This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4257 Views
  • 0 replies
  • 0 Likes

Resolved! CLI configuration of adding interface to virtual router

Hi, When add a interface into virtual router using cli, do I need to copied all the interfaces in the virtual router currently, then add this new interface into the list? For example, current default virtual router has two interface ethernet1/1 and ethernet1/2, I want to add another interface ethernet1/3 what I need to do is only "set network v...

nowayout by L1 Bithead
  • 4757 Views
  • 2 replies
  • 0 Likes

Encrypted-DNS False Positive Heads Up

Presently 20230406.20033 and earlier updates are presenting a large number of false positive categorizations for encrypted-dns. This includes several domains from Bitwarden, YouTube, Google, Microsoft, Spotify, and many many others. If you have encrypted-dns set to block you may get reports of many services not functioning properly.

BPry by Cyber Elite
  • 4892 Views
  • 6 replies
  • 3 Likes

Resolved! L2 Over L3 with VXLAN protocol

Hello, Is it possible to configure a VXLAN tunnel on a Palo Alto 3220 (running PANOS 10.2.3)? I.e. is L2 over L3 tunneling using VXLAN protocol possible? If so, is there an example configuration you can point me to? Thanks!

brenna by L0 Member
  • 7985 Views
  • 2 replies
  • 0 Likes

blocking apps on google chromecast

Hello, Looking to block apps on a new Google Chromecast all apps would be great but haven't been able to block AppleTV, HBOMax and ESPN. I've put appletvplus and hbo into our blocked apps rule but they still open and able to be accessed. Any one succesfully blocked Chromecast apps? Thanks

mlaporte by L1 Bithead
  • 3293 Views
  • 2 replies
  • 0 Likes

Where to download update for PA-2050 for learning purposes.

I have been given a PA-2050 to play with, and get my hands dirty, learning PAN, etc. Where do I go find the latest supported image for it? https://support.paloaltonetworks.com/Updates/SoftwareUpdates/ doesn't have the PA-2000 series listed. It has PA-200, and then PA-3000, PA-4000, PA-5000 and the PA-VM series.Should I even bother? Should I j...

Fan_Tai by L0 Member
  • 4535 Views
  • 5 replies
  • 0 Likes

User cannot connect to Global protect portal.

The error message on this users GP client says they have an issue with they're certificate. The helpdesk apparently installed a certificate but I am not sure which one or where exactly. Now its telling me it cant access the portal at all. I want to doublecheck the user has the correct certificate. I know where the certs are in the palo alto and ...

Global Protect on Linux not working

I've tried GP on both Ubuntu 22.04 and AlmaLinux.I got the GP app from University of Texas at Dallas. Neither worked. I got a SSL Handshake error.Anybody with a successful experience to share? Cheers

Resolved! DNS over TLS in 10.2.4

Hi All it seems like late last year DNS over TLS feature has been added to Palo Alto firewalls However I am having issues understanding where it needs to be configured, I did read the guides but still unclear So my external dns is 1.1.1.1 and I use DNZ proxy, 1.1.1.1 does support dns over tls but for that a domain needs to be configured in...

nevolex by L3 Networker
  • 3688 Views
  • 2 replies
  • 0 Likes

warning msg on CLI

Hi, While logged into the CLI on our PAN-OS, received the following error messages: 2016-07-20 12:17:16.783 +1000 Warning: pan_hash_init(pan_hash.c:112): nbuckets 100 is not power of 2!2016-07-20 12:17:16.783 +1000 Warning: pan_hash_init(pan_hash.c:112): nbuckets 100 is not power of 2! Just wondering if these are anything to be concerned about?

fmustafa by L1 Bithead
  • 7350 Views
  • 3 replies
  • 0 Likes

Changing interfaces

What are the steps to move the global protect VPN portal and gateway from one interface to another on the Palo Alto firewall? We are wanting to move it to it's own interface.

Gary-P by L0 Member
  • 1960 Views
  • 2 replies
  • 0 Likes

SSL inbound inspection

We want to apply inbound SSL inspection and our certificate from Digitcert and based on this document https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClEZCA0there is a note says "Because SSL certificate providers such as Entrust, Verisign, Digicert, and GoDaddy do not sell CAs, they are not supported in SSL Decryption."...

  • 24362 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks