This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4229 Views
  • 0 replies
  • 0 Likes

Python: panos opstate

I'm having tremendous success automating security policy updates with the panos Python library, but I'm currently stuck on obtaining the hit counts of rules programmatically. I'm able to access all attributes of the SecurityRule objects, but the opstate hit_count attributes all come back as None. Relevant code; if type(rule) is SecurityRule...

dawonk by L0 Member
  • 1001 Views
  • 1 replies
  • 0 Likes

Configure SAML for GloblaProtect and use groups to filter

Hi, I would like to configure SAML for my GP authentication and I would also like to be able to assign IPs by user groups and configure rules for these remote users by user groups. Does anyone know if this is possible? how can match users received from SAML with LDAP mapping?

BigPalo by L4 Transporter
  • 1569 Views
  • 3 replies
  • 0 Likes

ACC not displaying

PANOS version: 11.0.3-h3 We are experiencing a recurring issue with the Application Command Center (ACC) on our Palo Alto firewall. Every 2–3 days, the ACC becomes unresponsive or stops updating properly. The only way to restore functionality is by manually executing the following commands: 1. set logrcvr offline-logpurger percentage-threshold...

Action of allow  but of Type policy deny

Hi panos 11.2: I am using SSL Inspection for all inbound traffic on my web sites. Certain TLS connections with TLS inspection enabled did not work. Looking at the traffic log the connections shows an Action of “allow” but of Type “deny” with Session End Reason of “policy-deny”. No decryption logs issues (even the log flag for decryption prof...

chens by L3 Networker
  • 6017 Views
  • 13 replies
  • 0 Likes

I cannot move the vlan interface IP to new vlan 10 interface

Hi, can anyone help me? I keep receiving this error even after I removed or changed the IP on the VLAN interface. I also tried pushing VLAN interface 10 (without an IP) first along with the subinterface. It was successful, but when I try to deploy the IP change, the error still occurs. I am deploying from Panorama. In router default: address 192...

Query on URL category change

We submitted the request to Palo Alto to have the URL category and risk changed and that was recategorized to 'low-risk' now. My question is will Palo Alto might identify the site as malicious again based on our activity in the future and change the category?

Drawbacks enabling Jumbo Frames (PA-5400 series)

Hi Community,we are thinking about enabling Jumbo frames globally on PA-5430 firewall that is connected to Nexus and Catalyst.- Nexus for high performance & storage with MTU 9216.- Catalyst for all the standard stuff with MTU 1500.Are there any limitations, drawbacks, concerns by enabling Jumbo frames instead of using standard MTU 1500 (and ...

Resolved! Python SDK

Hi All,I am trying to explore Python SDK related to panorama /pan os upgrade. Any suggestion for starting point ?

Resolved! Can PA-1410 run on PAN-OS 10.2.x?

All our existing PA-5220, 850, 440, and PANO are running 10.2.x. Can the PA-1410 be downgraded to that version as well? Out of the box it came with 11.1.4-h7.

Hue by L0 Member
  • 1195 Views
  • 2 replies
  • 0 Likes

Resolved! Site-to-Site IP Sec - PAN 220 [Static IP] to CradlePoint [Dynamic IP]

Does anyone have experience setting up an site-to-site IP Sec tunnel between a PAN firewall with a static IP address and a CradlePoint with a dynamic IP address? I am trying to determine if there's a way to setup the IP Sec tunnel between the 2 endpoints without having to pay a 3rd party for DDNS service.I tried setting the firewall peering to ...

Show Hard Drive information

For an audit, I need to know the Make/Model/Serial Number of the internal HDD. I cant seem to locate the appropriate show command on a PAN device...any ideas?Thanks much

FAIL TO PARSE SECURITY POLICIE

Hi guys I`m having a big problemWhen i try to commit my security policies show this erro.Details:· Error: Failed to find address '10.2.69.100 '· Error: Unknown address '10.2.69.100 '· Error: Failed to parse security policy· (Module: device)· Commit failedSomebody help please!

Thiago by L3 Networker
  • 4700 Views
  • 3 replies
  • 0 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks