This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4229 Views
  • 0 replies
  • 0 Likes

Resolved! vwire policies

HI all,when we deploy the paloalto firewall in vwire mode and we have multiple zones (system zone, application zone, bdd zone), can we create rules to permit traffic between these zones through pan firewall ??thank's in advance

atelcom by L3 Networker
  • 5948 Views
  • 4 replies
  • 0 Likes

Palo alto starter questions

Hi,Iam a starter for paloalto .. I have few questions so any answers on this will be help full...What is dynamic block lists and how can we use that?What is disable server response inspection in a security policy?how to add virus exceptions based on threat ID , because we don't see any database unless we specify the threat IDWhat is Log containe...

Wildfire - Time required to block known malware

Using the 'free' Wildfire service, does anyone know how long should I expect the delay to be before downloads marked as malware are blocked subsequently?For example, today we had a download ("pdf_delta_ticket.scr" below) that was logged as upload-skip which to my knowledge means that it has been seen before by this device. As the last previous ...

apackard by L4 Transporter
  • 3602 Views
  • 3 replies
  • 0 Likes

Resolved! Panorama WildFire Reporting

Hello,I could not find any documentation on this inquiry. Is it possible in 5.0.x to get the Wildfire aggregation logs from all my PAN devices to the Pano log Monitor for central reporting? Thanks!Mike

MGoodnow by L4 Transporter
  • 3905 Views
  • 3 replies
  • 0 Likes

Resolved! Skype IM Problem

Hi,I've some problems with skype instant messaging.Sometimes the messages are not sent.Checking firewall logs I see when messages are not sent an 'unknown-tcp' connection is denied.Same destination port (but different ip) were used and recognized before as 'skype' connectionFor exampleTime App From Src Port SourceRule...

diennea by L3 Networker
  • 24649 Views
  • 40 replies
  • 0 Likes

Resolved! PAN-OS User-ID agent limits

I have found documentation that states that the UserID software agent can support up to 100 domain controllers and/or Exchange servers. Is this for both the standalone agent and the built-in agent on a 5.0 firewall. Or is there a smaller design limit for the built-in UserID agent? Can someone reference a document that explains this? Thanks

scantwell by L4 Transporter
  • 5880 Views
  • 1 replies
  • 0 Likes

Resolved! User Activity Reports - No Data Available

Hi,I have inherited responsibility for our Palo Alto 2050 and am trying to run user activity reports. However, for the past week the reports have been showing "No Data Available". The only change made I am aware of was having the policy set to only log on session end however that has since been change back. Changes were committed. The policy is ...

assist by Not applicable
  • 11220 Views
  • 5 replies
  • 0 Likes

Resolved! Mass migration of static routes

We need to migrated about 600 static routes into PA 5050. I want to do this quickly and efficiently . The goal is to copy all 600 routes and paste in the running config . Any idea how to do this ?

usvi by L3 Networker
  • 3274 Views
  • 3 replies
  • 0 Likes

Traffic Report: How much destination hosts contacted

Hi Community!There is a predefined traffic report "Connections": It shows per row how much connections (sessions) a source host has made to a specific destination host. Is it possible to create a report which shows per row how much distinct destination hosts a source host has contacted? This could be useful for example to recognize if a source h...

E by L0 Member
  • 2860 Views
  • 2 replies
  • 0 Likes

Resolved! Panorama template is not working

Hi i created a template on panorama and tried to push to a device but each and everytime it says template name invalid.i tried more than a few combinations nothing works. Any help.Posted screenshot for reference.

srikanth by Not applicable
  • 4282 Views
  • 2 replies
  • 0 Likes

Resolved! How to force Panorama to push out new configs in serial?

One of the admins mumbled today that when changing shared objects in Panorama and pushing out new configs he needed to do this one by one regarding managed devices.That is click on sync, wait until the text "out of sync" changes to "ok" (or whatever it says) and then click to sync the next device until all are synced.Is there no button to "sync ...

mikand by L6 Presenter
  • 2215 Views
  • 1 replies
  • 0 Likes

Resolved! How to get friendly name of a vsys into the syslogs?

I have followed the order described in to create a custom log format for use by a syslogserver which is much more happy of getting the logs with spacesas delimiter instead of the commas.However I noticed that the $vsys variable only gives out text like "vsys1" instead of the friendly name which is regulary used by the vsys in all configuration ...

mikand by L6 Presenter
  • 2605 Views
  • 1 replies
  • 0 Likes

Stretching L2 VLAN's over IPSec tunnel

Hi All,I am facing a nasty situation where i need to connect two sites together using an IPSec tunnel over the internet. The nasty part is where both sites have a VLAN that needs to be interconnected.. both in the same subnet. I am wondering if it is possible to stretch this VLAN between the two sites using an IPSec tunnel.This gives the followi...

bsanders by L2 Linker
  • 10144 Views
  • 4 replies
  • 0 Likes

Process impact of "Security Profile Group" all set to NONE ?

Dear all,Does a "Security Profile Group" with all security engines selected to "NONE" would have any processing(/performance) impact?Reason the so, is for future readiness. Allowing NOT to have chaning ALL individual security policies, in case we would like to enable a security content engine in this "security profile group".Thanks in advance!Ki...

wimjuste by L1 Bithead
  • 2189 Views
  • 1 replies
  • 0 Likes

Update Software on HA passive mode

I try to update software and GlobalProtect on my PA configurated on HA Passive mode but it´s impossible. "Failed to check upgrade info due to generic communication error. Please check network conectivity and try again" :-SI download de software on web but its impossible to upload from my pc. Img is Invalid.Can you help me??Thanks,Best regards,

cmadurga by L0 Member
  • 2082 Views
  • 1 replies
  • 0 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks