General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

PA and AD Integration

My PA is experiencing a lag between when user accounts are modified in the AD group used for VPN authentication and when the PA begins enforcing the new account settings. Is this fixable? What is the maximum lag that I should be seeing? Is it poss

...

Resolved! 3050 - Maximum Number of Routes & ProxyID

Hello All:

We have (2) 3050s in an Active/Passive & we do a ton of VPNs. As such, we have a lot of static routes & ProxyIDs. Can someone tell me the maximum # of each that the 3050 supports? We're running 6.1.4 now - gonna get to 7-something when we

...

Replacing ssg140 Netscreen with Palo Alto

I am looking at replacing an ssg140 with Palo alto product. This fw is running 35% cpu ,10000 sessions, 60 ip-sec tunnels at the moment. Would it be PA500 or something better than that.

Resolved! How to request new URL Category

The UK Government has informed Local Authorities that they should implement measures to prevent radicalization and extremism, which includes filtering Internet access available in LA provided public facilities, such as Libraries, and Schools.

As the

...

Resolved! Outbound SSL Decryption Capabilities

I know outbound SSL decryption can work when a client inside the network is accessing a secure website on the internet. But can SSL decryption work when a client on the internal network attempts to make a vpn connection to a vpn server using an SSL

...

i can get into meldmeld via ssh , but cannot via webui.. doesnt like id and password in webui.

Authenticated threat feed - Miner node

Hi all,

A customer of mine subscribes to a threat feed where they need to authenticate (using web form) to recieve the inputs. Maybe I have missed this, but I couldn't see any predified miners to achieve this?

Thanks,

Tim

Resolved! Matrix/discussion of capability with the differing interface deployment modes

Is there a discussion or KB article that discusses a matrix/capability of the differing interface deployment modes.

I.e., Layer2's pros and cons, Vwire's pros and cons, etc.

Resolved! Does intrazone-default have SRI enabled by default ?

Just a basic one - does the intrazone-default rule have server response inspection enabled by default? Appears so

Application Dependencies

Hi all,

First time post.

If you add all the required dependent applications to security policy (e.g. for Skype: msn-base, ssl & web-browsing), does this then allow all of those apps out dependent of if the primary Skype app is being used for that poli

...

URL Filtering: Can't Block website when user use Google Cache

Hi all,

I want to block a website whe user user google cache or translate.

In the past i tested everything ok, Palo Alto could block when user use google cach or translate.

But today, Palo Alto can't block website when user use google cache ( But can bl

...

PANGP virtual ethernet adapter missing on windows 7

Hello,

PANGP virtual Ethernet adapter is missing from Windows 7.
I have tried uninstalling and reinstalling GlobalProtect.
I have also tried following this article:
https://live.paloaltonetworks.com/t5/Management-Articles/Error-Failed-to-find-PANGP-virt

...

Second - Can I follow the PAN guide for - "IPSEC interoperaability between Palo Alto Firewalls and CISCO ASA"? The reason I ask is the guide show conifguration between a PAN-5060 and a AS

...

Discussions

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

Discover LIVEcommunity Through Our New Animated Explainer Video!

PA and AD Integration

Resolved! 3050 - Maximum Number of Routes & ProxyID

Replacing ssg140 Netscreen with Palo Alto

Resolved! How to request new URL Category

Resolved! Outbound SSL Decryption Capabilities

i can get into meldmeld via ssh , but cannot via webui.. doesnt like id and password in webui.

Authenticated threat feed - Miner node

Resolved! Matrix/discussion of capability with the differing interface deployment modes

Resolved! Does intrazone-default have SRI enabled by default ?

Application Dependencies

URL Filtering: Can't Block website when user use Google Cache

PANGP virtual ethernet adapter missing on windows 7

Agentless User-ID Question

Any guides to setup Global Protect always on(user-logon) when using Radius with RSA ?

IPSEC interoperability - PAN-VM-200 to CISCO ASA 5505

Does Palo Alto provide free exam vouchers for their customers?

Is there any way to apply multiple interface management profiles

THREAT MAP on GUI is unable to export

GlobalProtect Machine account exists with device serial number config

Identifying Source IP Addresses for Routing Palo Alto Firewall Logs to an Azure Collector via IPSec Tunnel

Re: CLI - Basic to Advance PAN-OS 11.1

Re: IP Wildcard Mask Address Objects

Questions about PAN-303959

Re: Access problem Autoassist

Re: Does Palo Alto provide free exam vouchers for their customers?

Unlock your full community experience!

Resolved! 3050 - Maximum Number of Routes & ProxyID

Resolved! How to request new URL Category

Resolved! Outbound SSL Decryption Capabilities

Resolved! Matrix/discussion of capability with the differing interface deployment modes

Resolved! Does intrazone-default have SRI enabled by default ?