This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4446 Views
  • 0 replies
  • 0 Likes

Resolved! ant to check logging rate and disk-utilization used in M200 for log types

We have configured collector group config with local log collector. All firewall's forwarding logs to collector, we can see log incoming rate in panorama for traffic , threat . But for URL , Wildfire and other types of logs logging rate is not showing. Also want to check disk-utilized by each logs type in collector. As we can see overall details...

Deepak25_1-1628884239840.png
Deepak25_0-1628884038538.png
Deepak25 by L3 Networker
  • 4332 Views
  • 3 replies
  • 0 Likes

Content updates compatibility with firmware

Hello All, PA 850 has been delivered at my office with firmware version 9.1.4 and my company has also purchased Threat Prevention, PAN DB Url Filtering & Wildfire Subscription license. Basically i need to upgrade my device to latest firmware of 10.0.x maintenance version with content updates compatible to this. I have checked many sites on g...

Problem with CDN and AVG Update

Hi I have an issue about AVG and CDN. I used PA 220 with Details : Software Version 10.0.6 Application Version 8435-6846 (07/27/21) Threat Version 8435-6846 (07/27/21) Antivirus Version 3791-4302 (07/28/21) Network Layer 3 1. AVG Update Regarding this issue, when I created specific rule with source IP address my workstation for AVG...

Minemeld automatic updates required for future Azure Public IP changes and additions

We have a JSON file from the URL below which is updated weekly: https://www.microsoft.com/en-us/download/confirmation.aspx?id=56519 Ideally, we would like to pull a list of IPV4 IP addresses out from the section "name": "AzureIoTHub", which needs to be converted into EDL format by MineMeld. The list of IPs can then be referenced in the secur...

Yongjie by L0 Member
  • 3048 Views
  • 1 replies
  • 2 Likes

Network Packet Broker

Can network packet broker feature (in PAN-OS 10.1) be used only to mirror some traffic and not expect any return traffic? Like port mirror on switch.

santonic by L6 Presenter
  • 4894 Views
  • 4 replies
  • 0 Likes

questions about Palo Alto Networks

questions about palo alto XDR1.what are the Deployment models in palo alto2. the Modularity of palo alto3. Scope of analysis (types of threats) supported by palo alto 4. Depth of analysis (network layers, application support) supported by palo alto

U-NAT Double NAT - DNAT

Good morning, first of all thank you very much for your support.I have the following case scenario:FQDN: Dyndns ( paloalto01xxxalias.dynalias.net )Modem/router/ADSL dynamic IP PublicModem/router/ADSL LAN IP 192.160.1.254Modem/router/ADSL NAT1-1 to Palo Alto Wan External InterfacePalo Alto Wan Interface 192.168.1.74 Gateway: 192.168.1.254Palo Alt...

Metgatz by L4 Transporter
  • 4642 Views
  • 1 replies
  • 0 Likes

Accessing a specific website triggering Spyware THREAT signatures

Accessing following website is generating Spyware THREAT signatures. Does this means website is compromised and access should be blocked? Website: www[.]51qiti.comwww.51qiti[.]com/faq/Faq1217.htm Triggered signatures:Suspicious PHP Command and Control Traffic Detection(85633)Steganographic Webshell File Detection(85633)

Tanmoy by L0 Member
  • 2925 Views
  • 1 replies
  • 0 Likes

How are unused objects calculated

I couldn't find a definitive answer to a question regarding the discovery of unused address objects found by Expedition. According to the manuals, unused address objects are those not referenced in a security or nat rule. However, an address object may be contained within an address group object and that group referenced in a security rule. B...

Import/export settings

Hi everyone there is an export to csv/pdf option for rules/objects. is there an import button ? I would like to export these setting to another firewall surely I don't have to mess around in the CLI for this ? if it can read from the config location it can write to it surely ?

BPSoftware_1-1628736372029.png

Login issue for TACACS user in Palo Alto NGFW

We are not able to login into Palo Alto via TACACS user.PA NGFW is asking for reset password before login.We are not able to reset password.We have reset password complexity by login with another local user.We have not assigned any admin roles for TACACS user on firewall.So, how to mitigate the issue, if PA NGFW is asking to reset password.

Resolved! DSL PPoE IPv6

I use a PA-220 with PANOS 10.0.4. At the location the internet provider arrives with DSL (FTTH) where the modem is configured in bridge mode. The only option option available is using PPoE. Provider sends both a IPv4 and IPv6 addresses.On cheap home routers it is possible to use both IPv4 and IPv6.On the PA-220 IPv4 works just fine. But IPv6 is ...

fabeele by L1 Bithead
  • 3486 Views
  • 2 replies
  • 0 Likes

Resolved! SNMP monitore system message critical

I would like to know if is possible some OID MIBs palo alto send me a message that have critical, high or medium severity.Whem i filtering messages in Monitor>system like a "critical" a see some messages like this and I want receive some alert in my Zabbix with this alarms.So, someone know if via snmp it is possible ?

felcor by L0 Member
  • 3537 Views
  • 1 replies
  • 0 Likes

Azure VM cannot access the Internet

Hi there, We have deployed Hub and Spoke technology in Azure. All VM traffic is going through the FW. Settings of Spoke VM is same as Hub VM. NSG set to allow all traffic. FW is configured with 3 VR static routes (one route to the internet, one from Hub to Trusted Interface of PA and another route from Spoke to Trusted interface of PA), SNAT and...

  • 24375 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks