General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Resolved! application incomplete no internet access

Hi Guys,

We are seeing the traffic for the new subnet we added recently are coming as incomplete and need some help to troubleshoot this.

Cheers,

Mykhaylo

incomplete traffic no internet access.jpg

palo alto vm

Can somebody help me with the network adapter settings for palo alto vm?

Resolved! Site-To-Site VPN to VMWare VShield Edge?

Greetings all.

We're in pre-deployment for our firewall and I'm attempting to get an Site-To-Site VPN tunnel set up to our VShield Edge setup in the cloud. I have a tunnel established but we can't seem to get anything across it.

Troubleshooting

...

Resolved! Per port session TTL

Hi,

Am I correct when I state that a PAN firewall cannot set different timeouts per used port?

Fortigates and Junipers seem to have this option, where they can set their defaults and specify -if required, for certain ports.

On a PAN device, I don't thi

...

PAN OS 7.1.2

Just updated the FW to PAN OS 7.1.2. The UI looks very mordern !

The ACC page has been re-designed , looks better, is there any way to customise the panes ?

Single AD Forest Multiple Domains with Group Mapping & Global Protect

Does anyone have any best practives on how to configure Multi-Domain authentication with Global Protect? I see how to map/sync groups in multiple domains in my forest, but not entirely sure the process for the Global Protect end. Right now I am usi

...

PAN as VPN Client ipsec psk+xauth

I am a bit new at VPN stuff - I have a PAN-500, i configured VPN for users just fine (IPSec+xauth "cisco compatible" so it works with pretty much anything), as well as static site to site IPSec tunnels.

What I cannot figure out how to do is make my

...

Resolved! "LAN" Interface Failover configuration - Primary: dedicated Line, Secondary: VPN

Hi there,

maybe it's not that complicated but I didn't find a post for this scenario:

The LAN of our Clients are in Location1

(~ 200 km)

The LAN of our Servers are in Location2

Location1 and 2 are using the same firewall which is stored in Loca

...

Console interface of 7.0-h2

Is there a place to test out the 7.0-h2 console interface before upgrading, offered by PA?

Resolved! global protect client

Connect option grayed out under status tab on global protect client? Anyone know what the cause is and the fix?

Cannot Change Application Risk Category Customization

I'm running 7.1.2, but the problem started after 7.1 beta update, I believe.

Setting an applicaiton risk category manually results in it showing up correctly in the application's open window details; however, the firewall will only recognize the de

...

Rule to block TOR Application blocks all traffic directed to Internet

Hello Community,

we have an issue when we try to block TOR application. We do a rule like the image reported below and put it on top of the rulebase:

But it seems that all Internet traffic is dropped by the rule named "Tor_Blocking".

We see t

...

Sample configurations and logs for PAN-OS and Panorama for VM-Series Base Images

Dear PA,

In order to enhance my learning effect with PA products, I installed VM workstation 12 Player and downloaded and ran the PA-VM-ESX-7.1.0 Base Images in it. The PAN-OS (Play virtual machine) runs fantastic on windows 7. I enjoyed playing ar

...

Downloading files like exe and iso taking long time

Hi,
Downloading files like iso and exe taking long time than expected

Any help
Thanks

Captive portal user-id for all services

Hi,

I have set up a captive portal for services http and https. The captive portal works well and I get user-id/IP mapping in the logs. The rules are then applied based on the user group membership (AD). However, this user-id mapping does not work

...

Discussions

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

Discover LIVEcommunity Through Our New Animated Explainer Video!

Resolved! application incomplete no internet access

palo alto vm

Resolved! Site-To-Site VPN to VMWare VShield Edge?

Resolved! Per port session TTL

PAN OS 7.1.2

Single AD Forest Multiple Domains with Group Mapping & Global Protect

PAN as VPN Client ipsec psk+xauth

Resolved! "LAN" Interface Failover configuration - Primary: dedicated Line, Secondary: VPN

Console interface of 7.0-h2

Resolved! global protect client

Cannot Change Application Risk Category Customization

Rule to block TOR Application blocks all traffic directed to Internet

Sample configurations and logs for PAN-OS and Panorama for VM-Series Base Images

Downloading files like exe and iso taking long time

Captive portal user-id for all services

Does Palo Alto provide free exam vouchers for their customers?

Is there any way to apply multiple interface management profiles

THREAT MAP on GUI is unable to export

GlobalProtect Machine account exists with device serial number config

Identifying Source IP Addresses for Routing Palo Alto Firewall Logs to an Azure Collector via IPSec Tunnel

Re: CLI - Basic to Advance PAN-OS 11.1

Re: IP Wildcard Mask Address Objects

Re: What is still missing or needs to be improved in PA Next Generation Firewalls ?

Questions about PAN-303959

Re: Access problem Autoassist

Unlock your full community experience!

Resolved! application incomplete no internet access

Resolved! Site-To-Site VPN to VMWare VShield Edge?

Resolved! Per port session TTL

Resolved! "LAN" Interface Failover configuration - Primary: dedicated Line, Secondary: VPN

Resolved! global protect client