This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4464 Views
  • 0 replies
  • 0 Likes

Resolved! Action on a vulnerabilty found in a SMTP flow

Hello, How to configure the PA firewall to return a SMTP 541 when vulnerability is seen in a SMTP flow ? I have managed to do it with the AV protection but not with the vulnerability protection. Cedric

Cedricd by L1 Bithead
  • 9057 Views
  • 8 replies
  • 0 Likes

Resubmit Host Profile required intermittently to restore connectivity.

Global Protect, running 5.0.8 w/ Mac 10.8.5.Client connects and works fine initially.At intermittent times, a few times a day, the client has to manually Resubmit Host Profile for the HIP rules to re-engage and restore traffic flow.This is obviously a problem as the user doesn't realize this is happening until their traffic fails.This is happeni...

kk555 by L0 Member
  • 5931 Views
  • 1 replies
  • 0 Likes

Fortigate Minemeld URL feed injestion issue - outgoing URL connections blocked by Minemeld feed policy on Fortigate Firewall

Good afternoon, we've noticed a strange issue on a client firewall that injests URL IoCs from our Minemeld instance into an outbound block policy. Specifically it seems that the Firewall Minemeld Policy is blocking outgoing URLs connections that are not actually present inside the Minemeld URL output feed. We're investigating the issue as it see...

VCiverra by L1 Bithead
  • 3194 Views
  • 1 replies
  • 0 Likes

Spli tunneling for ms-update files

Hi, We have GP configured with 0.0.0.0/0 inside tunnel. We would like to split-tunneling for microsoft updates. In the split tunneling profile we add several microsoft URLs in order to avoid but its not working.We added this URLS:*.update.microsoft.comdownload.microsoft.com But in data filtering we can see the updates being downloaded using PA. ...

BigPalo by L4 Transporter
  • 3458 Views
  • 3 replies
  • 0 Likes

Resolved! PA-5050 PAN-OS version

Can anyone tell me the release date of interim release 8.1.16 (PAN-OS for PA-5050 firewall device)? I need this for informational purposes and know it is accessible on the "Software Updates" (downloads) section of Customer Support site but I do not have that level of access. (Combined release notes for version 8.1 has info. on all interim rele...

URL-Profile Duplicates

I have a PA running multiple vsys, and I'm getting the following error on multiple vsys instances: Warning: url-profile Demo URL Alert(id: 254) is considered duplicate of Demo URL Alert(id: 252) Is there a way to see what id:254 and id:252 are referring to so I can remove the duplicate? The profile is a clone of the default with very little cust...

Tacas Configuration Issue

Hi Team, We are using tacas server for authentication administrator account on panorama we have applied the tacas server authentication profile directly on Device > setup > management > authentication settings.when we are able to login from particular user we getting prompt of changing password.we had disabled the password complexity an...

Resolved! Questions about Migrating HA Firewalls to Panorama

I'm working through the documentation to migrate a active/passive HA pair of 3220's to Panorama management and had a few questions (https://docs.paloaltonetworks.com/panorama/10-0/panorama-admin/manage-firewalls/transition-a-firewall-to-panorama-management/migrate-a-firewall-ha-pair-to-panorama-management.html). 1) Before I push the configs to...

myamane by L0 Member
  • 3575 Views
  • 2 replies
  • 0 Likes

Problem with URL Filtering Order

Hello All, I need a help in my case, i have a bunch of urls which must be permitted and any thing else must be denied. so i create a white list url using the (Custom Objects - URL Filtering) and then i create a URL Security Profile and blocked every categories and just alert my URL Filtering white list and then add it to my (Inside to Outside) p...

PA850 HA Switchover Delay

I have setup two PA850 in a active passive pair. I am simulating failover manually, when I disconnect the cable, I see around 8 packet drops. Is there any specific settings to reduce the delay. 4 packet drops are acceptable. I have bundled interfaces on the firewall.

aataro by L1 Bithead
  • 2676 Views
  • 2 replies
  • 0 Likes

Resolved! Data redistribution: mappings learned via agentless user-id are okay, mappings via globalprotect(type GP) not redistributed

Hello. so I'm setting up data redistribution (mainly for user-id) between 2 clusters. 1 cluster has a globalprotect license and a working internal gateway (this solution will in time completely replace the agentless user-id) I configured data redistribution. GP-firewall is configured with a collector name( multi vsys setup) and even sees 1 clien...

Blue screen on Windows 10 after GlobalProtect 5.2.4

Hi team, I've been facing the following issue. I did an upgrade in the GlobalProtect version (from 5.1.8 to 5.2.4). And it worked normally but, I saw in 3 specific laptops that, when the user installs the app on his laptop, the laptops start to see bluescreens and restarts. And then the user's support team removes the app and goes back to normal...

How to change or delete user account

I want to change lever user account or delete super user account, because when i first registered from portal support.paloaltonetworks i input the wrong doamin, namely ayi.witarsa@polypld.co.id (is false), it should be ayi.witarsa@topypld.co.id (is true). Please, Can you help me for this problem.

  • 24379 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks