This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4221 Views
  • 0 replies
  • 0 Likes

Resolved! User Group Count Exceeds Threshold

I found this KB article on the subject: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000POxU Can this issue effect group mapping on user-id and cause users not to be recognised correctly?

s0lselcia by L4 Transporter
  • 2566 Views
  • 1 replies
  • 0 Likes

Panorama management

Hi Paloalto provide its ios that we can setup lab to learn and practice. so that our knowledge and experience improve a lot. Now I would like to know if Panorama ios can be provided for home lab? or some where we can buy? Is there temporary license? Anyone can share some experience? Thank you

kevinospf by L3 Networker
  • 1577 Views
  • 3 replies
  • 0 Likes

Proofpoint and other inbound blocklists

I've been experimenting with MineMeld and have to say I love it so far. I was browsing the list of feeds and looked at the ProofPoint ET Pro feed and I wondered if anyone knows how this feed works? I got pricing and it's quite reasonable, but I'm not 100% clear how it integrates and can be integrated with Palo Alto, does anyone know? Be in...

Recognize IP address

We have a Palo Alto PA-410.Under this is connected a switch, and under this switch a Access Point used for Wifi connection.This access point is functioning but the IP address is not knowed (and is not normal 192.168.0 192.168.1 ...)I know MAC address of this apparat,.Is it possible discover the IP address from PA-410 interface?

Palo Alto Hyper-V Security Policies with Hyper-V hosts

Hi, I have a PA-VM-HPV-10.1.0 setup with 2 hyper-v host. I've setup zones, virtual routers and the respective interfaces in L3. Testing the rules I can pings clients in zone 'A' from clients in zone 'B'. The problem is my 'Hits' count remains at zero and no traffic logs is seen in the monitoring menu. Is there some specific config settings I ...

Dell iDRAC configuration Assistance

I am having to step in during a transition and I cannot seem to get my configuration right, and I am hoping someone can provide me examples of what rules (NAT and Security) that I might need to allow iDRAC access to a couple of servers that reside in our untrusted zone from a specific public ip. I have assigned the iDRAC controllers public ip's...

ipv6 tunneled in ipv4 (protocol 41) - Hurricane Electric Free IPv6 Tunnel Broker

I am trying to setup ipv6 tunneled in ipv4 on one of my mac client machine that is behind nat. (192.168.1.100) Is this supported by PA-200 firewall or do i need to setup special rules to allow it or even some sort of destination NAT? Lets say in the example public IP is 1.1.1.1 and private ip is 192.168.1.100 and commands required to setup a tun...

Bartosz by L0 Member
  • 3802 Views
  • 1 replies
  • 0 Likes

Resolved! Recommended PanOS versions for VMs in Azure

Hi All, So there is a link on this platform updated often for recommended panos releases. https://live.paloaltonetworks.com/t5/customer-resources/support-pan-os-software-release-guidance/ta-... However, with VM FWs in Azure.. can i assume the same will apply to them as i am not able to find anything specific to these.. current VMs running 9.1....

PA_nts by L4 Transporter
  • 2927 Views
  • 1 replies
  • 0 Likes

Resolved! XQL Query UTC Time Help

We're capturing windows event 4800 and 4801 (Windows Locked and Windows Unlocked) and are working to build a report on it for the previous day, midnight to midnight. I've got the query setup exactly as we want, however are struggling to get around UTC. Does anyone have a good method to get around UTC? Obviously, when I Run the report in XQL, ...

No ms-onedrive-uploading or downloading Appl activity--it is all ms-onedrive-base

We don't allow ms-onedrive-uploading. Some IT have UserID-based right to ms-onedrive-base & ms-onedrive-downloading. Despite all of those up-privileged users showing "ms-onedrive-base" activity--nobody shows downloading. It was brought to our attention that they can upload to onedrive which is showing up as "ms-onedrive-base" only. And...

Royalfr by L2 Linker
  • 3174 Views
  • 2 replies
  • 0 Likes

how to get domain/user from azure Saml authentication?

Hello community. I have configured Azure SAML authentication for globalprotect users and I would like to get domain\username after authentication to match with GP portal´s agent configurations also in the form of domain\username or domain\group. Is there a way I can configure the firewall to get the domain\username after authentication or th...

Carracido by L4 Transporter
  • 1357 Views
  • 1 replies
  • 0 Likes

Route table behavior when a static route exists and is active, and a route learned via OSPF is also present.

Hi, We have static routes in place at 7 sites for routing between sites. In addition we are learning routes via OSPF, and these are set to a higher admin cost so not active. So the static route is active. When we look in the "runtime stats" route table (Not the forwarding table) of the virtual router, we only see the static routes currently, a...

CyberEng by L2 Linker
  • 4421 Views
  • 6 replies
  • 0 Likes

PA820 Upgrade Path

Hello, I was wondering what is the best path to upgrade from PAN-OS 9.1.15-h1 which I have read will be EOS-EOL 12-31-2023 to PAN-OS 10.2.4-h3 Thanks.

Resolved! User ID with Separate Domains

Team, I have one FW running agentless User-ID in an environment with two separate Domains one is XYZ and another domain is 123. User-ID can see both domains but cannot monitor both of them so users that login on XYZ domain are restricted in the policy's but for users that login under 123 User-ID does not see them so they are just blocked. An...

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks