This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4105 Views
  • 0 replies
  • 0 Likes

Resolved! HA1 down , suggestion welcome!

Hello everyone, I am newbies for PA-850 As we placed them into two difference Geo location (e.g DC1 and DC2) and we running A/A, cisco Nexus as corewe have separated allHA1 / mgmt / HA2 / HA2 backupin to DIFFERENCE SUBNET and broadcast domain, and we using mgmt as HA1 backupHA3 configured as FLAT vlan across both sites with no choice and the pro...

split dns issue

We do DNS configuration on GP gateway configuration>agent, for Guest point to public DNS which is 8.8.8.8 1.1.1.1 and employee point to internal dns ip. But when connect GP, both user guest and employee got default dns setting. Why guest user does not get public DNS ip? Anyone can help?

Resolved! Apple SoftwareUpdate.exe got blocked by Cortex XDR

Hello Palo Community, does anybody know why the Apple SoftwareUpdate.exe got blocked by Cortex XDR todayOr has someone else also encountered this Problem? In the Community section of VirusTotal I discoverd a comment that Palo Alto apperently changed the status at one point, yet i have some triggers with this software that came in today. https://...

Resolved! Daily URL Filtering Report within a time frame

Hello, I am trying to produce a report for our head of school accommodation that shows the URL filtering of his borders after a set time each day. Producing the list in the URL filtering tab on the Palo Alto and downloading in CSV format is straightforward, but I would like to automate this process with a daily custom report of the night before....

SPS by L1 Bithead
  • 3764 Views
  • 2 replies
  • 0 Likes

XFF IP does not show the source IPs on the monitor

Hello Guys, The X-Forwarded-For Headers option has already been enabled and it has been set to Enabled for security policy, but the information is not visible.Something else has to be enabled in the device configuration or in the load balancer?I followed this kb.https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-admin/policy/identify-users-con...

Resolved! User-ID Agent: wildcard support in ignore_user_list.txt

A customer of mine uses a mix of prefixes and suffixes for service and privileged accounts respectively, and needs to ignore these accounts to prevent incorrect mappings. This is especially true where policy applies to non-privileged groups, if a non-privileged user accesses resource with privileged account (e.g. RDP NLA) and their expected poli...

mb_equate by L3 Networker
  • 4647 Views
  • 3 replies
  • 0 Likes

How do you setup FS-ISAC STIX/TAXII feeds to minemeld?

I was following this thread here: https://live.paloaltonetworks.com/t5/minemeld-discussions/fs-isac-new-stix-taxii-feeds/td-p/334068 But nobody responded to my question so I'm starting a new thread hopefully to gain some visibility. We've upped our membership with FS-ISAC which comes with an added annual fee, so being that we are paying for t...

ksauer507 by L3 Networker
  • 6387 Views
  • 2 replies
  • 0 Likes

Auto Assistance

Hi,GuysIs there any documents about Auto Assistance ?I am working at local partner ,just want to learn more about it .

Return traffic log

Is it possible to view return traffic logs in PA. I am running a PBF for HTTP and HTTPS only, it goes through a diff interface. Sites or apps with custom ports (not 80 or 443) not working. I am trying to find the return traffic interface while PBF is in place.

ceapen01 by L2 Linker
  • 2945 Views
  • 1 replies
  • 0 Likes

Resolved! Migration of Panorama configuration

I need to migrate the configuration of a Panorama X to another Panorama Y where I need to split several devices on their own panorama (Y). The plan according to several discussions is to export the config of current panorama X, import into Panorama Y while changing IP address, hostname, etc. This is the step where I am trying to see if it can be...

bambox by L1 Bithead
  • 5975 Views
  • 3 replies
  • 0 Likes

Can a corporate network print to a remote client's printer (Remote User-to-Site VPN)?

I've connected my client pc to my corporate network via Global Protect, and my computer is able to access the resources on my corporate network side. I need to know if there's a way that my corporate network can send a print job to my client computer. More specifically, I need to be able to print forms/pdf's from my corporate network to a printe...

Jamescy by L0 Member
  • 3690 Views
  • 1 replies
  • 0 Likes

Resolved! cli command to check dos attack

we have not implemented the dos or zone protection.Is there any cli command i can use to check the dos attack? i know below for now show counter global | match dos> debug dataplane show dos classification-table> show counter global filter aspect dos> show counter global filter aspect dos delta yes

MP18 by Cyber Elite
  • 6392 Views
  • 2 replies
  • 0 Likes

Zone capacity

Hello We have PA 3060 device on 8.1 code, I know its current capacity is 40 zones. If I upgrade to 9.1 will that capacity for the zone increase? Thanks -Amin

Amin2 by L2 Linker
  • 2147 Views
  • 1 replies
  • 0 Likes

VPN Client with PANOS8

Hi!I've recently had someone complain that the native macOS/OSX VPNclient wouldn't connect to the VPN (PANOS 8.0.6). Turns out that theywere using an unsupported macOS version, and weren't using theglobalprotect client 'because it didn't work'. The official responseto them is a) get a supported version of macOS b) use theGlobalProtect client.But...

dolonipo by L0 Member
  • 2753 Views
  • 2 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks