This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4231 Views
  • 0 replies
  • 0 Likes

FQDN object not resolved

Hi, We have this fqdn object created: 2021-01-08 12:26:14.872 +0100 dnscfgmod: Fqdn SIEMENS OWNCLOUD SERVER/cco.siemens.com could not be resolved If i run a ping from MGMT A interface is resolving:ping host cco.siemens.comPING cco.siemens.com (212.231.11.154) 56(84) bytes of data. The DNS is OK, reachable, and resolving. If i go to the web and c...

dns.JPG
BigPalo by L4 Transporter
  • 4931 Views
  • 4 replies
  • 0 Likes

Panorama stop showing logs suddenly

Hi, We have a panorama M100. Panorama is showing logs but suddenly stop doing it. We can not see any logs until we restart logd proccess or appliance. Panorama version is 8.0.8 Why is this happening?

Resolved! Recommended action for real-time-detection URL category

Can you please help me clarify the new real-time-detection category, which is covered by the URL filtering license? According to the article the Advanced URL filtering "real-time-detection" URL category is not a classification by itself, but a real time inspection, which can return either Benign or as one of the risky category types, e.g. Pa...

batd2 by L4 Transporter
  • 12641 Views
  • 6 replies
  • 1 Likes

Resolved! User resetting expired password through Global Protect

Is a user able to update their password (when its expired or a force change is required) in Global Protect when using SAML Azure AD authentication? There is this older document saying its possible when using Radius with PEAP-MSCHAPv2 authentication but I'm wondering about SAML. Expired Active Directory Password Change for Remote Users (paloalt...

Claw4609 by L5 Sessionator
  • 20792 Views
  • 1 replies
  • 0 Likes

Root certificate install

If I install a new certificate why does the root certificate have to be installed as well with it (well that is what I saw on a demo) ? I thought the root certificate was needed more on the client side or other firewall connecting to the one I'm referring to. I may be misunderstanding something. Also I will be requesting new certificates to r...

Cortex XDR on mobile phone

Hi all, I am running Cortex XDR and when I click on the all end points, I can see the endpoint device like PC and server. I have install the endpoint agent on those PC and server. They are Domain joined PC and server. How can I install this Cortex XDR agent on mobile phone? and second question is can we install cortex XDR on home PC which is not...

lprasad by L1 Bithead
  • 4092 Views
  • 5 replies
  • 0 Likes

Resolved! PA-220 Reboot

Hi Team, Firewall got rebooted instead of generating a tech support file can we do any other troubleshooting to check why the firewall was rebooted. If i generate the tech support file i have to go to Palo to check what it is and wait till i get the response. Instead, if I can check few commands, it will be better. In Cisco ASAs we can analyze...

Resolved! PA 500 Cisco 3560

Hi there, I am totally new here in Paloalto firewall. I have PA 500 and want to do lab test and I want to find a basic instruction to set up PA to connect internet and also connect to Cisco switch. I am very familiar with Cisco ASA and switch since we do all CLI but I understand PA firewall is all GUI. Any help I would be appreciate. My unders...

phugiay by L2 Linker
  • 9031 Views
  • 13 replies
  • 0 Likes

Resolved! IPSEC Tunnel to ASA - PeerID issues

I am setting up an IPSec tunnel to an ASA. I am getting an error message about the PEERID type only allowing IP but received FQDN. Per the other KB article, I changed the PAN Exchange mode to Aggressive. Now the PAN received a FQDN of the ASA side and gave listed the FQDN in the system logs.My question.. where in the ASA can you configure PEER a...

SDorsey by L4 Transporter
  • 8063 Views
  • 5 replies
  • 1 Likes

Newly registered domains

Occasionally we run across newly registered domains that we either know or believe to be non-malicious and that we need immediate access to. Newly registered domains are blocked by the Palo Altos - is there a way to flag specific newly registered domain URLs as allowable?

Exporting all the rules and sub rules

I have been tasked with exporting all the rules from our Palo Altos for monthly review purposes. Panorama has shared rules as well as rules in each device group. Our firewalls have rules on them as well. Support suggests using the PDF/CSV option on the shared rules. We have 10+ shared and sub device groups, and 20+ PA220s. Obviously this w...

AWongCA by L0 Member
  • 10945 Views
  • 2 replies
  • 0 Likes

Vwire

Vwire is introducing latency please help me. by using vwire we are observing 80 ms of latency.

  • 24357 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks