This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4246 Views
  • 0 replies
  • 0 Likes

Palo Alto Software/Threat/AntiVirus Update Policy

Hi,I am having an internet facing firewall which needs to be kept updated with the Threat/AV software. I have configured the service route to use the correct interface for updates. However, it still cant check and download the required updates. As its evident I need to have a policy in place to allow the above traffic. I know what source to use,...

DCN by Not applicable
  • 4620 Views
  • 5 replies
  • 0 Likes

Resolved! How can I edit group entry or delete group using xml-api?

Hello.It is possible to create group and add group entry using XML-API at User-ID. like below.<uid-message><version>1.0</version><type>update</type><payload><groups><entry name="group1"><members><entry name="domain\user1"/><entry name="domain\user2"/></members></entry>...

namok77 by Not applicable
  • 3645 Views
  • 2 replies
  • 0 Likes

Management Interface outside of firewall

Knowing that one does not *usually* put a device management interface outside of the firewall, on the public Internet, in the case of PAN gateways is there any severe problem with this? I have a situation where putting the management of these devices on the private management network would require quite a bit of additional configuration, bandwid...

Resolved! Data filter with SSH proxy decryption

So, I would like to be able to enforce file blocking between our external FTP,sftp,scp server that is published in our DMZ. Users coming into the DMZ are NAT'ed from a public IP space to 172.16.0.0/16 space. I have enabled SSH proxy decryption between the outside and the DMZ interfaces and traffic is being decrypted as shown by the traffic logs....

Resolved! When PA move Active-Passive what problems?

Hello~PA Devices are HA environmentone of them failed disk or temperature raiseDoes PA move other device?because I don't know exactly about moving HALink Fail, Path Fail, HA Link Fail I knowI think that Environment occur alarm(FAN, Disk, Temperature, etc? are there ?I seem to PA move other device

VMware and Paloalto

Anybody had issues with VNware servers and Palalto firewall. Suddenly our webservers not able to communicate from DMZ to internal network where the SQL servers are.Adrian

alupea by L0 Member
  • 1867 Views
  • 1 replies
  • 0 Likes

User Agent report?

Hi, PanOS 4.1.14. Is it possible to report on user agent connecting via my 2020? To be able to report on Firefox, Chrome or IE versions for example would be useful . Further still..(and I doubt this..) to instigate a policy based on a user agent? Thanks allNick

nickcx1 by Not applicable
  • 4442 Views
  • 3 replies
  • 0 Likes

Resolved! Customizing Captive Portal login response page

I'd like to customize this page, but I don't see it listed in the GUI (5.0.x) Device Tab / Response Pages. I can see the rest, including the Captive Portal Comfort page... but no logon page?The page in the web browser is titled "User Identification portal".Can someone point me in the right direction?

cenders by L3 Networker
  • 10553 Views
  • 5 replies
  • 0 Likes

Custom whitelist (size matters ?)

Dears,After changing the URL filtering Db from Bright CLoud to PAN Db, many many brazilian sites became "unknown"... Then by default they are blocked...We have created a custom URL Category called whitelist, and then we are putting there all these URLs (pretty much faster than ask PA to recategorize them...)Everything works fine, but the main qu...

how can I get entire session table?

Working on the 5060 in 5.0.7, the active session count is around 60k+, in cli 'show session all' output will only return ~3000 sessions. API returns 9995 lines. How can I get the entire session table?The use case, I will like to be able to take a snapshot of the firewall session table at a given specific moment; find out which vsys has the m...

Resolved! Palo Alto Slow

Hello all,I am having a little problem of slow when I browse the web interface of the Palo Alto (very slow loading pages ...)Do you have an explanation for that?My version of PAN OS Software Version 4.0.14thank you

itracing by L0 Member
  • 8424 Views
  • 6 replies
  • 0 Likes

PANOS 5.0.8 User-ID problem.

Did anyone have a problem with user identification (IP from AD thru User-ID application), I have above with 5.0.8, on 5.0.7 is OK. Users from local subnet are correct discovered, but from other then PA subnets arent.RegardsAdam

wijasa by Not applicable
  • 3996 Views
  • 4 replies
  • 0 Likes

Resolved! PA-5000 Series Disk hot swap?

Hello~~I am very curious,,It is simple questionas far as we know, PA-5000 Series can install RAID 1 DiskIf PA failed either disksCan PA continue logging another disk?If soWhen failed disk exchange, Does have to reboot PA?I am extremely confused nowI had not found document on Support Site yetWould someone like to find document?

  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks