This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4287 Views
  • 0 replies
  • 0 Likes

Wildfire on Password protected zip & RAR

Hello experts, How would the Wildfire (submission) on firewall deal with these types 1) password protected zip 2) password protected 7-zip 3) password protected RAR? would it automatically submit by Firewall or need manual submit thru Wildfire portal or API? any ideas? Thanks Harris. WildFire

Resolved! GlobalProtect Portal HTTP redirect

Dear all,We're currently testing the GP VPN solution before we roll it out to our notebooks. We noticed that we can only access the portal homepage if we explicitly enter "https://<portal-url>". It doesn't work with just "<portal-url>" there HTTP would be used. Is there any way to activate an HTTP to HTTPS redirect for the GP portal?...

oschuler by L4 Transporter
  • 13294 Views
  • 6 replies
  • 1 Likes

Resolved! maximum number of GlobalProtect VPN tunnels for PA-5450

Hello PA community , Our customer is looking for the maximum limit for GlobalProtect Gateways on PA-5450. The most recent KB we found was this which covers 5250, but we would very much like to verify if it is still the same or more for 5450:https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClidCAC we checked also co...

Resolved! IPSEC tunnel

Hi All, Our vendors are migrating their IPSEC tunnel firewall, which is resulting to change the tunnel gateway IP from our palo-alto firewall end as well. So, we are thinking just to create one more ipsec tunnel without tagging the tunnel interface and during maintainace window just to bind the tunnel interface to our new Ipsec tunnel and ...

Sujanya by L3 Networker
  • 3265 Views
  • 2 replies
  • 0 Likes

IPSec tunnels with Prisma Access don=t not come up after reboot

Hi community! Our firewall rebooted and after reboot we noticed the IPSec tunnels to Prisma Access did not restore automatically. Normally the IPSec tunnels come up when traffic is going through the tunnel.Do you know if this is a normal behavior with tunnels with Prisma Access? Thank you in advance!

Carracido by L4 Transporter
  • 1527 Views
  • 1 replies
  • 0 Likes

Slow upload speed PA-500

Hi, We are using PA-500 firewall and our download/upload speed is 100/42. We have subscribed for Acronis Cyber Protect cloud backup of all our servers. we are facing slow upload speed like 600 kBps while doing backup on Acronis data center. what needs to be check on firewall and how we can increase the upload speed? can we allocate dedicated upl...

IPsec tunnel takes long time to re-establish

Hello, We have 2 IPsec tunnels s2s between 2 Palo Alto firewalls. We are using ike-v2 gateways, and liveness check : 5s The WAN on one of the side is flapping, sometimes disconnect around 10min. After this disconnection, the tunnel does not re-establish immediately, it takes around 15min. We have also configured tunnel monitors on both sid...

CTramier by L0 Member
  • 4568 Views
  • 4 replies
  • 0 Likes

Resolved! URL Filtering - TLS 1.3 Website

Hi,I am new to Palo Alto Firewalls and am in the middle of testing some of the functionalities provided. One of which is URL Filtering. I have been able to clone the default URL Filtering Profile. I then added a website to the blocked list. Then assigned the profile to a security policy. And it worked. I found this knowledge base article confirm...

tpmeier by L0 Member
  • 9350 Views
  • 2 replies
  • 0 Likes

Resolved! Differences between URL category and address object?

We are doing some testing with a user that is running a client and needs to get out to the internet.1. We have a policy for testing and added the required FQDN address objects to the destination. This was successful.2. Next, we removed the address objects from the destination (replaced that with "any") and moved them to be part of an existing UR...

Resolved! FQDN objects or URL Categories

It seems like FQDN objects and URL categories have overlapping functionality. Can anyone provide some guidance on which is less resource intensive for something like the below please? http://liveupdate.symantecliveupdate.comhttp://liveupdate.symantec.comftp://update.symantec.com/opt/content/onramp

SSaady by L0 Member
  • 21003 Views
  • 5 replies
  • 0 Likes

User ID Agend (access is denied) error after Windows Update

After our Server 2019 DC's were updated our Windows User-ID Agents have been unable to connect with error (access is denied). Rolling back this update fixed the issue. Anyone else experience this recently? KB5022286 Update: Other DC's had to uninstall KB5014692 or KB5022840 As soon as these updates are uninstalled, the Windows User-ID Ag...

Resolved! SSL inspection and threat prevention

I'm considering to enable the inbound SSL inspecition on my intranet cluster. All rules that allow traffic from untrusted network like plant, supplier etc to the DC have a security profile with vulnerability protection.But at the moment a lot of traffic is crypted (ssh, https etc) so the firewall can't inspect for CVE right? This means that if a...

  • 24364 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks