This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4105 Views
  • 0 replies
  • 0 Likes

Source user not showing in traffic logs

I have the agentless user-id configured in my PA-500, software is 5.0.4. If I do a "show user ip-user-mapping all", it retrieves a list of usernames. However, in my traffic logs (which is currently only limited to a few machines that are running through it), there is almost no log entries with a source user listed.Most of the entries are a PC ...

uscit by Not applicable
  • 22905 Views
  • 10 replies
  • 0 Likes

Concern Regarding Inclusion of Open-Source Projects in "Shareware and Freeware" Category in Advanced URL Filtering

Hello Palo Alto Community, I am writing to raise a concern regarding the categorization of websites under Palo Alto Networks' Advanced URL Filtering. Specifically, I have noticed that sites providing access to open-source projects (such as Github, git-scm.com or sourceforge.net) are included within the "Shareware and Freeware" category. Accor...

resources-unavailable for DNS-base traffic

Model: Palo Alto PA-3420Software version: 11.2.4-h1 Most of our dns-base traffic has the "session end reason" resources-unavailable suddenly. We're also having trouble loading webpages. The resources-unavailable reason is only on DNS-base traffic and it is for DNS traffic to our 2 internal DNS servers, but also from our DNS-server to the forwa...

adminglu by L1 Bithead
  • 6885 Views
  • 10 replies
  • 1 Likes

Enquiry on SSL VPN Web Mode for Remote Users

Hi All, Would like to enquire if upcoming there will be a feature release or route map on SSL VPN web mode for remote users. The use case is as such: Users to connect and login to GlobalProtect Client from their endpoint After successful connection established, users to access web portal to access configured the web portal for SFTP related ...

Stale SIP Sessions

Hello all, We seem to have an issue with sip sessions being stuck in the session monitor for weeks and sometimes months. There have been instances, albeit extremely rare, where it prevented new sessions from being formed on a sip trunk we were testing (it's being moved off of the firewall for production). Once I cleared the stuck session we we...

stalesessions.png
stalesessionssip.png
ClintL by L2 Linker
  • 18329 Views
  • 11 replies
  • 0 Likes

Android Samsung update doesn't work

Hello everyone, I can't solve the problem of updating Samsung smartphones running Android connected to the company Wi-Fi network.I created a custom rule for mobile phone updates, but it still doesn't work. Everything is set to allow in the monitoring, but it still doesn't work.I have run several tests, minimizing the rule configuration, but it s...

G.Geraci by L0 Member
  • 1974 Views
  • 4 replies
  • 0 Likes

FortiGate 501E & FG1101F equivalent Palo Alto model (below PA-5000)

Hello, I am planning to migrate from Fortinet to Palo Alto. Current firewall: FortiGate 501E Edge & DC Current Firewall: FortiGate 1001F Edge & DC Deployment: Enterprise edge All security features enabled (IPS, App-ID, URL filtering) I am looking for the closest Palo Alto equivalent model, Which model would you recommend and why? T...

Resolved! About PAN-301496

Attention: Global TPM team, Hi, I found PAN-301496 in PAN-OS 12.1.4 Addressed Issues.https://docs.paloaltonetworks.com/ngfw/release-notes/12-1/pan-os-12-1-4-known-and-addressed-issues/pan-os-12-1-4-addressed-issues Is this issue fix in PAN-OS 11.2? Best regards,MasaW

MasaW by L2 Linker
  • 3849 Views
  • 2 replies
  • 0 Likes

Resolved! Outlook and mapi-over-http

Hello team, Today, I had problems connecting Outlook 2019 to Exchange Online. After analyzing: it turned out that my PA suddenly started dropping the Mapi-over-http application, which it didn't need previously. What could be causing this behavior?

Resolved! MANDATORY ACTION REQUIRED: Device Certificate Enforcement affects PA-440

Hi everyone, We have a pair of PA-440 and when we login to the dashbaord we are greeted with a notification on the Device Certificate enforcement (I have attached a screenshot of the warning). When I have gone through the Customer advisory they clearly stated that the PA-4xx series are not affected by this enforcement. Now we do have the f...

Food for Thought - Data Redistribution during HA Failover - User-ID

Hi All, I thought I would share something that gave me grief this week. Background Firewall A and firewall B are in an HA pair. Both firewalls are configured to connect to a User-ID agent sitting on a Windows host within the environment. Firewall A is configured as the data redistribution agent to redistribute User-ID information to oth...

nohash4u by L3 Networker
  • 2922 Views
  • 2 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks