This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1988 Views
  • 0 replies
  • 0 Likes

Resolved! Unable to ping the ip address assigned to untrust interface.

Anyone can help on this issue? I just set up a new PA 200 device.  My problem is i am not able to reach the ip address from outside  which i assigned to my Untrust interface.  Outbound traffic is ok.  I have full access to the internet from internal

...

JunNOC by Not applicable
  • 3368 Views
  • 3 replies
  • 0 Likes

vpn between nortel and PA-500

Hi All,

I have nortel vpn router 1750 in our main site and PA-500 in the branch, I need ipsec tunnel between devices. Nortel has static IP, but PA dynamic. I found that Nortel has site-to-site, initiator and responder options. which option I have to u

...

Aslidin by Not applicable
  • 2673 Views
  • 2 replies
  • 0 Likes

Anyone Blocked a specific file from being downloaded?

Hello All,

   I am wondering if there is a way to block a specific file from any internet source.  We would like to block users from grabbing a specific unsupported browser. (when you have 85k+ workstations - you need to keep them uniform for supporta

...

Art by L3 Networker
  • 6791 Views
  • 7 replies
  • 0 Likes

Resolved! page cannot be viewed properly

Hi,

There is a web page that cannot be viewed properly because of ssl decryption.Decryption is made for gmail applications by using custom url

Is there a way to fix that without disabling ssl decryption ?

Resolved! DHCP Server Delay

Hey all,

Has anyone ever encountered a delay when the PA is handing out DHCP?  I have a test network setup to do some captive portal testing for our guest network and I'm noticing it's taking anywhere between 5 - 25 seconds to get an IP address.  Wire

...

mrsold by Not applicable
  • 4855 Views
  • 3 replies
  • 0 Likes

Resolved! Threat Log filter by 'Name' field

I've got a potential client that is trying to filter the threat log by the threat 'Name' field.  He wants to see all from a specific threat.

Normally you click on the item and it puts it in the filter bar but here when you click on the name you get a

...

icmp redirect support

Hello,

simple question:

Does PA devices send / support icmp redirect ?

Use case:

PA device is the default GW for local LAN subnet (A).

PA device has a route to an another subnet (B). The next hop is on his LAN Interface.

Local Clients devices has only a de

...

glebon by Not applicable
  • 7253 Views
  • 3 replies
  • 0 Likes

Resolved! Licence problem with Iphone/Android GlobalProtect client

Hi,

In our university, we have two PA-5020 (PANOS 5.0.5) with VPN service configured in actif/passif mode.

We don't have gateway and portal licences activated, as we only need one GlobalProtect portal and one GlobalProtect gateway.

Users with Windows or

...

cnamurdc by L1 Bithead
  • 4627 Views
  • 2 replies
  • 0 Likes

How GP selects between SSL and IPSEC?

Hi,

I have recently noticed that most of my VPN users with Global Protect are connected with IPSEC.

Before that, two or three weeks ago, they were mostly connected with SSL.

How can it be like that?

Is it related to some parameters on our PA-5020 (PAN-OS

...

cnamurdc by L1 Bithead
  • 11042 Views
  • 3 replies
  • 0 Likes

Resolved! Trying (still) to understand Wildfire

I got two files sent to me for analysis and I ran them through Wildfire to get a verdict...

Unfortunately im still not comfortable with what Wildfire thinks is a malware and what me (and obviously the rest of the world) belives is a malware...

Could pe

...

mikand by L6 Presenter
  • 5919 Views
  • 7 replies
  • 0 Likes

User ID from eDirectory, multiple IPs per user

Hi,

for identifying users on an PA-3020 with PAN-OS 5.0.5 I use a combination of reading the information from eDirectory, XML-API and captive portal.

I am now facing the problem that users which use different computers at the same time with their user

...

  • 24215 Posts
  • 117 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks