This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4104 Views
  • 0 replies
  • 0 Likes

Resolved! Differences between URL category and address object?

We are doing some testing with a user that is running a client and needs to get out to the internet.1. We have a policy for testing and added the required FQDN address objects to the destination. This was successful.2. Next, we removed the address objects from the destination (replaced that with "any") and moved them to be part of an existing UR...

Resolved! FQDN objects or URL Categories

It seems like FQDN objects and URL categories have overlapping functionality. Can anyone provide some guidance on which is less resource intensive for something like the below please? http://liveupdate.symantecliveupdate.comhttp://liveupdate.symantec.comftp://update.symantec.com/opt/content/onramp

SSaady by L0 Member
  • 20733 Views
  • 5 replies
  • 0 Likes

User ID Agend (access is denied) error after Windows Update

After our Server 2019 DC's were updated our Windows User-ID Agents have been unable to connect with error (access is denied). Rolling back this update fixed the issue. Anyone else experience this recently? KB5022286 Update: Other DC's had to uninstall KB5014692 or KB5022840 As soon as these updates are uninstalled, the Windows User-ID Ag...

Resolved! SSL inspection and threat prevention

I'm considering to enable the inbound SSL inspecition on my intranet cluster. All rules that allow traffic from untrusted network like plant, supplier etc to the DC have a security profile with vulnerability protection.But at the moment a lot of traffic is crypted (ssh, https etc) so the firewall can't inspect for CVE right? This means that if a...

PA-5450 Visio Stencils or Icons

Good Friday Morning, Does anyone know if (or when) the Visio icons will be updated to include the PA-5450 NGFW and it's components (chassis, NC, DPC, and MPC)? Thank you in advance,John L.

Resolved! Teamspeak 3x file transfers failing but VOIP works

Teamspeak 3 has an existing app-ID that works for people connecting to use the VOIP features but it fails when they try and use the file transfer feature. The session on the client looks like it tries to start but then fails. When I check the traffic log on the firewall I can see the application is being identified as 'unknown-tcp' with action...

rmcrae by L3 Networker
  • 3390 Views
  • 3 replies
  • 0 Likes

upgrading from PA-3020 to PA-3220 HA2 error

HiTrying to upgrade from a PA 3020 to a PA 3220 but when we import the running state from the PA 3020 and then click commit we get this error. Validation Error:deviceconfig -> high-availability -> interface -> ha2 -> link-speed unexpected heredeviceconfig -> high-availability -> interface -> ha2 is invalid I have edited the ...

GlobalProtect 6.0.5 doesn't detect Symantec endpoint protection HIP data

GP version (6.0.5) doesn't detect Symantec HIP data on the client PanGPA.log: <ProductInfo> <Prod name="Symantec Endpoint Protection" version="" defver="" prodType="3" engver="" osType="1" vendor="Broadcom" dateday="" dateyear="" datemon=""> </Prod> on the server HIP match: Rolled back to previous version (5.2.12) then it...

2023_02_15_16_29_36_Firefox - Copy.png
2023_02_15_16_30_48_F - Copy.png
LAS by L2 Linker
  • 2584 Views
  • 2 replies
  • 0 Likes

Resolved! Slow File Downloads over a new PA3220

I recently installed a new pair of PA3220s at one of our international remote offices in India to serve as basic Internet Edge Firewalls that are linked to a 300mbps internet circuit. The PA's have 2x Portchannel links each with sub-interfaces that terminate down to 2x C9300 Layer 2 Core switches ( Core A and Core B), and from there, we have abo...

Suggestions

Hi Not sure where else to place these and talking to the support engineer is a bit of a black hole. * one the CLI allow for lines which are comments - like any thing after a # is a comment - this allows me to have config files that are text files that I can add comments to * allow policy lines / rules that don't do anything apart from being ...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks