General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

how to format of SSD.

For the replacement test,

I had set the spare SSD in the PA-5000,

and some logs was written on SSD.

Could you tell me how to format of SSD?

Reporting

Hello,

New to the forums and Palo Alto, and I have a simple question.

How do I pull a report for all websites a user has visited?

Seems straight forward enough, but a user activity report is extremely lacking and to be perfectly honest I

...

Resolved! Works User-id XML API with AD agent?

Works the User-ID XML API only with LDAP Agent or works too with AD Agent?

We need to make a logof script to delete the entries of some users.

Resolved! How do I monitor how much of the IPS cpu is being consumed?

I have a PA-4060 and am monitoring via a TAP port my Internet connection and want to see how much traffic is being sent to the IPS engine hardware. I need to know this because I know the IPS functionally is 1/2 of the rated throughput of the firewal

...

User-ID doubt

I have some problems with user identification and I'm very confused about how it works.

In the case that we use User-ID agent with AD. Is it the following process correct?

1.A user makes a logon in PC-A , with his domain credentials.

2.An event is creat

...

teamviewer download

I tried to download temaviewer (TeamViewer_Setup_it.exe) but the firewall pa500 blocked me like viruses Trojan/Win32.agent.ckovs what should I do?

Resolved! Support on PA for UNIX-Syle tracerouts

Does PA support unix-style tracerouts. I have enabled ICMP and PING, but tracerouts from unix hosts through palo alto are still being denied. Looking at this a little bit further, we noticed that windows-style tracerouts use ICPMP echo requests and r

...

Securing SSH

Is it possible to secure SSH with a public/private key or some other means. I have noticed an extremely high number of logon attempts, and want to block these as much as possible. I am sure I can lock it down to certain source IP addresses, but I w

...

Resolved! Virtual Systems with Different PAN-OS versions

Hi All,

I heard that its possible to have a vsys with a different PAN-OS that the others, to do such things as test the PAN-OS upgrade out with rules, etc before applying it across the board to all.

What I can't see in the appliance UI, is how to do th

...

Admin roles and Vsys

Hi All,

I'm trying to create a role based user, that is specific to a vsys. when creating a user when logged in as the superuser,

I can't create a user, and select the RoleBased profile that is based on a vsys, as the ok button grey's out.

Is there a st

...

NTLM security credentials warning over VPN

Hi,

We have a couple of Linux Samba servers that can only talk NTLM 0.12 dialect(this is from packet captures).

If I am connecting to a Linux Samba share from the internal LAN my Win 7 client(that supports up to SMB 2.0) negotiates down to NTLM 0.12 an

...

Cannot download a file on php.net

Hi,

I have an issue wen my co-worker try to download a file from php.net.
I cannot find wich progam is called in my policies rules.

The file is available at : http(s)://pecl.php.net/get/oci8-1.4.6.tgz and cannot download it.

Thank you and sorry for my

...

Native VLAN configuration

I have configured a couple of layer-3 subinterfaces on a aggregate, they are tagged as VLAN 700 and VLAN 800, in my cisco switch I have configured a trunk port that permits VLAN 700 and VLAN 800 to pass traffic across it. When plugged in, everything

...

Resolved! How can I generate a CSR for SSLVPN in PANOS 4.05

I want change from a selfsigned to a versign cert on my SSLVPN interface. How do I generate the CSR on the PAN. Is this supported in 4.05? or do I need to download OpenSSL?

Most Stable Release for PA500 Cluster

Hello,

What's the most stable release for a cluster (active/passive) of PA500 running IPS, AV and URL filtering ?

Regards,

Hedi

Discussions

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

Discover LIVEcommunity Through Our New Animated Explainer Video!

how to format of SSD.

Reporting

Resolved! Works User-id XML API with AD agent?

Resolved! How do I monitor how much of the IPS cpu is being consumed?

User-ID doubt

teamviewer download

Resolved! Support on PA for UNIX-Syle tracerouts

Securing SSH

Resolved! Virtual Systems with Different PAN-OS versions

Admin roles and Vsys

NTLM security credentials warning over VPN

Cannot download a file on php.net

Native VLAN configuration

Resolved! How can I generate a CSR for SSLVPN in PANOS 4.05

Most Stable Release for PA500 Cluster

log forwarding to syslog | drops and queue

Combining IP and URL EDL on Rules

Manufacturing Number on a SPF LX module

Better solution for remote access

flow_tcp_non_syn_drop - packet capture on this counter?

Re: flow_tcp_non_syn_drop - packet capture on this counter?

UserID periodic empty groups issue

Re: Software NGFW Credits

Re: What is still missing or needs to be improved in PA Next Generation Firewalls ?

Re: SAML Authentication Profile not popuating IdP Server Profiles

Unlock your full community experience!

Resolved! Works User-id XML API with AD agent?

Resolved! How do I monitor how much of the IPS cpu is being consumed?

Resolved! Support on PA for UNIX-Syle tracerouts

Resolved! Virtual Systems with Different PAN-OS versions

Resolved! How can I generate a CSR for SSLVPN in PANOS 4.05