General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Resolved! How to delete saved configuration files

My list of saved cfg'ed files is getting a bit long. How can i delete a bunch (or all) of them?

Thanks

Resolved! Session Averages

I have been looking but I have not noticed a way to get an report on the number of sessions that have been active for the past month, does anyone know a way to determine that?

VoIP Traffic, strange behavior, need help to understand please.

Greetings All,

I have an issue where we are seeing some strange issues with VoIP traffic.

Device: PA-2020

S/W Version: 4.1.9

VoIP Provider: Foehn IP Telephone systems.

Latest Application version.

A new VoIP system has been deployed which has SIP traffic

...

Trouble decrypting Google traffic

Hi,

we have some trouble with a lot of Google sites when we enable SSL decryption and also enable CRL and OCSP checks. We either get no response at all, or error messages like the one in the attached screenshot. If we disable the CRL/OCSP checks (whic

...

Update 377-1826 breaks youtube-safemode

Just a heads up - it appears that update 377 has broken the detection of youtube-safemode, with everything being detected as youtube-base ; revert to 376-1817 appears to resolve the issue.

Resolved! About process pan_task of dp-monitor.log

Hello,

I have a question about the process "pan_task" of dp-monitor.log, it always shown high cpu usage.

Any one can tell me what the mean is ?

Thanks.

policy and security profiles

heyy

i tried to troubleshoot some traffic behaviuor, an i created a rull without any security profile and with application overide.

when i run those commands to look at the traffic i found this.

admin@PA-500> show session all filter destination 147.235.

...

dependency warning - how to force it?

Hi

I'm bit confused about dependency ...

During commit i have:

vsys1: Rule 'XXXXXXXXXXX' application dependency warning:

Application 'gmail-base' requires 'imap' be allowed, but 'imap' is denied in Rule 'Scholastycy - deny rest'

Application

...

Resolved! Security Policies - Terminology

I am coming from a Checkpoint environment and I am struggling with some of the terminology. I see a number of references in the Getting Started and the Administrator's guides to "Security Policies". To me this implies that I can create a number of po

...

Problem to identify a user with accented character

Hello,
I have problems to identify an AD user whose name contains accented characters:
User "SépotF" recognized as "sÃ©potf"
Any suggestions?

Thanks

Resolved! Global Protect and two gateway

Hello

I have PA200 without licence for second GP Portal.

I did a second gateway because I thought that this should solve my problem.

I need to let access to some website to my users but with my IP address. Thease people has accounts on radius server. I

...

ICMP reply size in 4.1

Is it possible in 4.1 to limit the size of icmp replies or strip any payload in order to discourage tunneling via ICMP ?

Can I use Radius Accounting or Diameter as source of rules in ISP network?

Hi,

I want to install the PA in my ISP net as transparent bridge, I'm looking for a way to configure the machine to get an IP address & then translate it via Radius acounting / diameter protocol to the user info.

Do you know how it can be done?

How is

...

Resolved! OCSP on SSL decrypt with self signed certificate

When enabling OCSP and having a self signed certificate for SSL decryption

(we push the certificate to all our domain clients)

will OCSP check my self signed certificate against the OCSP responder (and fail because it is unknown)?

Or will it only check

...

Resolved! Problem VPN Split-Tunneling

Hi everybody.

I've got a strange problem related to split tunneling in PAN configuration. The situation is:

- Portal and Gateway configuration in PAN-2050 with PANOS 4.1.7 (same results with 4.1.6 and 4.1.5).

- VPN client Cisco compatible (Windows and L

...

Discussions

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

Discover LIVEcommunity Through Our New Animated Explainer Video!