This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 2182 Views
  • 0 replies
  • 0 Likes

About updating AD group membership

Hello guys

1. I configured LDAP profile and update from AD DC

2. AD group named domain-users has about 10900 user

3. Customer created new user and applied new user to domain-users group

So I tried to refresh a group-mapping information by debug command.

...

7-Zip ARJ File Buffer Overflow Vulnerability(31030)

Has anyone come across this vulnerability?  We have several PC's with 7-zip installed for extracted .tar files in windows.  Even after we delete 7-zip, we still see these vulnerabilities being flagged by the pan.  Has anyone seen this behavior before

...

jmurphy by L2 Linker
  • 2250 Views
  • 1 replies
  • 0 Likes

Resolved! pa performance analyze

hey

i am trying to analyse if the PA is under load regarding to the PA specs,

the customer is having sometimes disconnects on the network, i can see that the CPU have peaks sometimes but mainly is OK

netcom@PA-IL-ACTIVE(active)> show running resource-m

...

minow by L4 Transporter
  • 2912 Views
  • 1 replies
  • 0 Likes

best practice User-ID strategy?

Hello,

first I try to give you some information. Our headquarter is located in Germany. All of our subsidiaries are connected to Germany via relatively slow VPN lines. Overall we have round about 20 DCs in different countires. Until now we have only 3

...

SYSTEM ALERT : high : HA Group 1: ** version does not match

Hi Friends,

I wanted your help in solving this persiting issue.I have a PA4020 in HA mode which is configured in Active-Passive mode. From last few days i am getting the below error

SYSTEM ALERT : high : HA Group 1: Anti-Virus version does not match

SYS

...

u13168 by Not applicable
  • 6019 Views
  • 5 replies
  • 0 Likes

Does PA firewall really support 6in4 tunnel?


I have a free 6in4 tunnel from Hurricane Electric. The tunnel profile inucludes IPv6 Tunnel Endpoints, Routed IPv6 Prefixes and Anycasted IPv6 Caching Nameserver. I used these information to configure a Juniper SSG firewall and it works. I was told b

...

yq by L0 Member
  • 4905 Views
  • 3 replies
  • 0 Likes

Resolved! Unable to Perform Debug Flow

Hello, have a PAN-5050 running 4.1.13, where I am trying to debug flow on.  Followed the steps necessary to turn on flow debugging but I am not seeing anything log to either of the dataplane pan_packet logs files. I've confirmed the settings are in p

...

Resolved! Forward Trust Certificate

Hi,

In my office environment, we have an internal certificate that we have been using prior to installing PAN device. Lately after installing PAN, our office staff are always getting certificate warnings whenever they visit a SSL enabled website.

I re

...

Suhaimi by L1 Bithead
  • 2914 Views
  • 1 replies
  • 0 Likes

Maximum PAN-OS in Signature Update

Hi All,

I see in Release Note application update in Dynamic Updates or email like this :

There is a maximum PAN-OS version in Conficker.

Why some threat have limitation in PAN-OS ?

Please advice.

Thanks.

Regards,

MG

mg_imid by Not applicable
  • 2972 Views
  • 3 replies
  • 0 Likes

Is config saved at a flash memory?

Hi.

I saw PAN-OS 5.0 Administorator Guide.

P37 bellow

------

Revert to last saved config Restores the last saved candidate configuration from flash memory. The current

candidate configuration is overwritten. An error occurs if the candidate

configuration h

...

Resolved! Ignoring control flags

Is it possible to ignore tcp control flags in the Palo Alto?

I have a client where several nodes talk back to a server through the PAN. The nodes will send a FIN packet so the PAN will drop the session.. however, the vendor requires the session to sta

...

SDorsey by L4 Transporter
  • 3183 Views
  • 3 replies
  • 0 Likes

gotoassist application recognition

Is anyone else having issues with PA not recognizing gotoassist very well ?

Citrix documentation expects you to open tons of DNS addresses and/or IP ranges, but I'm a bit wary of opening ALL traffic on ports 80 and 443 to these (most IP ranges are on

...

dieter_b by L4 Transporter
  • 4129 Views
  • 4 replies
  • 0 Likes
  • 24253 Posts
  • 119 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks