This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4235 Views
  • 0 replies
  • 0 Likes

Resolved! GlobalProtect Pre-logon - unique machine certificate?

Could not find a straight answer in documentation or in other threads - using GlobalProtect Pre-logon, does the machine certificate has to be unique for every machine (different CN) or can we use one, generic certificate and deploy it on every machine in the company?Many thanks for the answer!

How do I identify iOS company assets in HIP Profiles?

Hi,We are currently testing GlobalProtect as an SSL VPN replacement. In our current Juniper environment, we use a user cert (pushed to all company iOS assets via MDM) to verify an iOS device is a company asset. Is there any similar methodology we can use with the Global Protect environment as a HIP Profile that we can use to build policy against...

iOS GlobalProtect 1.3.0-68

Has anyone had any success with the new iOS global protect client?I can see my connection authenticates correctly however all I get on the iPad is the following error message:VPN ConnectionCannot connect to GlobalProtect. Your Internet connection or GlobalProtect Network appears to be offline. If the issue is persistent, contact your IT help des...

ethiSEC by L2 Linker
  • 5160 Views
  • 5 replies
  • 0 Likes

PAN OS 5.0.0 "killing" remote connections

Hisorry for the "bad" title, bat that's whats actually happening.I have a NAT rule translating the external interface IP to an internal server from Port 443 to 8443 (for OpenVPN) and to the same server for ssh (no port translation)When I connect with OpenVPN to the VPN Server, it connects fine, but as soon as I have a certain amount of traffic (...

u13550 by L3 Networker
  • 3297 Views
  • 2 replies
  • 0 Likes

Resolved! Trusted root CA on Global Protect Portal

Hi all,My question is: what is this "trusted root CA" you can select under the portal configuration for Global Protect used for.I get form the PA-help that you pass this certificate on to the client so the client will check the gateway server certificate if it was signed by this trusted root CA.What is the use of that check?If not supplied, coul...

mr.linus by L4 Transporter
  • 11250 Views
  • 1 replies
  • 1 Likes

Broken link for PAN-OS 5.04 documentation

Hi,https://support.paloaltonetworks.com/index.php?option=com_pan&task=nu_sw_updates&Itemid=164 has a broken link for the release notes for PAN-OS 5.04 for the PA-3000 series. The file name is supposedly PAN-OS-5.0.4-RN-revA.pdf and it links to https://downloads.paloaltonetworks.com/software/PAN-OS-5.0.4-RN-revA.pdf?__gda__=1367548549_8f7...

ddaniels by Not applicable
  • 6369 Views
  • 2 replies
  • 0 Likes

Resolved! Internet Explorer 9 not working with PANOS 5.0

Hello,We're experiencing an issue with Internet Explorer 9 after upgrading to PANos 5.0After we login into the firewall we don't get to see anything. The screen remains white after the login.We have also tested it with Firefox 16 and Chrome but we don't have any issues with those browsers.Resetting, uninstalling and reinstalling IE9 does not see...

Resolved! Custom URL Category not visible under URL category profile

Hi everybody,I've created a custom catagory - let's say it's called "My_allowed_websites"- and so far it is ok.I then try to find "My_allowed_websites" under URL Category profile but can't find. The only visible categories are the standard ones. I've read Custom URL Category section of the 5.0 Admin Guide and the guide affirms that it must be vi...

sebbarmo by Not applicable
  • 9669 Views
  • 7 replies
  • 0 Likes

Encrypted and Zipped files with virus in it

So I have a nice easy question. If we have a file that is both encrypted and zipped (like with a .zipx extension from WinZip) can the firewall determine through its signatures that the file has a virus, or would it send it up to Wildfire? Thanks

scantwell by L4 Transporter
  • 7688 Views
  • 5 replies
  • 0 Likes

GlobalProtect : Access to https on loopback unreachable from WAN

Hi, I have some trouble to get access to portal on This is my problem and configuration : When I try to get access to the portal on the loopback https://192.168.4.250 from Wifi access or Wan access but I don’t have a response.No packet come on the palo alto, I see on my internet router the “syn” but no “ack”The access to the portal from my LAN...

Websites loosing appearance

Hi,We're currently experiencing issues when trying to access some websites. Meaning, it few minutes for the website to appear and sometimes it doesn't appear at all.And when the website appears, it shows completely different than it should be. Like if you disabled CSS and provides you with an HTML only output.My first thought is an application t...

sebbarmo by Not applicable
  • 6066 Views
  • 8 replies
  • 0 Likes
  • 24358 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks