This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4235 Views
  • 0 replies
  • 0 Likes

Resolved! How to convert .crt to .pem or .pkcs12 format

Hi Guys,I know this not the best place to put up this question, but I feel someone might have good experience or knowledge who can share it out. I had a self generated certificate for SSL-VPN and Captive Portal on the Palo Alto. I then generated a CSR for the same certificates and handed it over to the customer. The customer then sent it to th...

one leg setup clarification ..

hi all,i need to setup two PA-2050 ( HA mode ) but am not sure about the design were i need some help her, the customer network is devided into vlans and they all communicato to each other through the corre switch ( cisco 6500) and if they require internet access the core switch will route them to a firewall ( firewall module in the core sw ) , ...

WebSense to BrightCloud URL Category Mapping

Hello all,I am trying to find out a document that maps WebSense URL Categories to BrightCloud Categories.A lot of our customers are replacing their WebSense URL Filtering System with the BrightCloud Database that comes with Palo Alto Networks Appliances, and this would be a very usefull mapping!Thanks in advance,George G.Athens, Greece

ggoudr by L2 Linker
  • 4263 Views
  • 2 replies
  • 0 Likes

Resolved! Global Protect user authentication

It seems that Global Protect will send user authentication request twice per logon.I setup a lab and the backend authentication server is RADIUS Server, and I find there will be two access request per logon.Is it correct? Is there any parameters I can configuration to make it send one authentication request?Regards, Bobby

Software upgrade from version 4.0.7 to version 4.1.6

Hi All,Can we directly upgrade the OS version from 4.0.7 to 4.1.6. Is there no need to install the base version 4.1.0. My plan is to upload only the software version 4.0.8 up to 4.1.6 then install directly to software 4.1.6.Thanks,Jan

janm by Not applicable
  • 3516 Views
  • 4 replies
  • 0 Likes

why commit is there without any change made

PANOS : v4.1.6Model : PA-500In the isolated LAB, only management port connected on PA-500 and service route operate well via the management port. I make sure the commit is grey after basic configuration (IP/netmask/gateway/DNS/NTP) set, license retrieved and application/threat prevention updated, and dynamic update scheduled, but the commit is...

Block Mobile Devices

I was wondering if anyone has created a custom app-id to identify mobile devices to create policies around. For example block all mobile devices getting to the internet, or apply a QoS policy ect. Thanks,

Resolved! LDAP and user authentication/authorization

Hi all!I have a problem using LDAP for user/management authentication/authorization. When I try to log in via my domain I get the following in my log (after logging in again with the admin account):Authorization failed for user *\*via Web from *.*.*.* : Invalid user 06/06 12:41:19User '*\*' authenticated. Profile authProfileAdmins in an authenti...

Resolved! Service route for ldap

Hi,I have implemented a Palo Alto without Management interface, only an Inside interface/zone and Outside interface/zone. I configured the service route configuration to use Inside IP address for updates, dns... (all service routes). Also I have configured the network routing (all the networks that has to be accessed from Inside IP address.The p...

How to sync Captive Portal Redirect Host in A/A - Setup ?

Hi *,I have problems to sync Captive Portal Settings in a Active/Active HA-Setup.I configure the CP on the active primary host as follows : Enable Captive Portal - checked Server Certificate - cp-cert Authenticaation Profile - company-radius Redirect Host - cp.mydomain.com Client certificate Profile - none Mode - Redirec...

PAN agent Group cache on PAN

Hello, I'm using PAN OS 3.0.5 and doing> debug device-server dump user-group namefollowed b the tab I'm seing very old group that are not anymore in the Filter group member of the pan-agent. It seams that the PAN have cached the olds user/group relation. There is the way to force a clear of the group <-> user relation on the PAN FW ?

  • 24358 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks