General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 1, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Resolved! How to configure two-factor auth in GlobalProtect

Can someone point me to a document for configuring two-factor authentication in GlobalProtect?

Thx

Is it possible to save login data (USER/PASS) in Firefox?

My Firefox does not ask "save oder not"?

Thanks

Roman

Need to migrate checkpoint firewall config files to palo alto xml file.

Hi All,

Kindly let me know the solution for the same....

Stopped the services in checkpoint using cpstop command using CLI and and targeted the folder called upgrade_tools directory

Run the command called upgrade_export and named the new export file and

...

ike policy

What part of the configuration on the PA matching what is called the ike policy on the Cisco?

Custom Vulnerability Object to detect Failed WordPress Logins

I'm trying to stem the flood of wordpress brute force attacks coming into our network (we host a lot of WP sites).

Detecting WP logins is relatively easy, by setting up a signature that looks for the regex wp\-login\.php in the http-req-uri-path cont

...

Not getting HIP logs even i have enabled logging in security policy for Global protect..

Hi All,..

Not getting HIP logs even i have enabled logging in security policy for Global protect. But i am connecting to global protect portal.

PAN-OS: 4.1.7 Model: 2050 In HA: Active/passive

Thank you,

Regards,

Gururaj

Resolved! security-policy-match from the API

I'm trying to write a tool that will test security policy from a web portal. I cannot seem to get the command working properly, though. The URL I'm using on the firewall is this:

https://host.local/api/?key=keyhere&type=op&cmd=<test><security-policy-m

...

Is there any document for Gemalto Authentication.

Is there any Configuration Help for Gemalto authentication with Paloalto firewall

Resolved! Error when trying to restart management-server

My PA 2020 box has been a bit slow of late, and it also has failed on 2 commits so I thought I would drop onto CLI and do a debug software restart management-server

as this would usually pick things up when I have had the problem in the past.

But when

...

Antivirus profile question, wildfire action?

Hello,

Have a question about how to configure an antivirus profile. When try to define Decoders and actions can see a tab for "Wildfire Action" and that's where my confusion appear. what's the purpose of this tab? that implies that if I select block,

...

URL Filtering with wildcards

Will using "*.youtube.com" cover access to www.youtube.com, youtube.com and all other possible combinations?

Thanks!

Is it possible to enable url redirection in PaloAlto?

Hi All,

Scenario: We have the web server for example.com in trust zone, Any person can access it by anywhere due to destination NAT in firewall with public IP for example.com.

Problem : As we don't have internal DNS server which resolves the example.co

...

Wildfire -> DNS Signatures -> PAN-DB

Does anyone know the flow that the PANW Firewall goes through to update the DNS Signature data? Does Wildfire detection feed the DNS Signatures and then PAN-DB categorizes the URL as Malware?

Thanks,

Jeff

Resolved! DRAM | Platform specification

Hi all,

Based on documentation on this topics >> Platform Specifications Are there anyway to show DRAM (such as PA-5060 is 29 GB) on CLI?

Best Regards,

My palot blocks the access to internet

hello Paul
I was placing the 200 pa for a client in transparent mode.
positions of lan n 'happens more to go on the net.
Here the architecture of the network
before.
(lan) ==> (ISA) ==> Internet
RAS
--------------------------------------------------

...

Discussions

Join us for an amazing virtual event - Ignite: What's Next - October 1, 2025

Discover LIVEcommunity Through Our New Animated Explainer Video!

Resolved! How to configure two-factor auth in GlobalProtect

Is it possible to save login data (USER/PASS) in Firefox?

Need to migrate checkpoint firewall config files to palo alto xml file.

ike policy

Custom Vulnerability Object to detect Failed WordPress Logins

Not getting HIP logs even i have enabled logging in security policy for Global protect..

Resolved! security-policy-match from the API

Is there any document for Gemalto Authentication.

Resolved! Error when trying to restart management-server

Antivirus profile question, wildfire action?

URL Filtering with wildcards

Is it possible to enable url redirection in PaloAlto?

Wildfire -> DNS Signatures -> PAN-DB

Resolved! DRAM | Platform specification

My palot blocks the access to internet

block geo location IP version 6

Configure SDWAN with only one transport (FTTH)

Paloalto Images not available

Can I add specific port, and port range on the same Service Objects

Creating CSR with SAN via API calls

Re: Browser not prompting/selecting client cert for GP portal

Re: Mgmt Traffic over VPN

Re: block geo location IP version 6

Re: Bulk changing target device in policy set

Re: Creating CSR with SAN via API calls

Unlock your full community experience!

Resolved! How to configure two-factor auth in GlobalProtect

Resolved! security-policy-match from the API

Resolved! Error when trying to restart management-server

Resolved! DRAM | Platform specification