This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4222 Views
  • 0 replies
  • 0 Likes

Deployment job upload wildfire to <fw> failed. Device msg:'Failed to download panupv2-all-wildfire-564367-567485.

Hi,We get these error often, 'cannot connect to server'.There are no network connectivity issues and everytime I test get the following: Test wildfire Public CloudTesting cloud server wildfire.paloaltonetworks.com ...wildfire registration: successfuldownload server list: successfulselect the best server: panos.wildfire.paloaltonetworks.com Someo...

Resolved! Site-to-Site VPN private subnets cannot ping eachother through the tunnel

I am new to learning Palo Alto Firewalls. I have a couple of PA-8.0.0 virtual machine instances setup on my desktop with internet access through my home network on a Windows 10 host machine, for learning purposes. I configured site-to-site vpn and can get the tunnel up, both phase1 and phase2. The firewalls can ping eachother’s external IP ad...

Resolved! HA peer determined to be Active through managed devices; staying in Passive state

We have received below email alert from Secondary Panorama , what's the meaning of this critical severity event?actionflags: 0x0type: SYSTEMsubtype: haconfig_ver: 0time_generated: 2021/06/04 10:22:37high_res_timestamp: 2021-06-04T10:22:37.000+05:30dg_hier_level_1: 0dg_hier_level_2: 0dg_hier_level_3: 0dg_hier_level_4: 0vsys_name:device_name: PANO...

Deepak25 by L3 Networker
  • 3465 Views
  • 1 replies
  • 1 Likes

Old Palo alto firewall || Demo PaloAlto firewall

Dear Team,I am a big fan of PaloAlto firewall and i am working PA firewall science lase 4-5years. So i wants to create one Lab in my home and wants to share the free PA training over Youtube, already i have started the training with VM trail license but its consuming huge resources in my laptop. So, can any one help me to give one retired PA sm...

Integration of Palo Alto with Azure AD for authentication of users using SSO

Hi, I have below requirement for providing access to users based upon using user-ids/AD groups in security policies. 1. These users are using Macbook and they login by using their email Ids for login into their machines.2. Authentication of their login via email Ids is taking place via Azure AD not via On-premises AD. Traffic for all these users...

Resolved! File Blocking Profile - Can not block file-transfer over "Wechat-file-transfer" Application

Hi guys,Our customer want to block file over "Wechat-file-transfer" application. I searched on Application then seen "wechat-file-transfer" on Application database. But, I can not search any "wechat..." on application field on "File Blocking Profile" as pics: Can not search "wechat-file-transfer" when create File Blocking profile: How to reso...

ThomasX_0-1622777792737.png
ThomasX_1-1622777812206.png
ThomasX by L1 Bithead
  • 6811 Views
  • 2 replies
  • 0 Likes

downloads time out

Greetings, i built a new dmz with a short list of apps allowed in (trust) out (untrust) and am having issues with downloads initiated using http(s)seeing the download age out. i have allowed ssl and web-browsing and a few other apps....can anybody help with what i have missed? thanks!-tom

tcsmithh by L1 Bithead
  • 2704 Views
  • 3 replies
  • 0 Likes

Reporting on Coin Miners

I would like to get a view on what crypto/coin mining activity is going on inside my network but there isn't an application category that covers this - they are just classified as internet-utility and have varying other attrributes. I can't create an application filter that picks them out either, at least not without including google-base or ot...

djr by L4 Transporter
  • 2205 Views
  • 1 replies
  • 0 Likes

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone, Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June. This event will cover the following points related to the newly unveiled Zero Trust Network Security: Secure access to the right applications: The first integrated CASB Secure access for the right users: by using the Cloud Ident...

seattle-launch-live-community-r2b-1100x120.jpg
jdelio by L7 Applicator
  • 2973 Views
  • 1 replies
  • 4 Likes

Pre-defines application not working ?

Apology for asking multiple question for the past one week.. We've define a policy to allow active-directory-base application which includes most of the AD standard ports, but the traffic is not hitting the policy, eventhough the destination ports are a match. Any reason why ? As a workaround for now, we added new custom service for the policy ...

annielee by L2 Linker
  • 2181 Views
  • 1 replies
  • 0 Likes

Resolved! Service route and DHCP interface

Hello, We have PA-220 devices that are configured with DHCP interface for Internet access. We need to change the service route config for all update-related trafic (URL, dynamic contents, EDL, ...) since default mgmt interface has no Internet access. However I cannot chose the corresponding interface from the drop-down list. Indeed, the only sel...

Unable to access Google Drive

Hi, Google drive is allowed in Gsuite url category but user is able to access gmail and google calendar but when try to access Google drive and Docs and sheets,it is being blocked by firewall under storage-and-backup category. What is the possible solution for this,Please suggest.

User-ID rule to bypass HIP check not matching.

Hi all, I have a rule to allow certain Global Protect users DNS and RDP traffic by matching the user-id. However, even though it looks like the traffic should match when I view the traffic log it's not?! For some users the rule works fine but others it doesn't match and I can't work it out. Any help would be greatly appreciated 🙂 Kevin.

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks