This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 410 Views
  • 0 replies
  • 2 Likes

Help With Configure PA-220

I am trying to build firewall from scratch. Our use case is to secure 3 servers with separate DSP connected to PA-220. We do not have any managed switch or router between ISP to firewall. It is direct from modem to firewall.

 

Can anyone help with this

...

Traffic monitor incomplete

I've got a new Global Protect portal/gateway.  When I get connected to the gateway, I can see the connection via the GP monitor.  Then if I go the to traffic monitor and search the source range 192.168.203.0/24 I only get traffic from previous testin

...

danoman2 by L3 Networker
  • 2513 Views
  • 4 replies
  • 0 Likes

URL FIltering

I was curious if anyone knows why even when traffic is flagged as a threat by URL filtering there are still packets being sent and received?  

Resolved! Certificate dependancies

Hi,

 

We use a lot of certificates within our Palo Alto/Panorama setups.

 

Is there a way to get a spreadsheet/PDF etc... to tell me what though certificates are attached to providing services for etc...?

 

Is there a way to link certificates to what they

...

IPv6 and IPv4 addresses in same security rule?

is there an issue with doing this - I have a rule set to match any address except one particular IPv4 subnet (ie using the negate function) - works fine.

I added an IPv6 prefix to the rule (still negated) - now the rule negatively matches the v6 addre

...

Resolved! Renewing Certificate for GUI from External CA

We have followed the below document. After importing the newly signed certificate into the firewall it does not replace the pending csr containing the private key. PAN OS 9.1.11-h3, any one else experience this issue?

Obtain a Certificate from an Exte

...

clewis1 by L3 Networker
  • 3045 Views
  • 2 replies
  • 0 Likes

Resolved! Downgrade panorama ha managed device.

Hi,

 

I have the following situation, a HA cluster managed by panorama.  For testing purpose I would like to downgrade it to an 8.1.21 release.  Coming from 9.1.12 release.

Couple of question:

Should I always perform upgrades / downgrades from Panorama,

...

GOMEZZZ by L2 Linker
  • 2195 Views
  • 1 replies
  • 0 Likes

QoS / WRED

Hi All,

 

Just wondering, is WRED configurable on PA firewalls?

If the models matter, I'm using 3000's and 3200's.

 

Thanks!

Luke_R by L2 Linker
  • 1556 Views
  • 1 replies
  • 0 Likes

SCCM : Clients to DP communication

Following is the one of prerequisites to set up a SCCM infra, is there any existing app-id that  can be used to cover this port  requirement. Will it need an explicit rule based on port/service range only  or any changes needed in  VR (IP multicast p

...

Dip741 by L0 Member
  • 1845 Views
  • 1 replies
  • 0 Likes

Resolved! Palo Alto Packet Capture Vs Monitor Vs Session Browser

Hi for a beginner why what does the packet capture enable me to do that the Monitor and Session Browser do not ? If possible please could someone give me a scenario for packet capture that identifies a problem which the other two would not pick up -

...

  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks