This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4222 Views
  • 0 replies
  • 0 Likes

Resolved! Export license expiration info from Panorama for managed devices?

I'd like to be able export the license expiration information from Panorama for all my managed devices. This would be helpful for creating bills of materials and getting current data for financial planning with real, live data. The support portal's asset management system isn't as useful because I can't remove old devices! Here is an example o...

renewal-dates.png
mgentile by L2 Linker
  • 8671 Views
  • 6 replies
  • 0 Likes

SSL inbound inspection question

Hello,I have PAN OS 6.0.10, I need to implement SSL inbound inspection, for my web server, but I have multiple SSL certificate for same public ip address. When I try to commit configuration, the commit failed. I think PAN support only one Decryption rule for public IP. It's possible to have multiple SSL certificate for same public ip address and...

ctovazzi by L1 Bithead
  • 3695 Views
  • 3 replies
  • 0 Likes

Resolved! Decrypt Exchange traffic

Hi, I´m trying out decrypting traffic to and from our Exchange server. When decrypting incomming traffic the application change from SSL to what ever is in there. ie ms-exchange, outlook-web, rpc-over-http etc. Now for clients to be able to connect I need to allow all theese applications instead of only SSL. Would this potentially present more o...

mgusta by L2 Linker
  • 8331 Views
  • 3 replies
  • 0 Likes

Windows 8.1 Modern UI Apps not working when connected to GP VPN

Hi everyone Does someone also has experienced the issue that Modern UI Apps on Windows 8.1 are not working when connected over VPN? I have already read a lot of information about this issue and that there are a lot of people who have seen this, but unfortunately nothing helped until now to fix this.When I do a packet capture on the physical inte...

Remo by L7 Applicator
  • 3773 Views
  • 2 replies
  • 0 Likes

Allow Office 365 not getting desired results...

Hei,We recently moved over to a full O365 solution and I am trying to customise the ruleset to Allow for O365 traffic when all other traffic is blocked. Unfortunately I have hit a wall and cannot seem to get the application to be allowed. I am hoping one of you can point out what I have done wrong and how to correct it. I have used Addresses (wi...

Decryption and Certificate Questions

Hello Pros,I would like to set up decryption for all traffic/devices accessing the internet. This will include smartphones and all sorts of devices. I would like to set it up in a way where each user is not forced to install a certificate before the device trusts the certificate. 1. If I create a certificate on the Palo and mark it 'Forward T...

Bocsa by L3 Networker
  • 7833 Views
  • 7 replies
  • 0 Likes

TIP: LDAP Group Mappings in a mixed 6.x and 7.x environment with Panorama

All, I thought I would share a quick tip for those people that may be considering upgrading from 6.x to 7.x in an environment where you are using Panorama. In PAN-OS 7.x, the information of your Active Directory domain has been moved from the LDAP settings to the Group Mapping Settings. As the first step in upgrading to 7.x is upgrading your Pan...

Panorama Template.png
Group Mapping.png
Firewall Domain.png

AV version confusion

Hi all, I have a HA pair (A/P) of PA-500s and one of the devices seems to be giving mixed messages about the version of the AV definitions in use. This has been the case for a couple of weeks now. It is not causing problems as such, but it is not right either. If anybody can advise on how I can get our PA-500 to report correctly it would be ap...

pa-av-post1.png
pa-av-post2.png
pa-av-post3.png
DavePalo by L4 Transporter
  • 3908 Views
  • 2 replies
  • 0 Likes

Palo Alto Redundant interface

Hi Guys, i want to connect the Palo Alto in a cross connection to switches. In cisco there is something as Redundant interfaces (link http://www.cisco.com/c/en/us/td/docs/security/asa/asa80/configuration/guide/conf_gd/intrface.html#wp1046014) is something which like this feasible in PA firewall or something a solution for this scenario. As per m...

connectivity.jpg
NiteshS by L2 Linker
  • 8870 Views
  • 5 replies
  • 1 Likes

Facebook videos working again?

So I've set URL filtering to block on the "streaming-media" category which has successfully blocked Facebook videos for months. This week, the videos started working again and it seems it's because they're using a different CDN domain (or multiple ones) -- is it better to block by the App-ID "facebook-video" instead of URL filtering?

Problem upgrading GlobalProtect

Hi,I’ve some problem upgrading GlobalProtectNow I’ve 2.1.1 versionActivating a new version (I try with 2.2.2 and also with 2.3.1) automatic upgrade fail and I need to manually remove GlobalProtect and install new version again. I also tried to install 2.2.2 and then trying an automatic upgrade to 2.3.1 but it still fails This is the log (T688) 0...

diennea by L3 Networker
  • 3240 Views
  • 1 replies
  • 0 Likes

How to export a list of disabled security policies

Hey all; This is probably a question that's been asked before but I'm wondering if there is a way to export a list of all security policies currently disabled. I'd like to have a short list for review. I've only been able to find the CLI to show unused security policies, and from the Policies section I can list all "disabled eq yes" but no way...

cafowler by L2 Linker
  • 3399 Views
  • 1 replies
  • 0 Likes

Resolved! Application Subcategory Report

I want to know how to run a Report on all users who used a File-sharing App. If i use Traffic Log i dont see Application sub category as the Attribut choice.

parichie by L0 Member
  • 2781 Views
  • 1 replies
  • 0 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks