This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4440 Views
  • 0 replies
  • 0 Likes

Create Custom Report for Unused Rules

HiI am struggling a bit here. I've been tasked to set up various reports on palo firewall. One of them is to create a custom report displaying all unused rules. I've tried many things. I followed this link: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClcgCACwhich basically creates a report of used rules. I need exac...

Resolved! License Forms

Hello Team, I'm working with a customer for whom we purchased a Support Only license, and now we would like to start working on their environment. However, we want to activate the license under their CSP account. I am aware that this is not possible, but according to the case we created, I understand that we can re‑book the entity to the custome...

Resolved! New periodic alert: Configuration size 19MB is above 80% of the maximum recommended configuration size 23MB for the platform.

Dear all, since a couple of days I'm getting alerts like: Configuration size 19MB is above 80% of the maximum recommended configuration size 23MB for the platform. Please consider removing unused configuration I removed all old auto saved configs after upgrades, and the config size looks ok:> show management-server last-committed config-s...

Support with PA-440 Software

Dear all, I have a pair of HA PA-440 with the software version of 11.2.7-h4, now I want to install the version 11.2.10-h2 to remediate CVE-(High Severity Vulnerability in PAN-OS) and (Customer Advisory on Device Certificate Renewal for NGFW Devices in Active-Passive High Availability (HA) with Service Route) Now I want to install software ve...

PAN OS version 11.1.13-h1 is remediate or not?

Dear all, I have this questions where I want to make sure first before doing an upgrade on my PA-820? Recently I have gone through the customer advisory of the following: (Customer Advisory on Device Certificate Renewal for NGFW Devices in Active-Passive High Availability (HA) with Service Route) and the CVE of the following (CVE-2026-0227 P...

Hotspot Shield VPN still works even though traffic logs show deny – Palo Alto Firewall

Dear Team , I’m facing an issue where Hotspot Shield VPN application is not being blocked, even though the Traffic Logs clearly show deny actions, Hotspot Shield VPN still successfully connect, and end users can browse the internet through the VPN. applications like ssl, web-browsing, unknown-tcp, or unknown-udp ipsec .. all are blocked. T...

Resolved! PAN-OS 11.1.13 Predefined reports displaying IPv4 addresses in IPv6 format

We have been experiencing an intermittent problem with our nightly predefined reports displaying IPv4 addresses in IPv6 format.An IPv4 address like 192.168.1.1 is being displayed as an IPv6 address like ::0101:a8c0:ffff:0 We are currently running PAN-OS 11.1.13 but we have seen this same behavior under 11.1.12. Behavior like this apparently ha...

Superreader User Privilege Not Available on WF-500 Appliance

When configuring user privilege on WF-500 appliance, I notice there is no superreader user privilege. But, when I checked from WF-500 appliance configuration documentation, there is superreader user privilege. I cannot find a similar issues where superreader user privilege is not available on WF-500 appliance.Below is the corresponding documenta...

i.rifai by L0 Member
  • 1459 Views
  • 1 replies
  • 0 Likes

Hardware warenties

do I check hardware warrenty status? I have a list of Serial number for Hardware and want to check when the current warrenties expire.

Resolved! Escalation process for Customer's with Premium Partner Support

Folks, As I had mentioned in a prior technical discussion, this is the first time I am working with a 3rd party Partner for support of mission critical equipment. In my specific case Ingram Micro is my direct support contact for my Palo Alto firewall. I have identified a bug and it continues to be of issue for us. It exists on the Preferr...

Resolved! Discord voice chat no longer connecting after PA-440 install

Hi all, I recently added a PA-440 to my home network, everything seems to be working fine with the rules I have set up (Just allowing all from the internal zone to the external zone at the moment) however Discord voice chats fail to connect. I took a look at the traffic logs and saw a lot of packets "aging-out" so I changed the timeout of what I...

Asymmetric Routing - Palo Edge Firewall Active/Passive to Nexus Core

We have (2) equal cost L3 links from our Nexus core switches to an upstream Palo edge firewall HA pair, active/passive. On the firewall, this is an aggregation ethernet with layer 3 subinterfaces defined. There is an SVI on each Nexus switch for routing with a layer 2 port-channel to a breakout switch in between the firewall and core, and we ar...

  • 24375 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks