General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 1, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

SSL Decryption

Hello,

We have quite a few students using hotspot shield and other tunneling apps to get around our filter. I've been successful in block a majority of them by blocking the hotspot shield app. However there are still a number of them getting though by

...

Resolved! Can not check Forward Trust Certificate

Hi All,

My device is PANOS 6.0.5;

I have a problem with Certificate configuration.

On my device, I generate a Certificate follow How to Generate a CSR(Certificate Signing Request) and Import the Signed Certificate;

After, my 3rd party CA issue complete,

...

Certificate Bundle

Hi,

I'm get error on commit: "Warning: cannot find complete cerficate chain for certificate Certificate_Bundle"

I notice there are three bundles in the device certificates, but how do I know which bundle is being used?

How to I test this without breakin

...

How to read SNMP Values from VPN-Tunnel-Interfaces?

Is it very easy to read SNNP Values from physical interfaces:

Connect the SNMP Browser to the PA

Set the right Community password:

PA shows you the interfaces - but only the physical IFs.

How to read SNMP Values from VPN-Tunnel-Interfaces?

Roman

See: Palo

...

Resolved! GlobalProtect Client and Windows 8

PA-200

Software version 6.01

GP Agent 2.0.4

I've installed GP client on perhaps a dozen workstations, and finally have one that will not authenticate. Help.

Installed the machine certificate okay, installed the agent. Opened the app from the system tra

...

HA failover when 1 port loses conectivity

Looking for ways to setup a PA5020 pair for HA that takes into account if the link to one interface goes down the system fail over. I have hear of possibilities of using a "HEARTBEAT" up the link to cause the failover when it fails.

Resolved! Captive Portal Authentication - External and Local Domains

Hello Everybody!

Our Captive Portal is configured to authenticate according an "authentication sequence" LDAP based (LDAP-Local-Auth).

We set 4 different AD servers from different Offices as per below

Captive Portal can authenticate only for first 2 se

...

Software Update Issue

Last month I upgraded to 6.0.4 with no issues. I upgraded my primary, then upgraded the secondary five days later. Again, no problems.

When I upgraded to 6.0.5 h3 (this past weekend), the PA would not pass traffic. I returned to 6.0.4 and traffic res

...

Resolved! LACP support

Hi All,

Is it planned on some road map to have support for LACP (Link Aggregation Control Protocol, 802.1ax) on PAN firewalls?

Regards,

Tician

How to use dynamic block list?

Hi All,

Kindly help me to understand this,

How to use dynamic block list? how it will work? and where to use this ( in policy)?

Regards,

Gururaj

microsoft ntfs file sharing

hi

i have 2 zones

my storage (storage is configured as cifs) is in one zone

users in other zone

i need to allow the users access to the storage using only standard Microsoft file sharing

how can i do that ?

Application Delivery Controller

Hi All,

I know this may not be the correct place to discuss this however where I am I don't get the best response to feature requests.

What I was wondering is there any chance PAN is looking to create a load balancer (ADC), as it is the one area of our

...

Resolved! Url Filtering

I am trying to figure out url filtering. My company has me blocking web-based email url category. I have just been asked to allow certain users access to https://gmail.google.com so I created a custom url category and placed https://gmail.google.c

...

Resolved! multiple users same machine privileges crossed

currently have a customer using radius authentication on the wireless and user-id on the PA. The problem is when two different users use the same machine. Teacher logs in and gets a policy applied to the session going through the firewall and she log

...

Zone protection UDP flood tuning

So, UDP Flood protection on my untrusted zone kicked in for the first (and second) time last night. The end result was not passing traffic each time for about 5-10 minutes. I'm guessing that the CPU (2050) was just spinning its wheels the entire time

...

Discussions

Join us for an amazing virtual event - Ignite: What's Next - October 1, 2025

Discover LIVEcommunity Through Our New Animated Explainer Video!

SSL Decryption

Resolved! Can not check Forward Trust Certificate

Certificate Bundle

How to read SNMP Values from VPN-Tunnel-Interfaces?

Resolved! GlobalProtect Client and Windows 8

HA failover when 1 port loses conectivity

Resolved! Captive Portal Authentication - External and Local Domains

Software Update Issue

Resolved! LACP support

How to use dynamic block list?

microsoft ntfs file sharing

Application Delivery Controller

Resolved! Url Filtering

Resolved! multiple users same machine privileges crossed

Zone protection UDP flood tuning

block geo location IP version 6

Configure SDWAN with only one transport (FTTH)

Paloalto Images not available

Can I add specific port, and port range on the same Service Objects

Creating CSR with SAN via API calls

Re: Browser not prompting/selecting client cert for GP portal

Re: Mgmt Traffic over VPN

Re: block geo location IP version 6

Re: Bulk changing target device in policy set

Re: Creating CSR with SAN via API calls

Unlock your full community experience!

Resolved! Can not check Forward Trust Certificate

Resolved! GlobalProtect Client and Windows 8

Resolved! Captive Portal Authentication - External and Local Domains

Resolved! LACP support

Resolved! Url Filtering

Resolved! multiple users same machine privileges crossed