This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4435 Views
  • 0 replies
  • 0 Likes

Resolved! Upgrade PAN-OS from 9.1.14 to 10.1.10

hi, thanks for looking we need to update our Box, going to 10.1.10 from 9.1.14 does anyone see any issues? is there a preferred route if we did then go to 10.1.10 do I need a specific Global protect client version to work with it, (currently on 5.2.10) thanks

Newly Registered Domain Access

Hi All, We have a request from customer to get access to a newly registered site. After we allowed access to the URL, we see the drop logs due to Sinkhole configuration. Threat Type says Spyware and DNS Policy is configured for newly registered domains as Sinkhole by Default. So this is expected. But is there any other way i can allow access to ...

Clarification on how PA process Security profile with applied Service/URL Category

Hi All, I have a quick question and hopefully someone can help me understand how security profile is processed by PA. I understand that security profile is processed from left to right, then top to bottom. My question is, does all criteria need to match so that the traffic will match the rule? Is the logic used by PA is AND or OR? Source ...

Resolved! Determining false positives in Wildfire

Disclaimer- I am a big fan of Wildfire. Since implementing it the beginning of this month, it has shed much light on malicious activity on our network. Thanks for it!Like others in related posts, I would like to know more about the criteria for determining the verdict of malware. I received a report this mornting that a Dell BIOS file, DMC521-01...

cloughr by L2 Linker
  • 8677 Views
  • 5 replies
  • 0 Likes

Commit Warning

Hi Team, When i am commiting the changes seeing the below warning after I created the Security profile Warning: No valid Antivirus content package exists I dont see any package for AV in the Dynamic Updates. Do we need any specific license to get this working? Regards, Sanjay S

PA-3400 series max-user-group

Dear Team, I can check max-user-group as shown below through the 'show system state filter cfg.general.max* command on the PA-3220. However, I think the PA-3400 series does not have that command. If anyone knows the value or command, please share it with me. Thank you

KyungjunCHOE_0-1695263490834.png

Resolved! Commit Failing because tag is not being created before sdwan traffic distribution profile

Trying to push out a change from panorama to one of our devices and its failing with Validation Error: . profiles -> sdwan-traffic-distribution -> Profile -> link-tags -> TAG' is not a valid reference . profiles -> sdwan-traffic-distribution -> Profile -> link-tags is invalid this is a shared profile and in use in a ...

Best option for a Vwire with tagged and untagged traffic

Best option for a Vwire with tagged and untagged traffic. Hello Livecommunity guys, how are you ? I hope everything's OK.Thank you very much as always for the collaboration. Whats is the best option when it comes to setting up a Vwire environment with tagged and untagged traffic, ie. VLANS=====1 Untagged, vlan + 20,30,40=============CoreTrun...

Metgatz by L4 Transporter
  • 2933 Views
  • 1 replies
  • 0 Likes

Terminal Server Agent dedicated service user

Installing TaInstall64.x64-10.1.0-21.msi to a Windows 2019 Server as a administrator. Then changing service user to a dedicated serverice user. Adding that user to the install folder with modify rights. Adding that user to registry palo key with full control. But still getting errors and service cannot start. Anything else needed for a dedicated...

Error Driver TS-Agent

Hi, Im getting these events in the server (Windows server 2019) where i have installed the TS-Agent: System event log still contains a event about incompatible driver with modern version of Windows:13.09.2023 13:23:14:A TDI filter (\Driver\PANTAD) was detected. This filter has not been certified by Microsoft and may cause system instability....

BigPalo by L4 Transporter
  • 1447 Views
  • 1 replies
  • 0 Likes

Resolved! PA_VM setup for PA3020 to PA3410 Upgrade

Hello PA Community, we are upgrading PA3020 to PA3410. PA3020 is currently running with PANOS 9.1, new PA3410 will be with PANOS10.2. I will import config file from PA3020-->PA_VM-->PA3410. Question is - which VM file should I download in PA portal (should be vm9.1x HyperV for VMware Esxi?) - how to import vm.vhdx file to VMware ESXi - ...

zinkt101 by L1 Bithead
  • 2690 Views
  • 4 replies
  • 0 Likes

connect-server-monitor-failure

Hola, se ha presentado esta alerta: connect-server-monitor-failure dominio: 1 recibir_hora: 2023/03/13 09:57:57 Serial: 013201026328 número de secuencia: 7197536770509019655 indicadores de acción: 0x0 tipo: SISTEMA subtipo: ID de usuario config_ver: 2561 time_generated: 2023/03/13 09:57:58 high_res_timestamp: 2023 -03-13T09:57:58.610-05:00 dg_hi...

12345_0-1678723844440.png
12345 by L0 Member
  • 2415 Views
  • 3 replies
  • 0 Likes

Resolved! GlobalProtect for Specific location

Hi All, We have a requirement to configure Global Protect should be used only from 2 countries. For example, if users are in India and SriLanka only those people should connect to GP. Any other countries should not be able to connect even they are genuine users. Is there any way i can configure this using Geolocation option? Is this achievable...

  • 24374 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks