This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4105 Views
  • 0 replies
  • 0 Likes

Application Dependencies

Hi all,First time post. If you add all the required dependent applications to security policy (e.g. for Skype: msn-base, ssl & web-browsing), does this then allow all of those apps out dependent of if the primary Skype app is being used for that policy?i.e does it allow msn-base, ssl & web-browsing from the source IP address to the desti...

njuttner by L1 Bithead
  • 3891 Views
  • 5 replies
  • 0 Likes

URL Filtering: Can't Block website when user use Google Cache

Hi all,I want to block a website whe user user google cache or translate.In the past i tested everything ok, Palo Alto could block when user use google cach or translate.But today, Palo Alto can't block website when user use google cache ( But can block google translate )Pls help me know why!!ThanksI creat URL profilePalo Alto Block website www....

dat.tran by L2 Linker
  • 12314 Views
  • 6 replies
  • 0 Likes

PANGP virtual ethernet adapter missing on windows 7

Hello, PANGP virtual Ethernet adapter is missing from Windows 7.I have tried uninstalling and reinstalling GlobalProtect.I have also tried following this article:https://live.paloaltonetworks.com/t5/Management-Articles/Error-Failed-to-find-PANGP-virtual-adapter-interface-when/ta-p/65259GP will not work without this adapter being present.It curre...

fmustafa by L1 Bithead
  • 24337 Views
  • 2 replies
  • 0 Likes

Agentless User-ID Question

So I've been under the impression that our PA-3020s contact the ADDC servers to authenticate users every 20 minutes when it's setup to do a probe; then caches this information locally so that it isn't constantly hammering the servers with WMI requests. I've been told that this isn't the case and that they are hitting the server every few seconds...

Capture.PNG
BPry by Cyber Elite
  • 2277 Views
  • 2 replies
  • 0 Likes

Any guides to setup Global Protect always on(user-logon) when using Radius with RSA ?

We are using a mixed 7.0.x environment for PAN-OS and are using GP v. 3.0.2 and I want to test out using the always-on(user-logon) or (pre-logon) feature with Global Protect so that when our users take their laptops home, they must sign into global protect before doing anything else. We are using RSA for authentication and I was not able to ...

IPSEC interoperability - PAN-VM-200 to CISCO ASA 5505

Good Day First - Do you need a IPSEC license for a PAN-VM? Second - Can I follow the PAN guide for - "IPSEC interoperaability between Palo Alto Firewalls and CISCO ASA"? The reason I ask is the guide show conifguration between a PAN-5060 and a ASA 5505. Third - Has anyone done this configuration? and are there things to watch for? Thanks...

burtond by L2 Linker
  • 7899 Views
  • 11 replies
  • 0 Likes

Software versions

Why are for example the software version 7.1.3 (29.6.2016) ready for download and update before 7.0.9 (1.8.2016)? When I look at the Software-option under Device when I am about to update my PA-3020, I get confused when I see for example version 7.1.2 one day and 7.0.7 the next day. My only guess why it is like this, must be the version installe...

NilsRune by L0 Member
  • 3752 Views
  • 3 replies
  • 0 Likes

ISP Load balancing with ECMP

I have the Following Scenario on a PA-200 [ISP1]Zone = UntrustEth1/1 = 192.168.7.110/24Modem GW = 192.168.7.1/24 [ISP2]Zone= UntrustEth1/2 = 192.168.5.110/24Modem GW = 192.168.5.1/24 [Local LAN]Zone=TrustEth1/3 = 10.1.1.1/24Running DNS-Proxy and DHCP for Eth1/3 In the Default VREnabled ECMP0/0 to 192.168.7.1 [ ISP1 ]0/0 to 192.168.5.1 [ ISP2 ]Su...

m7usman by L1 Bithead
  • 6940 Views
  • 6 replies
  • 0 Likes

How to filter rule by subnet

Hi there, I'm trying to filter the rules via subnet. Is this possible ? I've tried copying (addr in '10.10.10.0/24') from a working log filter search and that doesn't seem to work. There's no filter builder like the log search box so i can just use that to figure this out. This is not very intuative. is it even possible to filter rules by Sub...

Mugwali by L2 Linker
  • 3042 Views
  • 2 replies
  • 0 Likes

Resolved! Benifit of Target Tab in security policy on Panorama.

Hi Guys. Good day!I would like to know that what is the benifit of target tab on Panorama. For eg. I create a shared policy. Now I push it to firewalls I choose using device group while commit. Now I create shared policy and choose target (never done it). Do I need to commit on device group than?What will happen if I commit on all devices but...

yadsingh by L2 Linker
  • 6002 Views
  • 4 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks