General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Wildfire reports association to wildfire-virus

For every wildfire-virus signature tripped in Threat logs should I expect to recieve a corresponding wildfire report in the Wildfire Submissions too?

Could someone answer or point me to documentation please.

Cant able to access to device after up-gradation reboot from 6.1.4 to 6.1.10

Hi,

I'm not able to access to firewall once after upgrade FW from os version 6.1.4 to 6.1.10, any known issues or any possiabliity that FW gone to maintaince mode else reboot loop mode??

Please assist.

Regards,

Kotresha

Web page issues between F5 and PA

After migrating from an ASA to PA3020, users reported that web pages were not fully loading. The issue was seen on the ASA but rarely. The PA3020 has been showing this issue more often than not resulting in a work around being done on the webpage.

...

Really good tool!

Hi,

This is an really good tool for managing dynamic lists.
So far I have tested a basic setup and I have a few comments/suggestions.

* How do I change the ssl certificate for MineMeld.

* Will you also implement domain blocklists soons (currently runnin

...

Resolved! .yml file: PA device password in clear text

Hi Luigi,

.yml file for DagPush node in /opt/minemeld/local/config shows password of the device in clear text. It should be at least hashed.

Thanks

Regards,

Bertrand

Resolved! VMware ESXi 6.0 and PA VMs

Is VMware ESXi with vSphere 6.0 supported?

The technical documentation for the 6.1 virtual appliances states: "VMware ESXi with vSphere 5.0, 5.1, and 5.5 for VM-Series running PAN-OS 6.1."

And the 7.0 documentation states: "VMware ESXi with vSphere 5.1

...

Resolved! NAT and Security Policies, PBF Failover and Symmetric Return - Dual ISP

This is two parts:

1) I configured Destination NAT rules and corresponding Security Policies to allow inbound access to servers on private LAN. These all utilize the Primary ISP public IP address. If I want these internal servers accessible over the

...

Resolved! OSPF pocket in an EIGRP network

I am putting a PA firewall in our datacenter and am looking to have the firewall advertise the protected subnets out to the rest of the network. However, the rest of the network uses EIGRP, so the datacenter switch and the PA firewall will need to b

...

Blocking youtube

How can I properly block youtube, because it's bypassing a PA-3050 on port 443 (https://)?

Resolved! Policies >> Security

Unsure quite how to phrase my question. Under Policies >> Security:

I have a Rule way at the top for McAfee ePO; tcp; port 8443.

Settings that I have set are:

Source Zone: Trust Source: IP address for a specific internal host

Destination Zone: Un

...

Resolved! PAN response to: Attacking Next-Generation Firewalls: Breaking PAN-OS ?

So are there any response available from PAN regarding the topic which you can read below?

Like when are updates scheduled to be released, any mitigations you can perform before updates are available etc?

Or are they already disclosed (and fixed)

...

Some Users not Mapping in User-ID

Hi All,

I'm currently experiencing some issues with user-id mapping. Some users are not being mapped to IP addresses.

Current setup: I have 3 domain controllers - all have Service Accounts with correct privileges. They are also showing as 'Connecte

...

Did Factory Reset a PA-200 and system now automatically reboots in Maintenance Mode

Hi all, maybe someone can help me with this.

Just did a factory reset on a PA-200 via maintenance mode (via console) and now system reboots automatically in maintenance mode.

I followed instruction from here:

https://live.paloaltonetworks.com/t5/Mana

...

Resolved! Applications On Non-Standard Ports

It's perfectly possible I'm being unusually dumb here, but I can't see an elegant way of allowing application usage on non-standard ports - for example ssh on tcp/32777. The obvious way of doing it is to allow a rule that allows appid:ssh on service:

...

visualize custom regions on traffic/threat map

Is it possilbe to show custom regions with gps coordinations on the threat/traffic map with the correct gps coordinates?

We have set custom regions for departments with private subnets and gps coordinations.

In the traffic or threat map we can only se

...

Discussions

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

Discover LIVEcommunity Through Our New Animated Explainer Video!

Wildfire reports association to wildfire-virus

Cant able to access to device after up-gradation reboot from 6.1.4 to 6.1.10

Web page issues between F5 and PA

Really good tool!

Resolved! .yml file: PA device password in clear text

Resolved! VMware ESXi 6.0 and PA VMs

Resolved! NAT and Security Policies, PBF Failover and Symmetric Return - Dual ISP

Resolved! OSPF pocket in an EIGRP network

Blocking youtube

Resolved! Policies >> Security

Resolved! PAN response to: Attacking Next-Generation Firewalls: Breaking PAN-OS ?

Some Users not Mapping in User-ID

Did Factory Reset a PA-200 and system now automatically reboots in Maintenance Mode

Resolved! Applications On Non-Standard Ports

visualize custom regions on traffic/threat map

No "certificate used by" field when generating certs for SSL forward trust and untrust?

A question about snat address pool couse a route loop

How do I get the documentation / training for creating advanced XQL queries

panorama disk health

Recommend os version

Re: Exclude only communications on specific port numbers from Global Protect

Re: Software NGFW Credits

Re: Advanced DNS Security vs DNS Security License

Re: Replacing HA Hardware

Re: About API keys when using the curl command

Unlock your full community experience!

Resolved! .yml file: PA device password in clear text

Resolved! VMware ESXi 6.0 and PA VMs

Resolved! NAT and Security Policies, PBF Failover and Symmetric Return - Dual ISP

Resolved! OSPF pocket in an EIGRP network

Resolved! Policies >> Security

Resolved! PAN response to: Attacking Next-Generation Firewalls: Breaking PAN-OS ?

Resolved! Applications On Non-Standard Ports