This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4239 Views
  • 0 replies
  • 0 Likes

Cloud NGFW: Mandatory Panorama Upgrade to 11.2.7-h4 or higher for managing Cloud NGFW Firewalls.

Mandatory Panorama Upgrade to 11.2.7-h4 or higher for managing Cloud NGFW Firewalls Symptom Panorama may see issues managing Cloud NGFW for AWS and Azure Firewall Resources if not upgraded to version 11.2.7-h4 or later by April 07, 2026. For Cloud NGFW for AWS, Panorama Managed Firewall Resources may see issues if Panorama AWS Plugin is not u...

EDL Capacity Reached but Lists Show Empty / Default Entry (0.0.0.0/32) – Panorama Multi-VSYS Setup Post:

Hi Everyone, I am currently facing an issue with External Dynamic Lists (EDLs) in a Panorama-managed multi-vsys firewall setup and would appreciate your guidance. Scenario: EDLs are configured on Panorama and pushed to a multi-vsys managed firewall. The EDL source URLs are reachable, and the .txt files contain valid IP entries. The EDLs are cor...

A.AlHafi by L1 Bithead
  • 693 Views
  • 1 replies
  • 0 Likes

Global Protect application blank screen

Hello Members, Can anyone help me to solve the global protect blank screen issue on my PC, as for others it normally works fine. I am using Windows 11 and I have already removed and re-installed the GP App but still it shows a blank screen and I am not getting the login page to enter credentials and login to the GP VPN. Thanks in advance.

SamiPTfA by L1 Bithead
  • 51506 Views
  • 31 replies
  • 0 Likes

Internal error during selective push config generation

We are currently seeing the following message when issuing a commit & push from Panorama 'Internal error during selective push config generation'. Panorama has recently been upgraded to 11.2.11. Another LiveCommunity post describes a similar error message appearing in 10.2 but it is not quite the same. - https://live.paloaltonetworks.co...

LastPushDetails.png

PA1420 HA Mode stucks in Initial (HA Initializing) mode for too long

HI All, We have an Active Passive PA-1420 which is connected together via H1-A and H1-B together. But when we restart the nodes or either of the nodes, the Passive PA stucks in Initial (HA Initializing) mode for too long. The last time i checked We restarted the devices at 12:25:00 and I last time checked 1:00:00 it was still in the same m...

Anydesk issue.

Hi everyone!I have some issues with anydesk application. It has ssl issue because of decryption, I think.I've added *.anydesk.com ind 'SSL decryption exclusion', but it didn't worked.Maybe some of you have faced such kind of issue?Thanks in advance!

anydesk.jpg

Resolved! Foward Trust Cert and MacBook Pro

I have a problem with my PAN generated FTC when used by MacBook Pro. My PANOS is 11.2.10-h3 and the test MBP is Sonoma 14.8.4. The FTC is loaded on the System Key Chain and is set to "Always Trust". The x509 basic constraints CA is TRUE as inspected on the MBP. Yet when I browse a site with a decryption policy, the resulting cert from the FT...

Resolved! Change to Applipedia

I discovered that the veeam app in applipedia does not cover port 6173 (used for guest interaction from veeam with a vm). Is there a possiblity to inform palo alto via a button / link or anything else in applipedia or somewhere else to correct this app

MikeHinz by L1 Bithead
  • 1113 Views
  • 2 replies
  • 0 Likes

This Mac is owned by Palo Alto Network ( PANDA ) ?

Hi, Ive purchased a 2nd hand macbook pro ( 2024 model ) literally just a few hrs ago, now from Facebook Marketplace, and upon trying to set it up - it takes me to a Recovery screen. I then try to Install new MacOS & it comes up with 'this device is owned by Palo Alto Networks' Im not gunna act smart, but i have no idea wtf that actually mea...

Resolved! SSL Connection Error During Panorama-Orchestrated HA Upgrade

Hi all, First time posting, so bear with me. We manage fairly large fleets of devices across multiple clients, so the new HA upgrade orchestration from Panorama looked like a big time-saver. We decided to test it with one client but ran into the issue shown in the screenshot: "Download error: SSL connection error". Has anyone encountered this — ...

return traffic being dropped, not being sent through the vpn tunnel

issue: 1 server behind PA being accessed through 2 different tunnels tunnel 1 = working tunnel 2 = incoming traffic working, the return traffic is being grabbed by interzone-default = deny, and on the PA seen as a new session being initiated, for which there is ofc no security rule in place to allow anyone with an idea why the return traffic ...

20f2c37f-cc78-4da5-bea8-6c2fc3fb4fe3.png

Resolved! Static Port Address Translation question

This configuration issue seems like it should be very easy to figure, but I have not performed this in the past and I cannot seem to figure it out. We will have multiple devices on the trusted network, and I need to NAT them all to a single Public IP address using a different port number for each private device. All devices will utilize port 44...

JohnSturk_0-1695407774096.png
JohnSturk_1-1695407912202.png
  • 24358 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks