General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Configuration / Rule Set Scheduled Export for SOC2 / ISO27001 Audits?

I'm looking for experiences and suggestions.

We're subject to SOC2 / ISO27001 audits, where the auditors want to know what has been changed in a firewall configuration or rule set. Specifically things like "what rules were added, changed, or deleted

...

Resolved! Slack channel ?

is there slack channel for minemeld ?

Block HTTP/HTTPS access via IP

Hello.

I would like to block access to my site (http/https) when it is made via IP.

I want to only allow access made by name.

Ex.: www.mysite.com <=> 1.2.3.4

https://1.2.3.4 => deny

https://www.mysite.com => allow

Is that possible with Pal

...

Resolved! Template- Variable CSV greyed out

I want to import template variables but the "Variable CSV" is greyed out as seen below. We are running Panorama 10.2.3 . I want to build a CSV to import variables for a template. Any ideas?

Thanks

User-ID when taking information from the syslog, uses a different timeout.

Hello,
In the users identified from the syslog (which comes from the ISE) the timeout is 2700 instead of 36000 with those identified from the AD. We need all of them to be at 36000.

Can anybody help me?
Thank you.

PA Packet Capture

Hi All,

Is there any similar command which we can use to check how the packet flows in PA and where the packet is being dropped, which blade is dropping the traffic. To simplify my question is there any command like Packet tracer command in Cisco ASA

...

Best practices health treshold palo alto

We need to know a threshold to determine whether the CPU memory and Palo Alto dataplane are normal, warning, or critical.

Does Palo Alto itself have a predetermined threshold?

#threshold

#850

#panorama #m200

#800series

High Usage of Root Partition in PA-220 After upgradre to 10.1 version

Hi Team,

After upgradation of PAN-OS 10.1.x version we are facing High Root Partition issue in our firewall.

Even after manually clean the logs after 5 days it is back to high, Is there any particular reason the partition usage is high ?

expedition export ASA objects and object groups to CSV

I see Expedition is a tool used to import ASA config file and export to PAN for migrations. For those who have it already installed, is there a way to export ASA configs, specifically objects and object-groups, to CSV?

Resolved! PCI Compliance - Weak SSL/TLS Key Exchange - 443 / tcp over ssl

We have been having the same issue with PCI compliance scans with two different companies.

After scanning, they come back with the following error:

Weak SSL/TLS Key Exchange

-------------------------------------------------------------------------

Ch

...

what is the PaloAlto equivalent of Cisco's Auto-RP feature?

I am trying to configure multicast but it only works with auto-rp feature. I am wondering the equivalent terms and configurations in Palo's world. has anyone configured it? If so, please provide me your inputs.

Thanks.