This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4431 Views
  • 0 replies
  • 0 Likes

Resolved! Can the Palo Alto Firewall autoguarantine users based on the number of violations they have made for a particular time?

Hello to All, Can the Palo Alto Firewall autoguarantine users based on the number of violations they have made for a particular time? I know that palo alto can add the users or ip addresses to and dynamic group using auto taging with tags (https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-new-features/user-id-features/dynamic-user-groups )...

Log-filter-bad-user.PNG

Global Protect

Entered the credentials, got the push. Gp is showing connecting and after 2 sec showing not connected and minimizes the agent. Exactly after 5 sec agent pops up.. Started spinning and gets connected.(Without asking for credential and push mfa) Version :6.1.0

OOM-Killer on 8.1 Trail (PA-5050 device)

Hi, i know this is about old software on old hardware, but both are still supported by Palo Alto. In the last months we get a heavy amount of OOM Message / Stack Traces / you name it. Actually we arent able to push new config changes from Panorama to the both devices. Everytime the commit will be aborted by some OOM activities and mostly the M...

Can Applications be filtered in some way in Cortex XDR report?

Hello all! I hope your day is going well!I wanted to know if Cortex XDR has the availability to filter applications in a report?What my goal is : For example I have 20 systems. Is there any way that I can put a filter on them, to see what Applications those systems have?For example, this is now happening with Groups. I can see what groups are as...

Creating a support case forwards me to LIVE community

Hello, We have a Panorama premium support and recently trying to create a TAC case and request for engineer on the support portal. But recently we are unable to create one and instead recommend us to use the LIVE community. is there still a way we can create a support ticket and set a call with a TAC engineer? for your advice.

Inquiry about API key

In order to receive the Palo Alto Firewall api keyI checked " curl -k -X GET 'https://<fw-ip>/api/?type=keygen&user=<id>&password=<password>' " in the docsbut where is this command have to enter it? https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-panorama-api/get-started-with-the-pan-os-xml-api/get-your-api-key

qmso475 by L3 Networker
  • 2849 Views
  • 2 replies
  • 0 Likes

Count Palo Alto Memory Usage

Hello All, I want to ask about memory on PA-850 and PA-3410. i use the calculation "Free Memory/Total Memory = xxx %" and the rest i assume is the used memory but when i see the memory utilization on PA-3410 its only have 210MB for free memory. so when i use the calculation, the free memory only 1% from the total memory, it has a large numb...

DennyChanditya_0-1679285413162.png
DennyChanditya_1-1679285850004.png

mdns forwarding between vlans no option

hi guys how can I enable mdns forwarding between l3 vlans (my ports are essentially l2 bridges into groups with l3 vlan interfaces having ips and running dchp servers) it seem like bonjur forwarding can only be enabled on physical l3 and not l3 vlans not quite sure what to do thank youalex

nevolex by L3 Networker
  • 2636 Views
  • 1 replies
  • 0 Likes

Resolved! UserID Agent 11.0 on Windows Server 2022

Hi all, i wanted to know if there are any issue identified on installing the user-id agent 11.0 on windows server 2022. I have tried it on a server 2022 and there aren't any problem . Wanted to be sure about it and to not have problems in case of a support request. Thanks in advance

Leobute by L0 Member
  • 3189 Views
  • 1 replies
  • 0 Likes

Collecting customer deployment information

Given I am a newbie to Palo, I am running through the PSE Strata Associate training and have seen this statement (or something like it) many times : using intelligence generated across many thousands of customer deployments. This prompts a few questions: 1. What is being sent from these customer deployments for this analysis to be done ? 2....

shodgdon by L0 Member
  • 1841 Views
  • 1 replies
  • 0 Likes

IKE phase 1 not working

I'm trying to setup a site-to-site VPN between Palo 820 and a Cisco ASA. I've checked the configs and both are matching OK with correct PSK. I've configured the proxy IDs accordingly. I don't have access to the Cisco ASA as this is on the customer side however they sent me the config so I can confirm that crypto settings, psk are matching. T...

G.Grant by L2 Linker
  • 8984 Views
  • 2 replies
  • 0 Likes

Symmetric Return Details - DNAT - PBF Out or PBF In return Symmetric

Symmetric Return Details - DNAT - PBF Out or PBF In return Symmetric Hello Live Community, good evening, as always, thanks for the good vibes, the collaboration and your time. One doubt, I have managed to validate this behavior associated to environment, with two or three ISP Internet links, when I point 2 DNAT to the same IP. And of course ...

Metgatz by L4 Transporter
  • 2774 Views
  • 1 replies
  • 0 Likes

Resolved! GlobalProtect Multiple Profile

Hello, I Have question regarding GlobalProtect: I have 1 virtual PaloAlto with configured GlobalProtect. I would like to configure 2 profile, 1 for my Staff, 2 for external peoples (Like connection profile on cisco anyconnect). difference between these 2 profiles are next: For my staff I would like to provide auto connection to our corporate VP...

3CX PBX behind a PAN-500

After about a week of trial and error, the Palo Alto Network engineers have told me that my PAN-500 does not support the 3CX phone system. I am told that a future feature request will resolve flow based NAT issue I am having with STUN traffic. Unfortunately, I have already bought the server and all new IP phones and the changeover is 2 weeks awa...

JCapron by L1 Bithead
  • 16548 Views
  • 13 replies
  • 0 Likes
  • 24374 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks