from 3020 to 1410

Hello team, I need to migrate a cluster from FW model 3020 to 1410. Can any of you tell me the best way to change it? I have the 3020 configuration in XML in version 9.1 but the 1410 the minimum version required is 11. Can you help me? Regards.

Alpalo by L4 Transporter
  • 1201 Views
  • 1 replies
  • 0 Likes

Notification when software versions get marked as Preferred

Is there already a mechanism or something I can subscribe to to receive updates when a software version is selected as the Preferred release? I get the emails notifying me of new releases, and I frequently use the Support PAN-OS Software Release Guidance post to check on things. I see that there is an option to Subscribe to the post/thread, but ...

Packet Drop?

I am at home working and since our company implemented Paloalto my home internet will not stay connected to my computer. It initially connects and then drops. Our IT guys cannot figure out why. I have no issues on my personal devices with my home connections.I have been "googling" fixes and read something about packets dropping....I am not a te...

Resolved! URL Filtering - Predefined Category URL Listing

I would like to get a listing of the URLs in each predefined URL category, preferably via API. Doing basic research, there does not seem to be a way to get a comprehensive list either through the UI or api. Any guidance here would very much be appreciated. Thank you

Resolved! How do I transfer ownership of the superuser/domain administrator?

Hi all, So, the user that has superuser/domain administrator access to our support.paloaltonetworks.com is no longer at our company, and we need to transfer super user/domain administrator ownership to a different user in our support.paloaltonetworks.com accounts. It seems like only the superuser has the ability to transfer ownership, how do we...

Screenshot 2024-08-29 at 1.36.14 PM.png

Vm-Seires Hyper-V stuck PA-HDF Login

Hi Expert , I have some issues about I test the PA Vm-Series on Hyper-V including on My laptop However, I found an issue about the console showing PA-HDF longer time I understood that may be the initial boot but I waited more than 1 hour on another guest's VM, and not PA is working properly please help me check. Thank you

llll.png

Arp entries from external server

Hello, I I have Paloalto 1410, working fine but we use the arp entries too many on the interface. I know it has max of 3000 arp entries, is there any way to maximize it or use external server as IP - MAC entries to depend on which may enable me to have more the 3000 records? TIA

Global protect User mapping.

Hi Team, One of our customer wants to restrict "per user-per system" basis.In Global Protect Clients, one user is able to connect through multiple end devices.Can we able to restrict i.e one user should be able to connect through only one end devices.

  • 24376 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks