This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4115 Views
  • 0 replies
  • 0 Likes

Commit Error

Hello. After adding the allowed IP band, I pressed Save, but it is failing.

qmso475_0-1694679455987.png
qmso475_1-1694679479302.png
qmso475_2-1694679505579.png
qmso475 by L3 Networker
  • 886 Views
  • 1 replies
  • 0 Likes

URL Logging - only custom allowed domains are showing up

Hi there, I'm trying to get URL logging to work. At first: I don't have the advanced url filtering license, maybe that's why.... I have got a custom url category with some domains which I want to allow, those urls in this list are logged fine. Everything else should be blocked and logged but for those situations the logging doesn't show ...

url-list.png
Netzer by L3 Networker
  • 1972 Views
  • 3 replies
  • 0 Likes

Resolved! Global Protect message is CN name mismatch.

Hello everyone.Global Protect message is "The certificate CN name mismatch, The certificate is not issued to x.x.x.x" when I connect GP.I configure to import certificate that issurer is Go Daddy Secure CA.Why does CN name mismatch???

How to configure VPN and Certificates to cut VPN access when the Certificate is revoked.

Hello team, I need to know How to configure VPN and Certificates to cut VPN access when the Certificate is revoked. I have revoked a certificate into the Firewall but I can connect anyway from VPN.... I am using on my GlobalProtect connection and the connections are working fine, I need to cut this connection when the certificate is revoked,...

Alpalo by L4 Transporter
  • 1548 Views
  • 1 replies
  • 0 Likes

Resolved! Reports

Hi everybody. When I got the report from palo alto the following problem occurs ( b' ' ). This report is in PDF format and cannot be edited. There was an extract of the report before, but there was no such problem. b'Risk' b'Application' b'App Category' b'App Sub Category' b'App Technology' b'Sessions' b'Bytesb'windows-...

Fagani by L2 Linker
  • 1434 Views
  • 1 replies
  • 0 Likes

Session count can't break 1025

Hi all, I am running a VM-series on aws and it has a issue with session, it's cannot break 1025. I'm new to Palo Alto so there are many term i really don't understand. Some body please tell me what is Active Session? Is it Session count on UI? Why can't it break 1025?

ahcogn1_0-1689301370235.png
ahcogn1 by L0 Member
  • 3301 Views
  • 5 replies
  • 0 Likes

Resolved! Dual IPSEC tunnels load balanced between two endpoints

Is there a way to setup TWO IPsec tunnels using different paths (for instance, two different ISP's) and have them share the traffic load between the two vs having a primary and backup? I'm aware we can setup two tunnels and use path monitoring to fail over from one tunnel to the other but is there a way to have two or more tunnels and have the...

Resolved! Cortex XDR Cloud Identity Engine Integration

We have planned the configuration of the Cortex XDR Cloud Identity Engine for our on-premises service. Could you please tell me whether the Cloud Identity Engine agent should be installed on the AD server or on a separate (NEW) server? What is the best method?

Resolved! Custom App-ID iMessage

Hi,We have recently installed a PA-2020 at our college and am very happy with the device. The only issue we are having is that students are still able to use iMessage on their iPads. I can't find an existing app-id for that and am wondering if anyone has already created a custom id for such. I am going to follow the tech note on creating a custo...

Rowan_C by Not applicable
  • 7015 Views
  • 6 replies
  • 0 Likes

Resolved! UserID/Group mapping

I have created a LDAP profile, group mapping and user mapping from Panorama, and it seems to be working. Im able to do "test authentication username xxxxxxx.test@xxxxxxxxx.com authentication-profile xxxxxx-LDAP password and this works fine. My problem is that panorama doesnt seem to be able to "manage" Palo Alto Networks User ID Agent Setup ta...

Website marked as phishing

Hello, Our backend website "backend.knokcare.com"was flagged as "phishing" by PaloAlto. May you change this categorization, please? We've already requested this change thorough https://urlfiltering.paloaltonetworks.com/ to "Health-and-Medicine". "knokcare.com" is in this category. We have customers using paloalto protection that are being bloc...

Resolved! Palo Alto API for End of Life services.

Team, Any aware if Palo Alto provides any API's which can help with End of Life dates? e.g. check for a device by serial number, by model number, check for the PAN OS version etc. Regards, Nikson.

DNS Security checks for records different than A

Hi, Does DNS Security checks DNS records other than A and how it works ? I think CNAME are checked as they are similar to A in meaning of request content. How about other records like PTR and TXT as they can be used more frequently for C2 traffic?

OIDS differents on HA A\P nodes

Dear Team, I have a suggestion. Where can I find more information about OIDS of HA peers. I need some claryfication about, can this OIDS be different on HA Active Passive. I have two PA 5220, A\P. Pan-OS version is 10.1.10-h1. Need some advice. #OID #5220 #HA pair

  • 24335 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks