This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4224 Views
  • 0 replies
  • 0 Likes

Resolved! Updating the HA configuration in large hops.

Hello community I am upgrading a PANOS 8.0.7 to version 9.1.14-h1 I would like to know if in the transit versions, you download and install only the base 9.0.0.0 or is recommended to download the base 9.0.0 and install the recommended 9.0.16-h2for example:Go from 8.1.x to 9.0.0 (transit version) and continue from 9.0.0 to 9.1.x.orGo from 8.1...

PAN-DB is not connect to cloud

DB Cloud is not connected as i have 9.0.3h3 version. And this command is also not running. Please suggest request url-filtering download paloaltonetworks region <region_name>

Joshan_Lakhani_0-1586860186931.png

Command user group name not working

Hi, We just check that the command: show user group name 'cn=......' has this output: user group xxxxx does not exist or does not have members. All config is OK. If we run "show user group list", i can see al the groups, but filtering by one of them shows:user group xxxxx does not exist or does not have members show user ip-user-mapping all --...

BigPalo by L4 Transporter
  • 10389 Views
  • 7 replies
  • 1 Likes

Issue with VXLAN traffic passing through the firewall

Hi Team, We have an SDWAN box placed behind the firewall and the SD_WAN box need to communicate with the controllers which is located on the internet. The topology is given below:SD_WAN Box<--->F/W LAN interface<--->F/W ISP interface <--> Internet <---->Controllers. The SD_WAN Box is trying to establish VXLAN connectivit...

tamilvanan_0-1653585569659.png

Resolved! Sinkhole vs whitelising url

Does the sinkhole take precedence over whitelisting? We whitelisted a url and are sinkholing parked categories. I can request to have the category changed, but was not sure which took precedence.

gfleming by L0 Member
  • 3853 Views
  • 2 replies
  • 0 Likes

Resolved! Always on GP Using Local CA for Prelogin and SAML Auth

I am building and always on VPN with Prelogin (both windows and MAC) and SAML authentication. Everything works as expected with PC computers. With the MAC computers, we see the Prelogin connection, Then it is supposed to switch to user authentication via SAML. On the Mac computers the prelogin works but then it never switches to the user login a...

Carleton by L3 Networker
  • 2978 Views
  • 1 replies
  • 0 Likes

office365 uploading App-ID not recognized error

Dear Team, There is a symptom that the office365 application is not recognized correctly. For example, if you connect to the office WEB (office.com) and create powerpoint and word documents, they are recognized as 'ms-powerpoint-online' and 'ms-sharepoint-online'. I think that app should be recognized as 'ms-powerpoint-online-uploading' or...

PA in Azure intermittent connection

Hi, Newbie here for Palo Alto and thanks in advance for any help/comments. We have a customer who has a PA-220 on-prem for their internet and PA in Azure for their cloud app server. Internet is working fine in their on-prem and has a Site-to-Site vpn to their PA Azure. Somehow their connection to Azure was intermittent, at first we thought it ...

Resolved! Web interface not working

Hi About 2-3 month ago, my ability to edit tags for ip addresses or any object doesn't work. the tag field compacts to 0pixel height ! I have attached a screen shot you can see the item has tags, but when you open it up the tag field is collapsed with no way to open it ! So edge / chrome / brave all fail . Back to firefox Please note you ar...

Resolved! PAN-DB URL Categorization - Server Error (500)

Hi, I an trying to make a change request for a URL on the support page.I can fill in all fields, but when I press send, a server error (500 ) is shown. https://urlfiltering.paloaltonetworks.com/ Am I doing something wrong?This has worked before. best regards Sven

SvenM by L0 Member
  • 4317 Views
  • 5 replies
  • 0 Likes

Resolved! Web-gui access with no secure certificate.

I access via GUI from Chrome and observe that the connection is not secure.I created the certificate for the firewall, but Chrome keeps saying that my connection is not secure.How can I solve this problem if the AC I have is internal to the company?Is there any way to generate certificates with AES-GCM?in chrome, the following legend appears to me.

image005.png
image002.png
image006.png
image007.png
SaulGlz by L1 Bithead
  • 20508 Views
  • 8 replies
  • 0 Likes

Firewall idmgr High Availability State Showing difference

I have configure a RMA replacement HA device by following below guide How to Configure a High Availability Replacement Device - Knowledge Base - Palo Alto Networks I follow until step 10 need to use below command to check the state debug device-server dump idmgr high-availability state Result showing difference. I also tried to reboot and c...

JiaXiang_0-1659429368761.png
JiaXiang by L4 Transporter
  • 3679 Views
  • 3 replies
  • 0 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks