This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4106 Views
  • 0 replies
  • 0 Likes

PA-3020 SFP 1000base-bx10

Hello! Does PA-3020 support ports SFP-modules 1000base-bx10 (wdm 1310/1550nm, SC)? There is a list of compatible modules? Thanks

ITOMD by L0 Member
  • 2764 Views
  • 3 replies
  • 0 Likes

Resolved! Antivirus Profile - Wildfire Inline ML - best approach to enabling?

We currently have the ability to use WildFire Inline ML via the Antivirus Profile settings on our PA-5220's. However, all models currently are set to ACTION = DISABLE. I do NOT know why other than either that is what it defaulted to on a previous upgrade or my predecessor had a reason to leave it off. What is the best approach to activating t...

Resolved! User Group Count Exceeds Threshold

I found this KB article on the subject: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000POxU Can this issue effect group mapping on user-id and cause users not to be recognised correctly?

s0lselcia by L4 Transporter
  • 2524 Views
  • 1 replies
  • 0 Likes

Panorama management

Hi Paloalto provide its ios that we can setup lab to learn and practice. so that our knowledge and experience improve a lot. Now I would like to know if Panorama ios can be provided for home lab? or some where we can buy? Is there temporary license? Anyone can share some experience? Thank you

kevinospf by L3 Networker
  • 1539 Views
  • 3 replies
  • 0 Likes

Proofpoint and other inbound blocklists

I've been experimenting with MineMeld and have to say I love it so far. I was browsing the list of feeds and looked at the ProofPoint ET Pro feed and I wondered if anyone knows how this feed works? I got pricing and it's quite reasonable, but I'm not 100% clear how it integrates and can be integrated with Palo Alto, does anyone know? Be in...

Recognize IP address

We have a Palo Alto PA-410.Under this is connected a switch, and under this switch a Access Point used for Wifi connection.This access point is functioning but the IP address is not knowed (and is not normal 192.168.0 192.168.1 ...)I know MAC address of this apparat,.Is it possible discover the IP address from PA-410 interface?

Palo Alto Hyper-V Security Policies with Hyper-V hosts

Hi, I have a PA-VM-HPV-10.1.0 setup with 2 hyper-v host. I've setup zones, virtual routers and the respective interfaces in L3. Testing the rules I can pings clients in zone 'A' from clients in zone 'B'. The problem is my 'Hits' count remains at zero and no traffic logs is seen in the monitoring menu. Is there some specific config settings I ...

Dell iDRAC configuration Assistance

I am having to step in during a transition and I cannot seem to get my configuration right, and I am hoping someone can provide me examples of what rules (NAT and Security) that I might need to allow iDRAC access to a couple of servers that reside in our untrusted zone from a specific public ip. I have assigned the iDRAC controllers public ip's...

ipv6 tunneled in ipv4 (protocol 41) - Hurricane Electric Free IPv6 Tunnel Broker

I am trying to setup ipv6 tunneled in ipv4 on one of my mac client machine that is behind nat. (192.168.1.100) Is this supported by PA-200 firewall or do i need to setup special rules to allow it or even some sort of destination NAT? Lets say in the example public IP is 1.1.1.1 and private ip is 192.168.1.100 and commands required to setup a tun...

Bartosz by L0 Member
  • 3669 Views
  • 1 replies
  • 0 Likes

Resolved! Recommended PanOS versions for VMs in Azure

Hi All, So there is a link on this platform updated often for recommended panos releases. https://live.paloaltonetworks.com/t5/customer-resources/support-pan-os-software-release-guidance/ta-... However, with VM FWs in Azure.. can i assume the same will apply to them as i am not able to find anything specific to these.. current VMs running 9.1....

PA_nts by L4 Transporter
  • 2864 Views
  • 1 replies
  • 0 Likes

Resolved! XQL Query UTC Time Help

We're capturing windows event 4800 and 4801 (Windows Locked and Windows Unlocked) and are working to build a report on it for the previous day, midnight to midnight. I've got the query setup exactly as we want, however are struggling to get around UTC. Does anyone have a good method to get around UTC? Obviously, when I Run the report in XQL, ...

No ms-onedrive-uploading or downloading Appl activity--it is all ms-onedrive-base

We don't allow ms-onedrive-uploading. Some IT have UserID-based right to ms-onedrive-base & ms-onedrive-downloading. Despite all of those up-privileged users showing "ms-onedrive-base" activity--nobody shows downloading. It was brought to our attention that they can upload to onedrive which is showing up as "ms-onedrive-base" only. And...

Royalfr by L2 Linker
  • 3056 Views
  • 2 replies
  • 0 Likes

how to get domain/user from azure Saml authentication?

Hello community. I have configured Azure SAML authentication for globalprotect users and I would like to get domain\username after authentication to match with GP portal´s agent configurations also in the form of domain\username or domain\group. Is there a way I can configure the firewall to get the domain\username after authentication or th...

Carracido by L4 Transporter
  • 1340 Views
  • 1 replies
  • 0 Likes

Route table behavior when a static route exists and is active, and a route learned via OSPF is also present.

Hi, We have static routes in place at 7 sites for routing between sites. In addition we are learning routes via OSPF, and these are set to a higher admin cost so not active. So the static route is active. When we look in the "runtime stats" route table (Not the forwarding table) of the virtual router, we only see the static routes currently, a...

CyberEng by L2 Linker
  • 4309 Views
  • 6 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks