This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4118 Views
  • 0 replies
  • 0 Likes

Captive portal palo alto issued with chrome

Hi allI use captive portal on palo alto just zone Lan to internet and found issued about chromeMy client have window 7,8 and palo version 8.1Test on firefox need open firefox and click to option for login to internetBut on chorme not option for click and we try to access website https but it can not redirect to webportal to loginAnyone have iss...

Migration FROM PA-850 to PA-3220

Dear:Good afternoon, what is the best migration option from a Palo Alto PA-850 to a PA-3220. Thinking for example to be able to keep the self-signed certificates in the PA-850, used for Global Protect. Based on your expertix and experience, what is the best way to approach this migration.I remain attentive, thank you very much.Best regards

Metgatz by L4 Transporter
  • 2388 Views
  • 1 replies
  • 0 Likes

Resolved! Custom URL category *.github.com not matching/working

I read some posts here about the best way to allow github to only *.github.com IPs and I can't seem to find an easy way to do it. If I do it this way: Source IP – on-prem networks Destination - Any APP ID/Service – github/ssh/ssl/web browsing URL category - Custom category for *.github.com Action - Allow That pretty much allows all traffic ...

drewdown_0-1635537126636.png
drewdown_1-1635537211464.png
drewdown by L4 Transporter
  • 10019 Views
  • 4 replies
  • 1 Likes

Commit Lock

Hey all,Has anyone found a way for a non-superuser to remove a commit lock?I'm aware the official line still seems to be only a superuser can remove the lock, and this is definitely the case in PANOS 9.0 but hoping there might be a way to have this as a role-based permission in later releases (or maybe some from Palo knows that this is actually ...

SARowe_NZ by L3 Networker
  • 2931 Views
  • 1 replies
  • 0 Likes

VM Series validation Failed

where to check to troubleshoot the VM Series issue, as we are getting errors for the VM Series Plugin validation Failed. Please suggest if there are any specific logs or packet capture we have to look into. Error : - Resource-mgr-endpoint is invaild.

VM Series Plugin.png

PA-3260 PAN OS 10.0.7 "Source User" Not Working

Hi - Trying to configure/setup source user however it is not working.I configured my 2 domain controllers under Device\User Identification and added a valid domain account ,they show as connected.All other settings are default , I am not sure what else I need to do. Can anyone help ? Regards

Scott64 by L1 Bithead
  • 1953 Views
  • 1 replies
  • 0 Likes

Cobalt Strike IPs and Application and Threat Updates

PAN provides anti-spyware signatures for Cobalt Strike Payload Traffic Detection and Cobalt Strike Beacon Command and Control Traffic Detection that are automatically downloaded to our PAN firewall. I also use the four External Dynamic Lists that PAN provides to block known bad IPs. NJCCIC and MS-ISAC sometimes send me lists of known bad IPs tha...

Resolved! How to select firewall model

We are planning to have new firewall pair at one of our branch offices. Now we need to decide which model we should buy? Could you please help to know on which parameters we should decide our approach? We also need to consider future requirements and increase in the user head counts while deciding it.

d.spider by L2 Linker
  • 8439 Views
  • 6 replies
  • 0 Likes

Resolved! Radius - Issue Invalid Username/Password

Hi Everyone, I firstly want to thank to whomever takes their time to read this post, and provide me with some further insight. To get into it. I am attempting to configure RADIUS for Admins on my VM running 10.0.7, in which is pointing towards a Windows 2016 AD in a DMZ. I have configured a service route to point RADIUS down this route. I also h...

InkedFail Auth_LI.jpg
InkedService Route RADIUS_LI.jpg
InkedRADIUS PA_LI.jpg
Auth Prof.PNG

Resolved! Issues with SSL Forward Proxy in Lab Environment

Hi! I've recently been trying to setup decryption on my PA-220 in a lab environment and have not been able to get it set up correctly so far. It is licensed, up-to-date, and currently running 8.1 The steps that I've taken so far are to setup a decryption policy (the settings of which are included above), generate a self-signed certificate, set ...

decryptionpolicy001.png
decryptionpolicy002.png
decryptionpolicy003.png
decryptionpolicy004.png
benball by L0 Member
  • 3859 Views
  • 2 replies
  • 0 Likes

Secure connection for firewall web GUI

Hello,I want to make a secure connection for the firewall GUI access. therefore I perform the below task:- I imported the wildcard certificate in the firewall and the same certificate attached in SSL/TLS profile ( This is 3rd party certificate get by DigiCert).Then the SSL/TLS profile is configured for management settings.for troubleshooting pur...

Jafar_Hussain_0-1635421220462.png

Session Agged out in logs

Hi Team, need your support on my issue aged out and incomplet application for port 1433. However, the policy is allow. Need how to fix this.. Same subnet other two IPs working find ,But one of the IP is agged out

Resolved! PAN URL DB not getting update.

Hi Team, I have 3 firewalls in my different loctions, All 2 firewall URL Update version is up to date. Only one firewall is a lower version. Also, I identified lower version firewall having a different update server when I checked the show url-cloud-info command. lower version update cloud server is: pdx1prod.urlcloud.paloaltonetworks.comThe hi...

VishnuPS by L3 Networker
  • 48294 Views
  • 20 replies
  • 0 Likes

Resolved! End-of-Life Date 8.0 - October 31, 2019

Hi, I found, what End-of-Life Date for PAN-OS 8.0 is October 31, 2019https://www.paloaltonetworks.com/services/support/end-of-life-announcements/end-of-life-summary We are using version 8.0.13 with active subscriptions.1. Will we receive updates (Antivirus, Threat Prevention, PAN-DB URL Filtering) after October 31. How long? Or do we urgently ne...

aaobuhov by L2 Linker
  • 9337 Views
  • 5 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks