This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1886 Views
  • 0 replies
  • 0 Likes

Resolved! How to import Address Objects in CSV to PA Firewall

Dear all,

 

Can some one guide me on how I can import IP address in bulk to PA FW? These days I am getting a huge number of IPs and URLs which needs to be blocked on the Firewall end. For the URLs we can do the import. But how to do the same for IPs?

 

I

...

PAN-OS 10.2 : filter incoming OSPF routes

Hi,

 

We are trying to setup OSPFv2 between a PA-5220 in 10.2 and a Cisco ACI Fabric with "Advanced Routing" enabled.

For now, we are able to advertise routes to our ACI Fabric, we can filter outgoing advertisement but we are unable to filter incoming r

...

EmilienRichard_1-1652344524666.png
EmilienRichard_3-1652344694867.png
EmilienRichard_4-1652344728564.png

Upgrade PA stuck

Hi All,

 

We try to upgrade PA5220 and it has been stuck quite long time. 

We tried to upgrade to 10.1.5h2 from 10.1.0.

 

Any possible reason might cause of it? 

403 Forbidden

I've run into a strange issue with the following website  https://dvir-prod.aws.drivecam.net. When Users attempt to access it they are getting a 403 Forbidden. I'm not seeing an drops in the logs, and the packet captures don't point to anything eithe

...

Remove a site from from Palo Alto's blacklist

My client's site, a Canadian site that prepares school supply kits, edupac.ca was hacked badly a few months ago. But we manually removed all malware files. We abandoned the original infected file base, restoring from backups, and now the code base is

...

Resolved! Palo Alto rejecting one route

I'm having trouble seeing one route in my RIB and FIB. My BGP peer shows it is advertising the route to the Palo Alto, however I see the following when showing the peer at the PAN:

sstadmin@200-PFW-01> show routing protocol bgp peer peer-name DMVPN-Ro

...

Resolved! Security policies not matching traffic

Hello! I am having quite a few strange behaviors from the Palo Alto firewalls. I have a rule for an entire subnet (10.209.82.0/24) to be allowed from inside to outside zones via any port to any IP address yet there is still somehow traffic being deni

...

Resolved! Possiblility of getting locked out of web interface?

Currently, I'm using a local administrator account on the firewall (no Panorama), but I want to configure authentication between it and active directory. I went through Palo's guide for setting up Kerberos (I read that this is preferred over LDAP due

...

JanayE by L0 Member
  • 2900 Views
  • 1 replies
  • 0 Likes

An active Wildfire license is required for this feature

Hi everyone!

Every 15 minutes i get an email notification: opaque: Retrieving Content 'WildFire' info failed with error 'An active Wildfire license is required for this feature' but the license is valid till October 2022. 

Could someone help me with th

...

Resolved! Minemeld static url/ipv4/md5 list

Hi everyone,

we have installed minemeld in our facility and it's great, but we are having trouble implementing a solution that takes lists internally, our current goal is to update the list manually based on the ipv4 / url we get from our security tea

...

porq91 by L1 Bithead
  • 4430 Views
  • 6 replies
  • 0 Likes

Resolved! Expedition import of Cisco ASA

Hi, new to Expedition and have just installed (Ubunto 20.4 and latest Expedition packages) . Imported a running config from a Cisco ASA 5525X without issue but when I move away from the dashboard to look at the 400+ address objects I see no objects a

...

AndyH64_1-1653868101698.png
AndyH64_2-1653868171663.png
AndyH64 by L0 Member
  • 2365 Views
  • 1 replies
  • 0 Likes
  • 24256 Posts
  • 117 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks