This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4435 Views
  • 0 replies
  • 0 Likes

Resolved! Upgrade path and reboots

hi, I need to upgrade from version 10.1.6 to version 10.2.6. According to the upgrade path article I need to: first download and install the latest 10.1.11-h6 and REBOOT. than download and install 10.2.0 and REBOOT than download and install 10.2.6 and REBOOT. Are all these installed and reboots necessary? I remember in previous major version...

arnona by L0 Member
  • 2602 Views
  • 3 replies
  • 0 Likes

Oracle Replication Failed

We have a case where the Oracle connection failed during the replication to the DR , the replication process start for one to three hours then it failed , Oracle admins opened a ticket with oracle support and oracle support recommends to disable the below for oracle application :SQLNet fixup protocolDeep Packet Inspection (DPI)SQLNet packet i...

Unsupported protocol "IPv6 Control Protocol Error"

Hello PaloAlto users! I have 11.0.2-h2 installed on my PA-820 and configured the WAN port in a subinterface through vlan 20 tagged, due ISP configuration, the line comes through VLAN 20. Every 3-5h the ISP line comes down. Checking the system monitor in my PA GUI, it's says "PPPoE session failed to connect for user:XXXXXXXXX@digi on interfac...

Jlsierra_0-1710403785241.png
Jlsierra by L1 Bithead
  • 1317 Views
  • 1 replies
  • 0 Likes

Looking for Manufacturer Part Number Information

Hello Palo Alto Networks, I wonder why you hide Manufacturer Part Number of SFPs.There are two points I want to ask. ## DOC 810-000077https://live.paloaltonetworks.com/t5/operations-documentation/hw-accessory-cross-reference-810-000077-0be-updated-on-01-30/ta-p/63422 I have previously downloaded 810-000077-0BC.pdf on my PC.If I compare to ...

emr_1 by L6 Presenter
  • 2328 Views
  • 2 replies
  • 0 Likes

Resolved! PaloAlto Predefined IP Lists not appearing

After rechecking licenses, rebooting, checking multiple things, I am unable to get the EDL Predefined IP List dropdown to populate with PA lists (Bulletproof IPs, High risk IPs,. etc.). The Predefined URL List populates with the Authentication Portal Exclusion list, but the list has no entries. - Threat Prevention license is installed and acti...

Cutom reports IPs not domains names

Hello Bro, We are currently on PANOS ver 10.2.7-h3 on PA-3220 firewall. I have created a custom report, and receive it daily, it went Ok. but the received PDF report for example "Top blocked websites" mostly include IP addresses and not the blockewd domain names which makes it almost useless. how to let the firewall create the repo...

Resolved! Security rule says disabled no for an enabled policy

I have 2 firewalls with identical config running same PANOS. The policy in question is enabled on both the firewalls. But one firewall has an extra line in cli( which is picked in daily diff) set rulebase security rules "rule name" disabled no - So it is saying policy is not disabled but enabled. Why is it showing only for 1 enabled policy and n...

Duplicated IP for different Users

Hi team I'm currently having an issue with GLOBAL PROTECT VPN users whose IP has been duplicated, as showed in the next picture: As you can see, there is no big time difference between the log generated for the user sprbun\johnfc and the user sprbun\norac I have configured two gateways and this problem is happening when two different users ...

DanielPaz_0-1710274242054.png
DanielPaz_1-1710274470327.png
DanielPaz_2-1710274494198.png
DanielPaz_3-1710274883250.png

Resolved! Site Access

I am in the process of locking down access to certain sites on the internet and We have certain AD groups that are designated for access. I was wondering if there was a way to create one rule that will allow AD Group1 and AD Group 2 to their respectrive sites but not let them go to each other site. I am trying to keep the policies down to a mini...

Getting commit error

vsys -> vsys1 -> application-status -> tiktok 'tiktok' is not a valid referencevsys -> vsys1 -> application-status is invalidCommit failed Getting error after new content version installed but when reverted issue fixed.

Saurabh1 by L1 Bithead
  • 3836 Views
  • 6 replies
  • 0 Likes

Need to understand the meanning if cgo cmd in the query builder

Hi Team, In the Cortex XDR console, inside the query builder option, we are able to see various options to write query such as Process Name and Acting Process Name, but along with hat weare also able to see an option called ;CGO cmd', what does it mean and what is it used to define while writibg a query? Regards Rohita

xqualsystem.org wrongly categorized as spyware

Dear Team , The Website xqualsystem.org wrongly categorized as spyware on DNS Security and as per them the site is cleaned . Could you let us know whom to contact in paloalto to understand why the xqualsystem.org wrongly categorized as spyware ? Regards Vin

VineethM by L0 Member
  • 1022 Views
  • 1 replies
  • 0 Likes

Resolved! DNS proxy setup

Hi, I have a firewall rule on my Palo Alto to NAT a public IP to a private IP on the DMZ. The external users who don’t work for my company can hit the public IP by DNS name, get onto the website, and view the content etc. This is all working fine. A few times per year I must take the internal DMZ server offline for patching and it could be of...

ohareka by L1 Bithead
  • 2532 Views
  • 3 replies
  • 0 Likes

Importing routes between VR

I know we can exchange routes between VR using BGP but is there any other built in method? Cisco and Juniper offer route leaking functions which let you import/export routes between VRF's without needing to establish a full routing protocol Thanks

GP Not Transitioning to Internal Network Correctly

Hello! I have a GP environment with one all in one NFGW (Portal/Ext GW/Int GW). It works great. Recently I added a second site with a similar setup for redundancy. The same DNS name points to both portals, the portals are setup to suggest both GWs equally, each has an internal GW; totally equal GP setups. The issue I now face is when a mobile cl...

MeCJay12 by L2 Linker
  • 1407 Views
  • 2 replies
  • 0 Likes
  • 24374 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks