This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4115 Views
  • 0 replies
  • 0 Likes

Resolved! Using "Any" as zone for a converted policy

HiI'm converting a security policy from a Check Point device to a PAN device using the PAN converter. By default the converter sets source and destination zones as "Any". Can I use the rule like that? Is there any problem that such configuration might cause in the future or after replacing the devices? Do I need to specify zones in the rules? Pl...

Multi Gateway

Hello,I need to install a PA200 for a internet breakout. Since i can't change the IP Subnet, I tough to change the default gw to the PA and use the PA as a router for traffic to the WAN (same subnet). But my problem is now that traffic comming from the wan to the client is comming from 192.168.1.1 -> to the pc 192.168.1.50 -> to the PA 192...

gsteiner by L3 Networker
  • 5288 Views
  • 8 replies
  • 0 Likes

OSPF - Reditribution intra OSPF

Hello,My PA is connected to 2 OSPF areas and I want to take some routes from one area and send them to the other one.I try to do a redistribution profile but it only send my directly connected routes, not those learned from OSPF.Is there a way to do this?RegardsRémi

rroger by L1 Bithead
  • 2720 Views
  • 1 replies
  • 0 Likes

Resolved! URL-filtering Profile

Hi!Friday we upgraded our devices to 4.1.0.Everything is working ok, the gui is pretty fast, which is nice, only:When we want to edit a url-filtering-profile, the list of categories is empty.Can someone confirm this running on 4.1.0 ? ( or is it just only us, )Thank you,Kind regards,Paul

paulmeys by L1 Bithead
  • 9800 Views
  • 7 replies
  • 0 Likes

Resolved! How do I get a report of what threat prevention rules are enabled?

I have a customer that has asked me to match up an ISS proventia IPS rule to put a PAN Threat Prevention rule. I have created a enabled about 1009 rules on a custom ruleset to do so. The customer has asked that I "print off" in CSV or other format the " rules, showing which ones are enabled, what action is configured, against what is availa...

cwilliams by Not applicable
  • 5329 Views
  • 6 replies
  • 0 Likes

New feature - URL Allow List Object

Could you add a feature that creates "URL Allow List" objects and "URL Block List" objects. We have several URL Filtering Security Profiles and try to keep our business partner sites in the "Allow List" but have to manually add them to each profile. It'd be simpler if there was a separate object and we could add the object to the profile.

jmck9999 by L1 Bithead
  • 3398 Views
  • 3 replies
  • 1 Likes

Log Exporting

I am exploring the best method for me to export and create reports based off of log data from a PA-4020, and have a few questions. Real-time reporting hasn't been determined just yet, but since I can essentially get real-time from the PA GUI I am thinking this will not be a requirement. That being said I think a 1/2 daily or 1/4 daily ftp expo...

UserID - possible to identify AD computer name

I have firmware version 4.1.1 and use the appropriate User-ID program for this firmware. I undretand how it all works for Active Directory user accounts, but what I want to know is can it be used to scan AD containers that only contain computer names, which I can then use in my security policies?I am trying to block certain apps for specific AD ...

Problem with Authentication Profile

I had to do some changes to the Allow List of a Authentication Profile based on LDAP (AD) but i'm constantly recieving "ajaxUserIdAgentUserHandler:: Error in retrieving data: Not Found"I'm sure that this was working previously. Additionaly I've manually edited the configuration and reuploded to the FW and the user is authenticated and can connec...

PanAgent AD Groups disappear

Hello all,We have a strange issue. Suddenly and without any cause the AD users in our PAN device losses the AD groups that they belong to. This is a huge problem cause the security policies configured by groups does not work.The strange thing is if we force a commit the problem gets temporally solved until in undefined time it happens again.The ...

Pan OS 4.1.2

I see they released version 4.1.2. Will there be a release for PAN-200 or is the PAN-500 version the same for the PAN-200.

snormoyle by Not applicable
  • 2849 Views
  • 2 replies
  • 0 Likes

Log Fomrat

Hi all,is there any way to change the format of Palo Alto's logs?

nmarchal by Not applicable
  • 2843 Views
  • 3 replies
  • 0 Likes

Dynamic Updates

I noticed under dynamic updates --> URL filtering that it shows version 3777 action upgrade. The action is set to "download-and-install". It shows the previous version 3776 as being the currently installed version. So what would be causing version 3777 to not be the currently installed version. I have runt the "check now" a few times with...

snormoyle by Not applicable
  • 2117 Views
  • 1 replies
  • 0 Likes

Resolved! Make PA speak to AD without a User-ID Agent?

In order to use AD-integration in the PA unit (setup security rules based on logged in user or which group the logged in user belongs to) one need today to setup a few additional servers running the User-ID Agent (unless you want this agent to be running straight on your AD-servers).What would be nifty is if the PA unit could speak directly to t...

mikand by L6 Presenter
  • 2670 Views
  • 1 replies
  • 0 Likes
  • 24335 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks