This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4121 Views
  • 0 replies
  • 0 Likes

Block IE

Will blocking Internet Explorer from internet access also block MS Edge in IE mode? If so, is there a way to allow Edge in IE mode but still block Internet Explorer?

alowranc by L0 Member
  • 2458 Views
  • 2 replies
  • 0 Likes

URL category change request rejected

Hello Community!We need to change a URL that is tagged under Computer and Internet while it is dedicated to Health ad Medicine and should be tagged accordingly. Our vendor can't access our site as their firewall is blocking anything that is not under Health and Medicine. I have followed the process to make a Category change request (as per exist...

JoseeM by L0 Member
  • 3165 Views
  • 3 replies
  • 0 Likes

Resolved! IPsec Tunnel with Loopback and NAT

Hi I have 2 questions. 1. I want to create an IPSec tunnel, using a loopback interface. This removes a dependency on the main interface ip. ie if the loopback ip is :3.4.5.2, and the main internet ip is changed from 3.4.5.1 to 3.4.5.30, this then doesn't impact the IPSec tunnel. After the IPSec tunnel is online. 2. I want to NAT the communic...

CherieWatts_3-1662410895804.png

Resolved! App-ID Windows-Remote-Managment showing as Web-Browsing

We recently upgraded to 10.1.5-h1 and it appears after the upgrade the Windows-Remote-Managment traffic over tcp5985 is now being identified as Web-browsing. This is causing that traffic to drop. We checked dynamic updates and presently leveraging the latest update released on 5/16. Seeing if this is a growing issue?

unable to renew device certificate

Hi everyone, i'm having an issue regarding the device certificate on a pa-440 panos 10.1.6-h3 at the moment i am getting a a message device certificate not found. but u don't have any options to get a new one in the GUI. is there a way to trigger the check for a certificate in the CLI ?

Devicecert PA 440.jpg

Shadow Rule warning

Hello When apllying a rules in PA I get the warning message re shadow rule.I have two rules where rule 1 allows SSL between source and dest on standard SSL port rule 2 allows SSL between the (same) source and dest on a non standard SSL port I get a warning about rule 1 shadowing rule 2 How can I combine ther two rules so that I do not get that...

RC-BHF by L2 Linker
  • 6658 Views
  • 6 replies
  • 0 Likes

no RAID menu in maint mode for 5400

Hi all, I can't find RAID menu in maintenance mode for 5430 appliance. It definitely was earlier (at lease in 5200 series) so I was able to copy data from old SSD to a new one. even in the guide there is instruction for this RAID menu option (step 11 in the link below) https://docs.paloaltonetworks.com/hardware/pa-5400-hardware-reference/service...

Unknown.jpeg
goldandy by L0 Member
  • 2302 Views
  • 2 replies
  • 0 Likes

Custom URL category issue

I have read through a number of URL category issues, but I just cannot find something like this and I am baffled so far. I have two users, inside and outside, that access a certain internal webserver. What I am trying to do is the following. outside: allow: a.b.com/sites/outside and a.b.com/sites/common block: a.b.com (the rest of the site) insi...

Netflow is not working after upgrade to the 10.1.6-h6, is it somthing know issue in 10.1.6-h6 PAN OS version

Netflow is not working after upgrading to the 10.1.6-h6, is it something know issue in the 10.1.6-h6 PAN-OS version? Firewall- PA-3220 I have checked the NetFlow statics and seen that the firewall is sending the NetFlow log. for reference, I am also attaching the TCP dump snapshot. Can someone advice me please

tcp.doc.jpeg

HIP object for Disk Encryption Criteria

Hi everyone, Can I check for Prisma Access HIP object for Disk Encryption with BitLocker with the option to check encrypted location (eg C:, D:) is Encrypted?Please note you are posting a public message where community members and experts can provide assistance. Sharing private information such as serial numbers or company information is not rec...

Facing VPN connectivity issues by using an external gateway in global protect

Model: PA-450 We cannot connect remote VPN from outside of our network by using public IP but connect from the internal network by internal private IP of the PaloAlto direct interface IP. Note: PaloAlto firewall is running behind our internet router.We just port forward to the PaloAlto VPN gateway private IP of interface from our internet r...

Inspection of traffic with PPPoE headers

I'm attempting to use a PA-440 in vwire mode to inspect traffic that is on the internet side of a broadband modem for security analysis. The traffic passes through the PA ok but non of the security policies seem to be triggered and no traffic logs are generated. Does anyone know if the Palo Alto firewall will inspect traffic that contains a PPPo...

Resolved! Home Lab Setup - PA VM + Windows 10 (Vmware)

Hi guys, I have a beginner's question I'd like to ask. I want to set up my own home lab on VMware workstation 16 and something doesn't add up. First, my simple network topology is the following:My home network is on a 192.168.1.X network (default gateway 192.168.1.1) .I have a PA-VM 10.1 with a management ip of 192.168.1.222 (default gateway 192...

echahine by L2 Linker
  • 12596 Views
  • 5 replies
  • 0 Likes
  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks