This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4253 Views
  • 0 replies
  • 0 Likes

Resolved! Request: List of GTIN / UPC Barcodes for Palo Alto Networks Products

Hi everyone, I’m looking for a complete list (or official source) of GTIN / UPC barcodes for Palo Alto Networks products — including firewalls and accessories. We’re integrating Palo Alto products into an eCommerce catalog and would like to ensure barcode accuracy for inventory and listing automation. If anyone has access to an official database...

Resolved! THREAT MAP on GUI is unable to export

Attention: Global TPM team, THREAT MAP on GUI is unable to export in PAN-OS 11.1.12.I found the below issue. In PAN-OS 11.1, when do this issue fix? // PAN-OS 11.2.8 Addressed Issueshttps://docs.paloaltonetworks.com/pan-os/11-2/pan-os-release-notes/pan-os-11-2-8-known-and-addressed-issues/pan-os-11-2-8-addressed-issues----PAN-290923(Panorama v...

MasaW by L2 Linker
  • 2380 Views
  • 1 replies
  • 0 Likes

Resolved! BPA Tool not showing details for issues

I've just come back after a few months, and uploaded a new TSF file to the BPA tool, and it shows me there are issues in a number of rules that are CSC/non-CSC checks, but when I bring up the list of issues, where previously you could expand each rule with an issue to show the exact problem with it, it now does not expand the details, ie. I am u...

M.Studte by L0 Member
  • 2603 Views
  • 2 replies
  • 0 Likes

Resolved! LOAD snapshot ERROR

Hi, when I try to load a snapshot config from a PA4020 on an another PA4020 with the same version I have the followingerror result unexpected here. Discarding.certsandkeys unexpected here. Discarding.custom-logo unexpected here. Discarding. I have tried to delete the custom-logo in the xml files without success Any Idea?

alle by L3 Networker
  • 3808 Views
  • 2 replies
  • 0 Likes

Clarification Needed on Multiple Static NAT Rules with the Same Public IP Address

Hi Community, I’m working with a customer who had previously configured a dynamic IP source NAT rule with only one address in the pool. This setup worked as expected for just one PBX since after the first session, the public IP would be in use, limiting further connections. However, the customer has now changed the configuration to use multiple ...

TammamA by L1 Bithead
  • 1601 Views
  • 1 replies
  • 1 Likes

Restrict Individual Administrators by Interface or IP

Is there a way to restrict access for specific administrators by interface or IP address? I really thought I'd seen this somewhere, but now I cannot find it in GUI or docs.Quick explanation of what we want to do. We want to have a sort of backdoor, emergency access to the firewalls directly from the Internet. That is, should some catastrophic ne...

cosx by L2 Linker
  • 10161 Views
  • 8 replies
  • 0 Likes

Resolved! NATing Question

I am using two PA-440 firewalls for a laptop testing. The purpose of the Lab is to test for VPN connectivity before deployment. Firewall A = has an external IP of 17.11.19.69/30 - Internal address 2.2.2.2/24 (LAN) Firewall B = has an external IP of 17.11.19.68/30 - internal address 3.3.3.3/24 (LAN) Because I have a block of public IP's, eac...

Building Cybersecurity Strategies: A Game of Digital Mahjong

Hi everyone, Lately, I’ve been thinking about how designing a strong cybersecurity strategy feels a lot like playing a complex game of Mahjong: every move matters, timing is crucial, and one wrong tile can shift the entire outcome. With AI-driven automation and increasingly dynamic threat landscapes, our “tiles” — firewalls, threat intelligence,...

Restrict Access to Box Account

Hi Team, We have a requirement to restrict the access to box account only when they get re-directed to box account from one particular website. So for example. User logs in to Facebook.com and need to upload a document. In facebook there will be a link to upload a document, when clicked it will re-direct to box account. So we need to restrict us...

Palo alto 1410 software update

Dear palo alto team, I would appreciate your advice, please.We are currently using a Palo Alto PA-1410 running on software version 11.2.3-5h.However, when checking for updates, we found that 11.2.4-h1 until 11.2.5. Could you kindly advise whether we should upgrade to a newer software version?If so, which version would be most suitable for our de...

QUIC decryption? A TCP replacement

It seems like QUIC is going to become main stream, Its not just this linked video, I am seeing QUIC related stuff increasingly now. As per docs I see even for 10.2 its advised to block udp 80/443 and block QUIC. I would guess Palo Alto bringing QUIC decryption feature soon to their products, may be by end of this year? 🤞 https://www.youtube.c...

raji_toor by L4 Transporter
  • 11826 Views
  • 4 replies
  • 1 Likes

URL citrix.rsieh.com is inaccessible through firewall

Hi Friends, 1) One of my customer is trying to access https://citrix.rsieh.com, although it initially opened, and it was soon redirected to https://sso-fe2eb653.sso.duosecurity.com/saml2/sp/sso and site is getting inaccessible through firewall 2) This are the User-Id users and they are not using authentication and decryption policy and apart fro...

  • 24362 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks