This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 193 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 875 Views
  • 0 replies
  • 0 Likes

Cisco VPN Behind PA-3220

We have a third-party that borrows our network to establish a VPN tunnel back to their office via a Cisco 881 ISR. We have it on a segregated guest network and it establishes an ike/ipsec tunnel back to their ASA over our internet connection.

 

Works

...

Someone school me on Syslog and Panorama

I have Panorama managing roughly 10 firewalls.  I have logging setup on those FWs to send to Panorama, email and send syslog to a 3rd party host.  I struggled immensely trying to get everything configured correctly on PANORAMA and the FWs themselves

...

drewdown_0-1659635032714.png
drewdown by L4 Transporter
  • 2212 Views
  • 1 replies
  • 0 Likes

Resolved! SSL Decryption+ALPN not stripped: yandex.com not working

Hi

 

I have a customer that wrote to me yesterday that if they remove the checkbox for Strip ALPN while having SSL decryption enabled, a few web sites such as yandex.com stop working.

I was able to reproduce this with my PA-3220 and PANOS 9.1 and also o

...

ShaiW by L4 Transporter
  • 6079 Views
  • 4 replies
  • 1 Likes

Resolved! Updating the HA configuration in large hops.

Hello community

 

I am upgrading a PANOS 8.0.7 to version 9.1.14-h1

 

I would like to know if in the transit versions, you download and install only the base 9.0.0.0 or is recommended to download the base 9.0.0 and install the recommended 9.0.16-h2
fo

...

PAN-DB is not connect to cloud

DB Cloud is not connected as i have 9.0.3h3 version. And this command is also not running. Please suggest

 

request url-filtering download paloaltonetworks region <region_name>

 

Joshan_Lakhani_0-1586860186931.png

Command user group name not working

Hi,

 

We just check that the command:  show user group name 'cn=......' has this output: 

user group xxxxx does not exist or does not have members. All config is OK. 

 

If we run "show user group list", i can see al the groups, but filtering by one of the

...

BigPalo by L4 Transporter
  • 7579 Views
  • 7 replies
  • 1 Likes

Issue with VXLAN traffic passing through the firewall

Hi Team, 

 

We have an SDWAN box placed behind the firewall and the SD_WAN box need to communicate with the controllers which is located on the internet.

 

The topology is given below:

SD_WAN Box<--->F/W LAN interface<--->F/W ISP interface <--> Internet <

...

tamilvanan_0-1653585569659.png

Resolved! Sinkhole vs whitelising url

Does the sinkhole take precedence over whitelisting? We whitelisted a url and are sinkholing parked categories. I can request to have the category changed, but was not sure which took precedence. 

gfleming by L0 Member
  • 2957 Views
  • 2 replies
  • 0 Likes

Resolved! Always on GP Using Local CA for Prelogin and SAML Auth

I am building and always on VPN with Prelogin (both windows and MAC) and SAML authentication. Everything works as expected with PC computers. With the MAC computers, we see the Prelogin connection, Then it is supposed to switch to user authentication

...

Carleton by L3 Networker
  • 2368 Views
  • 1 replies
  • 0 Likes

office365 uploading App-ID not recognized error

Dear Team,

 

There is a symptom that the office365 application is not recognized correctly.

 

For example, if you connect to the office WEB (office.com) and create powerpoint and word documents, they are recognized as 'ms-powerpoint-online' and 'ms-s

...

  • 24009 Posts
  • 115 Subscriptions
Top Solution Authors
View All
Top Liked Posts
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks