General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Resolved! unable to join passive device to ha

hi,

am unable to join the 2nd device to a cluster its new setup HA active/passive the error msg am getting is failed to push config: timeout

.

L2 Networking - some help needed

Hi

I just started with PA and try to get my head around the "slightly" different concept of how my PA50 does things.

I have currently the following "playground":

my PA500 sits between the two switches.

There is a Router running on the VMWare Machine whic

...

Combine two methods for the authentication GlobalProtect Client

Hello,

I want to know if it's possible to use two factor for a succeed authentication with GlobalProtect Client. I explain it.

In the configuration of GlobalProtect Client, you can define two method for the authentication of the clients (portals and ga

...

Resolved! IP - User mapping has stopped working

Hi all,

I'm having a IP-user mapping problem with my PA-500 unit running software version 3.1.8.

This unit is due to be upgraded shortly, but it would really be appreciated if anybody knew a way of resolving my issue without rebooting the unit please.

...

TS-Agent problem

Hi,

we ve got a problem with the TS Agent on out terminalserver. After some time the TS Agent doesnt submit new users to the PA Device or the users submitted have a form error. Nomally the syntax is domain\username, but when the error occurs all submi

...

Resolved! Selective Access to Facebook and Twitter

What's the best way to configure selective access to Facebook and Twitter (where some users have full access, while everyone else has no access).

The sources will be identified by IP address for right now (usernames later when I get to that).

So far,

...

Resolved! Management CPU ends up stuck on 100% after several commits

Hi,

we are on a 2050 4.1.2 and are seeing consistenly that the management CPU heads towards and gets stuck on 100% after a series of commits, re-boot is only way to fix.

Is there a way to deal with this without a re-boot as this drops all sessions for

...

Wildcard for URL White/black list?

Is it possible to wildcard a URL for whitelist/blacklist? The issue we run into is that we will whitelist www.cooldomain.com, but if the user goes to just cooldomain.com it blocks it. Vice versa if we just put whitelist cooldomain.com. So we end up

...

Windows live messenger disconnects constantly in virtual wire mode, even with the policies rules any to any allow

Is very strange, a have several PAN appliances in Firewall mode, and they working well, but in a couple of branches i have another PAN in virtual wire mode, and when inmediatly connects the appliance the windows live messenger disconnects and re con

...

Resolved! Logging of URL Categories in Security policy

All,

I have my normal URL Filtering rules setup as Policy and referenced in Profile of each rule. In those policies I have either alert or block set for each category or custom category. This works as expected, however I'm trying to setup some special

...

Resolved! User-ID Agent Losing Users

We've been running into an issue with our User-ID Agent where it seems to not have enough discovered users but its also losing them randomly as well. Running User ID Agent version 4.1.4-3, we have it pointed at 5 DCs and it is picking up around 1500

...

How to block transferring particular file extensions in Google Talk,.?

Hi All,.

Is it possible to block transferring files with particular file extensions ( eg,..pdf,dwg,dll) through Google Talk? I tried to do this but not succeeded. But in the file blocking profile the application "gtalk-file-trasfer" is there.

When i am

...

KeyWord Search

Hello

On our old firewall which was fortinet we could block keyword search in the web in google etc.

is there anyway to do this on Palo Alto?

Thanks

Darren

Data Filtering keywords

hello can you use data filtering as a block if a user types those words in google search? eg someone types football hits search but block due to the data filter? is this possible? mark

Resolved! How to block people who are trying to exploid vulnabillities for a period of time

Hello everyone,

Our PA's are using the thread prevention system which drops traffic that is trying to exploid vulnabillities, do DoS attacks etc.

All works very nice - but it's only affecting the attempt on an individual basis.

F. ex. - someone performs

...

Discussions

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

Discover LIVEcommunity Through Our New Animated Explainer Video!

Resolved! unable to join passive device to ha

L2 Networking - some help needed

Combine two methods for the authentication GlobalProtect Client

Resolved! IP - User mapping has stopped working

TS-Agent problem

Resolved! Selective Access to Facebook and Twitter

Resolved! Management CPU ends up stuck on 100% after several commits

Wildcard for URL White/black list?

Windows live messenger disconnects constantly in virtual wire mode, even with the policies rules any to any allow

Resolved! Logging of URL Categories in Security policy

Resolved! User-ID Agent Losing Users

How to block transferring particular file extensions in Google Talk,.?

KeyWord Search

Data Filtering keywords

Resolved! How to block people who are trying to exploid vulnabillities for a period of time

No "certificate used by" field when generating certs for SSL forward trust and untrust?

A question about snat address pool couse a route loop

How do I get the documentation / training for creating advanced XQL queries

panorama disk health

Recommend os version

Re: Exclude only communications on specific port numbers from Global Protect

Re: Software NGFW Credits

Re: Advanced DNS Security vs DNS Security License

Re: Replacing HA Hardware

Re: About API keys when using the curl command

Unlock your full community experience!

Resolved! unable to join passive device to ha

Resolved! IP - User mapping has stopped working

Resolved! Selective Access to Facebook and Twitter

Resolved! Management CPU ends up stuck on 100% after several commits

Resolved! Logging of URL Categories in Security policy

Resolved! User-ID Agent Losing Users

Resolved! How to block people who are trying to exploid vulnabillities for a period of time