This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4234 Views
  • 0 replies
  • 0 Likes

Netflix application rolled in to web-browsing?

Last week I ran an ACC report for the top 25 applications. Netflix was #3 (university environment, so it's to be expected). Today, I ran the same report and Netflix (as an application) is no where to be found. I launched Netflix on my computer to generate some traffic and I'm not seeing it (I waited 20 minutes to make sure the session was end...

bhelman by L2 Linker
  • 5121 Views
  • 3 replies
  • 0 Likes

Resolved! App-ID for Apple iOS Update

Hi All,I'm preparing for tomorrow's iOS8 update. Last year with iOS7, we got slammed on bandwidth. This year now that we have the Palo Alto, I'm configuring QoS so that the iOS update doesn't eat all of our bandwidth.Does anyone know what App-ID the iOS update service falls under? There is an apple-update app-id, but it appears to be only for...

wocomike by L1 Bithead
  • 7911 Views
  • 5 replies
  • 0 Likes

User-ID IP mapping

Why does some traffic in the logs not have a user tied to the IP address at times even tho in the logs the IP has a user mapped to it most of the time. This is causing policy to be dropped down to a different level.

markk96 by L3 Networker
  • 3936 Views
  • 5 replies
  • 0 Likes

Login problem - old user, new laptop and a confused administrator

PAN-200Version: 6.0.1GP Agent: 2.0.4Having a problem with a laptop (Windows 8.1) and authenticated using certificates and active directory. Palo Alto and network newbie. New to Windows .. I've been a linux admin for so very long. Help ...So .. we doubled the size of our IT department with a new hire, Ben. Ben used a loaner laptop for a week,...

bdunbar by L3 Networker
  • 3006 Views
  • 2 replies
  • 0 Likes

Issue with static routes.

I look after a PA2050 running OS 4.1.8I am trying to setup 2 new static routes in my virtual router but they are not being picked up when I do a show routing route or show routing fib after a commit.One of the routes is a new one and the other is a reassigned subnet that was used on an old decommissioned site (this route was removed).In simple t...

phild by Not applicable
  • 10874 Views
  • 12 replies
  • 0 Likes

Resolved! How to remove an address-group member via XML API

Hi,I would like to remove a single member from an address-group, here is the query I am sending:https://firewall1.it.mydomain.net/api/?type=config&action=delete&xpath=/config/devices/entry/vsys/entry[@name='vsys1']/address-group/entry[@name='NameOfTheGrpoup']/member[text()='NameOfTheMember']&key=MyKeyThe query returns the following: ...

Alextc by Not applicable
  • 17480 Views
  • 3 replies
  • 0 Likes

Using FQDNs pointing to a CNAME instead of A Record does not work

My PA can not resolve FQDNs pointing to a CNAME.This is dangerous, if you are using FQDN instead of IPs in policies. They can stop working.We configured a FQDN hostname host.mydomain.de and bound it to a policy.Few months later moved this Service to another server using CNAME. host.mydomain.de. CNAME newhost.mydomain.dePA can not resolve this ne...

rkra by L2 Linker
  • 9259 Views
  • 9 replies
  • 0 Likes

PAN in Layer 2 mode and Microsoft NLB

Hi!Customer configured Palo firewall to work in Layer 2 mode to protect VLAN. In that VLAN there are two servers in MS NLB configuration. In VLAN configuration in Palo, static MAC entry is configured for virtual MAC address, but that entry isn't displayed with show mac command. See attached picture and listing:mkopcic@PA-4020> show mac Bridge...

mkopcic by L2 Linker
  • 5878 Views
  • 4 replies
  • 0 Likes

Resolved! App and Threat Compatibility MisMatch

Hey there,I have 2 PA-500's currently on:Software Version6.0.2GlobalProtect Agent1.2.3Application version461-2402 (10/14/14)Threat Version461-2402 (10/14/14)Antivirus Version1391-1863 (10/13/14)URL Filtering version4392Software Version6.0.2GlobalProtect Agent1.2.3Application version461-2402 (10/14/14)Threat Version461-2402 (10/14/14)Antivirus Ve...

Zewwy by L3 Networker
  • 9787 Views
  • 9 replies
  • 0 Likes

Resolved! PA-5020 Fans?

Just checking to see if this is normal. I got a report today that the fan speed on our PA-5020 will speed up at random times, and calm back down. It's loud enough people can hear it outside of the closet. Is that normal?

mharding by L4 Transporter
  • 3704 Views
  • 2 replies
  • 0 Likes

SSL Decryption

Hello,We have quite a few students using hotspot shield and other tunneling apps to get around our filter. I've been successful in block a majority of them by blocking the hotspot shield app. However there are still a number of them getting though by creating tunnels on port 443. In this case we would want to do outbound ssl decryption correct? ...

cpkaiser by Not applicable
  • 4435 Views
  • 5 replies
  • 0 Likes

Resolved! Can not check Forward Trust Certificate

Hi All,My device is PANOS 6.0.5;I have a problem with Certificate configuration.On my device, I generate a Certificate follow How to Generate a CSR(Certificate Signing Request) and Import the Signed Certificate; After, my 3rd party CA issue complete, I import the issued certificate (crt file) successfully and status is "valid"I can check "Certif...

Certificate Bundle

Hi,I'm get error on commit: "Warning: cannot find complete cerficate chain for certificate Certificate_Bundle"I notice there are three bundles in the device certificates, but how do I know which bundle is being used?How to I test this without breaking it.....Thanks

asabadin by L1 Bithead
  • 5882 Views
  • 6 replies
  • 0 Likes

How to read SNMP Values from VPN-Tunnel-Interfaces?

Is it very easy to read SNNP Values from physical interfaces:Connect the SNMP Browser to the PASet the right Community password:PA shows you the interfaces - but only the physical IFs.How to read SNMP Values from VPN-Tunnel-Interfaces?RomanSee: Palo Alto Tunnel Interfaces | thwack

rkra by L2 Linker
  • 3179 Views
  • 4 replies
  • 0 Likes

Resolved! GlobalProtect Client and Windows 8

PA-200Software version 6.01GP Agent 2.0.4I've installed GP client on perhaps a dozen workstations, and finally have one that will not authenticate. Help.Installed the machine certificate okay, installed the agent. Opened the app from the system tray, put in correct credentials, click 'Apply' and .. nothing happens.Where do I begin troubleshoot...

bdunbar by L3 Networker
  • 7189 Views
  • 6 replies
  • 0 Likes
  • 24358 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks