This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4126 Views
  • 0 replies
  • 0 Likes

Free licenses

Hello,I wanted to deploy a virtual test environment with panorama and a cluster.Does anyone know if it is possible to get trial licenses for a few days to be able to include devices in panorama?Regards

Alpalo by L4 Transporter
  • 4330 Views
  • 2 replies
  • 0 Likes

PA-220 /PAN OS 10

Does anyone know if the these pa-220 issues with pan os 10.x are planned to be addressed?Upgrading a PA-220 firewall takes up to an hour or more.PA-220 firewalls are experiencing slower web interface and CLI performance times. Also, is the Palo recommendation to keep PA-220's on 9.x? I've been holding off going to 10.x for all my models due to ...

deviceconfig -> setting -> session -> dhcp-bcast-session-on unexpected here

In November we upgrade to 10.1.3 and this error could not get resolved with TAC so we reverted back. We just upgraded to 10.1.4 and we are getting the same errors as before: deviceconfig -> setting -> session -> dhcp-bcast-session-on unexpected heredeviceconfig -> setting -> session is invalid From what we have read dhcp-bcast-ses...

URL blocking Web Advertisements with exceptions?

When i set our URL filter to block category 'web advertisements' it works as expected. However, it also blocks many of the results of Google and Bing searches. I understand that is because the results in question are web advertisements, strictly speaking. Ideally i'd like to block inline advertisements whilst allowing results from Google/Bing se...

Internal Host detection - Needed refresh connections in some devices

Hi, We enabled "Host internal detection" because user in company complanining about GP was taking the cursor. After configurin "Internal host detection" the GP stop taking the cursor but there are some users which its necessary to "Refresh connection" in GP to be efective. Any idea? why some users can need to "refresh connection" in GP?

BigPalo by L4 Transporter
  • 2649 Views
  • 3 replies
  • 0 Likes

Resolved! Log quota utilization

Dear All, We have deployed a PA3220 firewall. Please let me know a command that I can use to check how much utilized from allocated quota for traffic log and I know I can use >show system logdb-quota to check retention date. I am looking a for a command similar to this that gives how much have been used from allocated quota. I would really ap...

Resolved! CLI to create Address Object and Address Group

I need to create 800 IP address and Address group into Panorama. May I know what is the CLI command able to help me to do it ? I have tried below command but return as invalid. set device-group D-DMZ address H-xx.xx.xx.xx ip-netmask xx.xx.xx.xxUnknown command: set #CLI Panorama

JiaXiang by L4 Transporter
  • 8886 Views
  • 2 replies
  • 0 Likes

TS Agent is not working

I have installed TS Agent v10.0.0 software (x64 bit) on a Windows server in a Citrix environment. I have also configured on the Firewall the IP address of the TS Agent Server, I have allowed the firewall policies to grant access from Firewall to TS Agent server, and I can see the traffic is allowed. However, the TS Agent server is not connected...

njideobi01_0-1643791358353.png
njideobi01_1-1643791646337.png

PANOS 10.1.2 TACACS stops responding - needed reboot

I have an issue I was hoping to get some feedback on. I manage 27 different Palos and also Panorama. I have one FW that stops responding to the 2FA setup with TACACS+. All the devices are the same configs and all running 10.1.2 code. A simple reboot solves this (Band-Aid). I am curious if anyone else has seen this behavior?

mscaggs by L0 Member
  • 2122 Views
  • 1 replies
  • 0 Likes

Palo Alto admin UI single sign on with Okta

Configured the Panorama SAML authentication for Admin UI SSO integration with Okta.I followed the Okta/Palo Alto single sign on setup instruction. Here SP(Palo Alto) will initiate the SSO and Okta will acts as an IDP.https://saml-doc.okta.com/SAML_Docs/How-to-Configure-SAML-2.0-for-Palo-Alto-Networks-Admin-UI.html?baseAdminUrl=https://gpmedicare...

Resolved! Adobe cloud whitelisting

I found some docs on whitelisting for adobe cloud which could be handy: Includes a whitelist: https://helpx.adobe.com/content/dam/help/attachments/Creative_Cloud_for_enterprise_Service_Endpoints.pdf Background http://wwwimages.adobe.com/content/dam/Adobe/en/devnet/creativesuite/pdfs/ControllingSvcAccess.pdf It could be handy to have this...

chirss by L3 Networker
  • 16556 Views
  • 4 replies
  • 1 Likes

Nat out to internet with overlapping subnets in two separate virtual routers

Below is an example diagram of my scenario. We have a subnet that is part of our production network, and then we have the same overlapping subnet for testing and disaster recovery which exists in a separate virtual router. I've oversimplified the drawing, so hopefully this makes sense. For testing purposes, the overlapping subnet in virtual r...

Screen Shot 2022-02-02 at 3.36.37 PM.png
buck1 by L1 Bithead
  • 6400 Views
  • 5 replies
  • 0 Likes
  • 24336 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks