General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Resolved! Spyware Severity Level

Hi,

Could you let me know criteria of each spyware severity levels?

Regards,

Layer 2 vs. Layer 3 Deployment

Hi!

At the moment, I hover between a Layer 2 and Layer 3 Deployment of my PA.

My setup is:

| | | |

Internet <-> IPSEC-router <-> DMZ <-> internal firewall

...

Dynamic Roles vs. Role-based Panorama

Hi everyone

So I was just wondering if anyone else has noticed a discrepancy between role-based and dynamic roles on their Panorama. I notice that "botnet" and "session browser" are not drop downs for my role-based admin role. That is fine since https

...

Cisco to PA Access List Migration

Hello,

I am in process of prepping a Palo Alto 5050 to replace a Cisco FWSM. I am doing most of the configuation on the PA by hand, but I was wondering if anyone knows how to best go about importing over 5000 Cisco access list lines into the Palo Alto

...

A lot of traffic on port 443 (https) to ip 65.52.98.231

Hello,

I have a lot connections from my firewall to public IP addresses 65.52.98.231 port 443.

Our SIEM correlated events and generating the following offense:

Event Name: Excessive Firewall Accepts From Multiple Sources to a Single Destination

...

Resolved! DCHP GLOBALPROTCTECT

Hi there.

I wonder if it is possible to match an IP address with a MAC Address, this can be done in the normal DHCP in a public interface, but not if one GlobalProtect in DHCP can be made.

Resolved! SSL Offloading 'Forward Trust' grayed out

Hi,

I have created a certificate from my local CA and also have imported the CSR from PA to the local CA, created the

identity certificate, all is well, but it seems I am not able to "Check Box" the "Forward Trust Certificate" on the PA.

This it seems

...

Resolved! Where we will get migration tool MT2.1 release note and admin guide?

Hi,

Kindly help me to get MT2.1 release notes ( to know supported vendors and hardware requirement to install MT) and administrator guide.

Thank you,

Gururaj

Resolved! Administrator Authentication with ldap

Trying to create role based user account for monitoring the firewall. I tried to use ldap authentication. However it seems there is some issue with using ldap

I am facing this error after trying to authentication with correct credentials and below are

...

nat translation

How to check and verify NAT translation using CLI.

unable to create final .xml file using -Migration tool

Trying to migrate the configuration of fortinet and juniper, after loading configuration and when going to create final .xml file there were some errors. like mask and service port. After changing all object with correct port number and subnet masks

...

Resolved! About custom report with no matched data

Hi guys,

My customer configured the Custom Report with enabled schedule so PAN automatically generated Custom Report and sending a Report to Customer Email address. It's a good work for us.

Customer don't want the report that no data contained caused n

...

Regards,

Velmurugan K

Discussions

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

Discover LIVEcommunity Through Our New Animated Explainer Video!

Resolved! Spyware Severity Level

Layer 2 vs. Layer 3 Deployment

Dynamic Roles vs. Role-based Panorama

Cisco to PA Access List Migration

A lot of traffic on port 443 (https) to ip 65.52.98.231

Resolved! DCHP GLOBALPROTCTECT

Resolved! SSL Offloading 'Forward Trust' grayed out

Resolved! Where we will get migration tool MT2.1 release note and admin guide?

Resolved! Administrator Authentication with ldap

nat translation

unable to create final .xml file using -Migration tool

Resolved! About custom report with no matched data

Resolved! Is there a way to limit the number of logged in administrators?

Resolved! Tips on configuring a secondary internet connection using Verizon Cradlepoint 4G router (ARC750B)

Exclude H323 and SIP inspection for Video calls

CLI - Basic to Advance PAN-OS 11.1

log forwarding to syslog | drops and queue

Combining IP and URL EDL on Rules

Manufacturing Number on a SPF LX module

Better solution for remote access

Re: CLI - Basic to Advance PAN-OS 11.1

Re: flow_tcp_non_syn_drop - packet capture on this counter?

UserID periodic empty groups issue

Re: SAML Authentication Profile not popuating IdP Server Profiles

Re: Upgrade PAN OS from 10.1 to 11.1

Unlock your full community experience!

Resolved! Spyware Severity Level

Resolved! DCHP GLOBALPROTCTECT

Resolved! SSL Offloading 'Forward Trust' grayed out

Resolved! Where we will get migration tool MT2.1 release note and admin guide?

Resolved! Administrator Authentication with ldap

Resolved! About custom report with no matched data

Resolved! Is there a way to limit the number of logged in administrators?

Resolved! Tips on configuring a secondary internet connection using Verizon Cradlepoint 4G router (ARC750B)