This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1824 Views
  • 0 replies
  • 0 Likes

Resolved! IPSec VPN not getting any response from peer

Hello,

 

i'm having a weird problem with an IPSec VPN on my Palo Alto.

 

This morning tunnel was working fine, but after mistakenly denying ike and ipsec requests on my firewall, the VPN went down. I obviously did a quick rollback and peer IP is now

...

christopheguengant_1-1747859953364.png
christopheguengant_3-1747860298749.png

HIP Check for Machine Certificate

Hello,

I've been unable to get my HIP check to work when checking for attributes in a machine certificate.  Other HIP checks do work.  I'm using my root cert for the Certificate Profile.  I don't have/use a intermediate cert as this is a lab.  Some of

...

QOS Not Working Propely

Hi Friends,

 

We have a customer experiencing issues with QoS. After enabling QoS, a noticeable reduction in internet bandwidth was observed. Although QoS was configured correctly, the bandwidth dropped from 25 Mbps to 14 Mbps on a 30 Mbps link.
To te

...

Virtual routers Impact

Hi Team,

 

if we create extra virtual routers does it impact CPU/RAM utilization i paloalto?Also do we need manually assign CPU/RAM allocation for newly creating virtual routers in paloalto ?

PCI Compliance - 86476 Web Server Stopped Responding

First time in years, getting this failed result to a PCI scan. 86476 Web Server Stopped Responding.

 

Their tech suggests it has something to do with my PAN WAF/IDS and they have a bunch of IP addresses/ranges that I can whitelist. I find this odd as

...

cenders by L3 Networker
  • 941 Views
  • 3 replies
  • 0 Likes

Resolved! block the tiktok application

Dears,

 

I want to block tiktok traffic in my environment. i observe in the traffic logs the firewall is not detecting the tiktok application traffic even i applied SSL forward decryption also the firewall is detecting application as a SSL and web brow

...

upload and download speed issue

Hi,

We are using PA820
i have a isp connection of 700mps up/down.and i have an internal server that can access from public and the domain is pointed to the public ip.the internal server is in my dmz zone and isp is in untust only untrust interface is

...

I cannot delete a virtual wire interface

Hello,

 

I've already looked at similar topics here, but it did not help me.

 

I'm supposed to set up a DHCP server on ethernet1/2 and to do it, I need to set up ethernet1/2 as a layer3 interface on the CLI first.

 

Initially, I tried these commands:

...

Resolved! proxy-id information through CLI -IPSEC Tunnels

To all,

 

I have multiple tunnels on PA 850. It was difficult to see through which tunnel specific traffic was sent. I tried "show vpn ipsec-sa" it gave me only Peer IP addresses but not proxy-IDs ( interesting traffic permitted through tunnel).

 

is the

...

DNARNI by L0 Member
  • 14144 Views
  • 6 replies
  • 0 Likes

Problem with dynamic update Failed to download file

Hi,

 

I have a problem with dynamic updates. I see new content version or antivirus, but I cannot download it with message Failed to download file.

Ping to updates.paloaltonetworks.com and downloads.paloaltonetworks.com is working.Service route is Us

...

Resolved! Traffic hitting policy rule it shouldn't

Hi,

 

PanOS 9.1.0

I need to block traffic to certain websites and domains.

I created a URL Category object and put just one site inside (example.com).

I then created a firewall rule like this:

 

Source zone: LAN

Source address: any

Dest Zone: WAN

Dest address:

...

  • 24245 Posts
  • 117 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks