General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Resolved! How to make access for another router thru PA-500

I need to setup router from vendor with official ip adress because it cannot use nat. It will support a service from Miele called "Miele Logic".

Without setting this directly on modem wiith swith I want to sett this on interface at PA.

I have not figur

...

SSLMGR-cert-ocsp-verify-failed error

Hi Guys,

My client has configured LSVPN. The tunnel is up, but he is getting the sslmgr-cert-ocsp-verify-failed error message.

It said SSLMGR certificate ocsp verification failed. Certificate xx status is unavailable.

Has anyone experienced the same iss

...

Resolved! GUI not working with Internet Explorer 11

Has anyone been able to get the GUI to work on Internet Explorer 11?

Resolved! virtual system configuration

Hi,

when configuring a virtual system, is a restart is required

Regards,

Sarah

Anyone successfull with Global Protect Single Sign on and Windows 8.1 client?

Running GP 2.0.3-5 and the single sign on fails on windows 8 or 8.1 clients. Windows 7 works fine so I'm pretty sure I have the portal and gateway setup properly. I've opened a case with support but they're drawing blanks after three days.

Here's the

...

Rule shadowing

does that basically mean you have more than one rule doing the same thing?

Event risk report for email scheduler

Hi Friends,HULK hshah Steven Puluka panos panagent,

I want the report related firewall activity like system related eg: admin login, changed made, suspious activity etc. risk report once in day. pls suggest.

Thanks in advance.

Regards

Satish

Ping thru device and static route qestion

Hi,

i have one 2050n device in my lab; device is running 4.1.6.

Interface 1/1 is configured for as dhcp client and i am able to ping update server and obtain dynamic updates. I have no devices/clients connected to inside LAN. Inside lan is on ethernet

...

bit9 integration

Is it still possible to integrate bit9 with the PA? If so has anyone tried it and is it effective? Other comments pro or con would be appreciated

Resolved! SSL decryption using incorrect security policy

Hello all,

I am testing out SSL decryption on a few categories. For now I am using a system generated certificate and it works in decrypting the categories I have selected. The problem is that once it is decrypted, it doesn't use the proper security

...

Resolved! scheduled app-update does not download according to schedule

hi,

am facing a weird issue my app+threat update did not update since 489-2600, nothing changed connectivity exist i tried manually to download from the gui it worked perfectly, even yesterday update is been missed for some reason.

although the logs sh

...

Palo Alto BotNet Reports

Hi!

I've got a question about BotNet reports available on Palo Alto firewalls. Maybe someone has an experience on how accurate they are, what logic they are using and how to better tune them to display more precise information?

At this point I have all

...

IPSEC Phase-1 fails as initiator but not as responder

Hello support community,
I'm using a PAN 3020 A/P cluster on the perimeter running 6.0.9. At all of my remote sites I have a cisco ASA that uses IPSEC tunnels to connect back to the main network. The IPSEC tunnel configuration (IKE phase 1, IKE phas

...

Config Backups Explained

Is a KB article out there that explains what each type of config export is and what is included? Looking through our Palo Altos I can see these 6 different config exports...

Named Configuration Snapshot

Candidate Configuration

Configuration Version

Devic

...

Chrome Plugin Warning

Does the Web GUI use flash or another plugin? I'm able to use it without it enable, but I receive a warning.

Discussions

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

Discover LIVEcommunity Through Our New Animated Explainer Video!

Resolved! How to make access for another router thru PA-500

SSLMGR-cert-ocsp-verify-failed error

Resolved! GUI not working with Internet Explorer 11

Resolved! virtual system configuration

Anyone successfull with Global Protect Single Sign on and Windows 8.1 client?

Rule shadowing

Event risk report for email scheduler

Ping thru device and static route qestion

bit9 integration

Resolved! SSL decryption using incorrect security policy

Resolved! scheduled app-update does not download according to schedule

Palo Alto BotNet Reports

IPSEC Phase-1 fails as initiator but not as responder

Config Backups Explained

Chrome Plugin Warning

PCNSE Learning plan under maintenance

Vsys migration

Does anyone have any experience with Expedition

Is it possible to integrate Palo Alto with Radius to send Global Protect events?

block geo location IP version 6

Re: Browser not prompting/selecting client cert for GP portal

Re: Mgmt Traffic over VPN

Re: Is there a need for a book on PAN-OS "Policy as Code" subject?

IPSec HA Failover - Feature Request NSFR-I-26043

Re: Does anyone have any experience with Expedition

Unlock your full community experience!

Resolved! How to make access for another router thru PA-500

Resolved! GUI not working with Internet Explorer 11

Resolved! virtual system configuration

Resolved! SSL decryption using incorrect security policy

Resolved! scheduled app-update does not download according to schedule