General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone, Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June. This event will cover the following points related to the newly unveiled Zero Trust Network Security: Secure access to the right applicat...

jdelio by Community Team Member
  • 1 replies

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 41 replies

commit status warning part II

Here is another interesting commit status dependency warning "Rule 14 application dependency warning: Application ms-update requires ssl be allowed but ssl is denied in rule 15. " Why is an application in the rule above getting on a rule below it?

jdprovine by L4 Transporter
  • 5 replies

IPsec Vpn tunnel was down

PA-850- 8.0.6-h3 Customer complains IPsec was down how can i check it on gui sytem logs or via cli. Ihave checked the Moniter>system logs and couldnt find any logs related to "tunnel-status-down"Thanks,Ranji

Resolved! virutal router and ipsec settings for vsys admin

Dear All, We created a seprate vsys and assigned l3 interfaces and virtual router for a vsys. But vsys admin which is assigned for it is unable to view virutal router tabs and ipsec configuration tabs. We want this vsys should be handled completely s...

Understaanding MSSP

Hello brothers, Plz i really need your help, we have a big project with a big Service Provider, it's the MSSP, i know the concept but technically i don't know anything.As i understood, the MSSP is a security as a service, the Service Provider host th...

WildFire API with WebRequest

Hi Everyone, I am trying to use WebRequest (microsoft .net ) class to get report about a sample via WildFire API. The only thing I got is an error "(420) insufficient arguments". In my posted data, the apikey, hash and format are all included. Is the...

Hub and Spoke IPsec VPN design with Dynamic Routing

Looking to properly setup Dynamic Routing over a hub and spoke IPsec VPN network. The hub will have 40-50 spokes. The Hub is running a PA-820. Spokes will be PA-220. Voice and data traffic. There will be minimal traffic between spokes. My questions a...

Resolved! Slow o365 downloads

Just deployed HA 3020s in APAC and users are complaining that downloading office 2016 is painful, slow and eventually times out. Having a hard time figuring out why though, logs in PA don't show anything dropping or getting denied and data filtering ...

drewdown by L4 Transporter
  • 8 replies

Resolved! SFP Compatibility PA3050

Hi We have a PA3050, and we have 4 SFP like this: SFP HP X121 1G SPF LC LX So we would like to use 2 SFP to do a aggreagete link in PA. Is this SFP compatible with PA3050? thanks a lot

Resolved! General Interface status?

Hi folks, We have a PA-200 over in London (on the recall list) that get complaints that the internet has intermittent connectivity issues.Everytime I login to it, the interface (1/1) is up, green, and no indication of a problem. Other than contacting...

OMatlock by L4 Transporter
  • 4 replies

Resolved! External Dynamic List: add manual entries?

I'm using MineMeld to scrape Microsoft's website to grab the list of Office 365 related URLs and IP addresses. We've noticed that this feeds in *, but not This results in the common Office 365 Outlook Web App URL https://outl...

Layer 1+2 decisions for PA820 HA pair

This is my first time having the luxury of two ISP's and redundancy in all hardware - I was tryingt to research best practice for wiring the PA pair as active/passive router/nat - I found some mentioning of using port channels to achieve local reduna...

stoker by L1 Bithead
  • 6 replies

Very Slow Commits

Anyone who's used Palo's since the early days may roll their eyes at this question..! We have a bunch of 3020's and one can take an age to perform commits; for example this morning we performed 4 - the first 2 took <30 seconds, the 3rd took >10 minut...

apackard by L4 Transporter
  • 3 replies

User activity report

Hi Team, Customer trying to utilize Palo Alto to generate user activity reports that show detailed web browsing. I understand from other articles (

sprabhu by L3 Networker
  • 1 replies

Global Protect IPSec/SSL

Hello, If global protect fails to establish a IPSec tunnel and uses SSL instead, does it attempt to switch tunnel types if it sees it can do a IPSec tunnel or will it keep it's current tunnel type until the GP client get's refreshed and sees what con...