General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Resolved! Extract data of all ciphers and protocols that enabled or disabled in palo alto firewalls

how can i Extract data of all ciphers and protocols that enabled or disabled in palo alto firewalls.

And How can i Ensure all weak ciphers and protocols are disabled before exposing an application to the Internet in palo alto firewalls.

Deployment job upload wildfire to <fw> failed. Device msg:'Failed to download panupv2-all-wildfire-564367-567485.

Hi,

We get these error often, 'cannot connect to server'.

There are no network connectivity issues and everytime I test get the following:

Test wildfire Public Cloud

Testing cloud server wildfire.paloaltonetworks.com ...
wildfire registration: successful

...

Resolved! Site-to-Site VPN private subnets cannot ping eachother through the tunnel

I am new to learning Palo Alto Firewalls. I have a couple of PA-8.0.0 virtual machine instances setup on my desktop with internet access through my home network on a Windows 10 host machine, for learning purposes. I configured site-to-site vpn and

...

Resolved! HA peer determined to be Active through managed devices; staying in Passive state

We have received below email alert from Secondary Panorama , what's the meaning of this critical severity event?

actionflags: 0x0
type: SYSTEM
subtype: ha
config_ver: 0
time_generated: 2021/06/04 10:22:37
high_res_timestamp: 2021-06-04T10:22:37.000+05:30
dg

...

Old Palo alto firewall || Demo PaloAlto firewall

Dear Team,

I am a big fan of PaloAlto firewall and i am working PA firewall science lase 4-5years. So i wants to create one Lab in my home and wants to share the free PA training over Youtube, already i have started the training with VM trail license

...

Integration of Palo Alto with Azure AD for authentication of users using SSO

Hi,

I have below requirement for providing access to users based upon using user-ids/AD groups in security policies.

1. These users are using Macbook and they login by using their email Ids for login into their machines.
2. Authentication of their log

...

Resolved! Maagment interface with custom port

Hi all,

Is there any way to change the management interface web access from default port(443) to custom port?

Please share your thoughts.

Resolved! File Blocking Profile - Can not block file-transfer over "Wechat-file-transfer" Application

Hi guys,

Our customer want to block file over "Wechat-file-transfer" application. I searched on Application then seen "wechat-file-transfer" on Application database. But, I can not search any "wechat..." on application field on "File Blocking Profile"

...

downloads time out

Greetings,

i built a new dmz with a short list of apps allowed in (trust) out (untrust) and am having issues with downloads initiated using http(s)

seeing the download age out. i have allowed ssl and web-browsing and a few other apps....can anybody h

...

Reporting on Coin Miners

I would like to get a view on what crypto/coin mining activity is going on inside my network but there isn't an application category that covers this - they are just classified as internet-utility and have varying other attrributes. I can't create a

...

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone,

Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June.

This event will cover the following points related to the newly unveiled Zero Trust Network Security:

Secure access to the right app

...

Can we create a user group incluing another set of mapped user group from AD?

Hi All,

We have a challenge such that, there are around 100 mapped user groups from AD and we need to add them in a single rule. Is there any way we could add those user groups to another single user group and use it in the rule?

Thanks!

Pre-defines application not working ?

Apology for asking multiple question for the past one week..

We've define a policy to allow active-directory-base application which includes most of the AD standard ports, but the traffic is not hitting the policy, eventhough the destination ports ar

...

Resolved! Service route and DHCP interface

Hello,

We have PA-220 devices that are configured with DHCP interface for Internet access. We need to change the service route config for all update-related trafic (URL, dynamic contents, EDL, ...) since default mgmt interface has no Internet access.

...

Unable to access Google Drive

Hi,

Google drive is allowed in Gsuite url category but user is able to access gmail and google calendar but when try to access Google drive and Docs and sheets,it is being blocked by firewall under storage-and-backup category.

What is the possible so

...

Discussions

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

Discover LIVEcommunity Through Our New Animated Explainer Video!

Resolved! Extract data of all ciphers and protocols that enabled or disabled in palo alto firewalls

Deployment job upload wildfire to <fw> failed. Device msg:'Failed to download panupv2-all-wildfire-564367-567485.

Resolved! Site-to-Site VPN private subnets cannot ping eachother through the tunnel

Resolved! HA peer determined to be Active through managed devices; staying in Passive state

Old Palo alto firewall || Demo PaloAlto firewall

Integration of Palo Alto with Azure AD for authentication of users using SSO

Resolved! Maagment interface with custom port

Resolved! File Blocking Profile - Can not block file-transfer over "Wechat-file-transfer" Application

downloads time out

Reporting on Coin Miners

Happening in June: The Complete Zero Trust Network Security Event

Can we create a user group incluing another set of mapped user group from AD?

Pre-defines application not working ?

Resolved! Service route and DHCP interface

Unable to access Google Drive

THREAT MAP on GUI is unable to export

GlobalProtect Machine account exists with device serial number config

Identifying Source IP Addresses for Routing Palo Alto Firewall Logs to an Azure Collector via IPSec Tunnel

BPA Tool not showing details for issues

NATing Question

Re: CLI - Basic to Advance PAN-OS 11.1

Re: flow_tcp_non_syn_drop - packet capture on this counter?

UserID periodic empty groups issue

Re: IP Wildcard Mask Address Objects

Re: Pull address object using XML API

Unlock your full community experience!

Resolved! Extract data of all ciphers and protocols that enabled or disabled in palo alto firewalls

Resolved! Site-to-Site VPN private subnets cannot ping eachother through the tunnel

Resolved! HA peer determined to be Active through managed devices; staying in Passive state

Resolved! Maagment interface with custom port

Resolved! File Blocking Profile - Can not block file-transfer over "Wechat-file-transfer" Application

Resolved! Service route and DHCP interface