This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4223 Views
  • 0 replies
  • 0 Likes

Split-tunnel not working properly

Hi folks, Our customer configured split-tunnel on VM to include only certain IP addresses and domains and want to exclude any other traffic, so exclude options are blank. It seems that some traffic is still routed through tunnel (f.e.Telegram, bittorrent etc.) We tested this config on panos 10.1.6 as well as on 10.1.10. Also we were testing...

Resolved! How to filter traffic log by non-empty user

HelloHow to filter traffic log by non-empty user name in Source User field?.I have Captive Portal for uers, but some exeptions for printers and other stuff that isn't able to logon. Id like to filter traffic and get only traffic that isn't authenticated.How to do that?I know that I can put IP address insted of user names - but I want to know is ...

_slv_ by L4 Transporter
  • 6666 Views
  • 3 replies
  • 0 Likes

Resolved! Can Panorama M-200 support PA-5410

I'm upgrading to PA-5410 and I can't find the documentation showing if the M-200 supports this device. Is there a link that shows what PA devices are managed by each Panorama device? I've looked everywhere online and can't find anything.

Resolved! Simple IPsec tunnel interfaces not passing MAC address

Good afternoon, I've got a simple site to site IPsec tunnel in non production that I'm having a problem with. Currently I have the mgmt interface up. I also have my trust/untrust interfaces connected to a Cisco switch on the appropriate VLAN's for the subs I have programed on my PA-440. For some odd reason, I cannot see the MAC addresses of...

danoman2 by L3 Networker
  • 3768 Views
  • 4 replies
  • 0 Likes

"Warning! authentication for output feeds is disabled", again

Hi Team, we installed Minemeld a few days ago and we are fighting with the old issue "Warning! authentication for output feeds is disabled". Our MineMeld instance runs as a docker Installation on Ubuntu 16.04 LTS. Installation was done with the documentations, which we are found here at PaloAlto LIVEcommunity (Minemeld using docker). MineM...

PEnzenmueller_0-1626259603605.png
PEnzenmueller_0-1626264985332.png
PEnzenmueller_3-1626260194258.png

Blocking ChatGTP

Hi Guys, @BPry @kiwi How do you go an blocking ChatGTP ? Seems like has not been defined in the list of apps yet (applipedia) Thanks, Pkarki

Pras by L4 Transporter
  • 16923 Views
  • 5 replies
  • 1 Likes

Resolved! security policy in monitor mode only

Hi, This is a new Palo Alto deployment. We used to have Cisco FTD as IPS and now we are replacing with Palo Alto. We have 3 devices (router and SDWAN) that we configured using vwire so all traffic to the DC would pass through the Palo Alto inspection as IPS. I would like to deploy the security profiles/group (vulnerability/antivirus/spywar...

ismailsh by L1 Bithead
  • 4167 Views
  • 3 replies
  • 0 Likes

API - Fetching URLs from Custom URL object

Hi all, we have a Custom URL category object, WL-URLS, which contains a number of URLs for a whitelist policy. I am looking to find some information on how to go about retrieving the URLs from this object via the XML API. My preference is the XML API as I am working with the Python PAN-XAPI library, however I'm struggling to find what I'm look...

365 tenant restrictions problem with office365-enterprise-access

Noticed that a few of our enterprise logins that were previously identified as "office365-enterprise-access" are now being identified as "ms-office365-base". I've found an article explaining some of the issues. I know that this was working flawlessly about 2 years ago, but something must have changed with MS or with palos enterprise access ap...

Sec101 by L4 Transporter
  • 3536 Views
  • 1 replies
  • 0 Likes

GlobalProtect and multiple AAD tenants

Hello - We've set up a GlobalProtect portal and gateway to connect third-party individuals to our VPN. We've configured it to use SAML for authentication, leveraging an Azure Active Directory Enterprise Application that we have configured per the Microsoft guide (https://learn.microsoft.com/en-us/azure/active-directory/saas-apps/palo-alto-netw...

Entries in User-ID table show info pushed from XMLAPI never timeout

Hi guys,My customer previously used XMLAPI to push User-ID info to Palo Alto but they now have an Aruba Clearpass appliance which will be handling all User-ID information via Syslog.Due to software issues they cannot currently use XMLAPI between Clearpass and Palo Alto as the system has multiple vsys. Now the issue is that there are a lot of ent...

MelLi by L2 Linker
  • 8054 Views
  • 6 replies
  • 0 Likes

Resolved! New Anti-Spyware Signatures, false positives?

Hello, The latest application and threat content update this week added a couple of new anti-spyware signatures: medium 86759 AndroxGh0st Scanning Traffic Detection spyware alert medium 86760 AndroxGh0st Scanning Traffic Detection spyware alert These are being described as python malware exploiting your aws keys t...

axemte by L0 Member
  • 7534 Views
  • 1 replies
  • 0 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks