This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4112 Views
  • 0 replies
  • 0 Likes

QoS Profile Configuration

I'm doing my first PAN QoS configuration- it's for a SIP trunk to a carrier from our VoIP network. I've read through the procedures and wanted to do a sanity check for my approach: 1) I've configured my security rules for SIP to have QoS "Follow Client to Server Flow" to maintain the DSCP markings from carrier to VoIP internal network and vise-v...

Panorama require description on policies

Greetings: I am exploring enabling "Require description on policies" in Panorama. From the documentation it is not clear to me if by enabling this feature will only apply to new or edited policies or ALL existing policies will require a comment. Does anyone have any experience with this feature that they could share? Thank you in advance for ...

SNMP - OID RAM/HD Usage

Hello!!I am using OP Manager to check my Palo Alto 3020 through snmp, but i don´t have the OID to check RAM/HD % usage, i downloaded all MIB from Palo Alto Page and uploaded to OP Manager. I haven´t seen the OID to check that resources. Do you have the OID/MIB?I used the "show system resources" and "show system disk-space" via cli and it worked....

Resolved! Global Protect previous user ??

I personally have logged on and logged off every day, but the previous user report only shows my login as 5 times in last about 2 months.So what is this command actually telling us. I could not find any information on this command show global-protect-gateway previous-user

raji_toor by L4 Transporter
  • 2646 Views
  • 1 replies
  • 0 Likes

Resolved! Migration Issue from PA-3020 (No-HA) to PA-3220 with HA-Active/Active

Hi Brothers, Existing PA-3020 (PAN-OS 7.1.7) and New PA-3220 with HA-Active/Active (PAN-OS 9.1.x) How to Migration the Configuration to new device?1. Just backup the 3020 config and restore the config from PA-3220?2. Any Migration Tools convert?** the Existing Device NOT Accept Firmware Upgrade, Due to the Next Phase the PA-500 not support PAN-O...

Resolved! Wildfire

I was wondering ifsomeone could help with clarifying how the WildFire– Proof Point integration works.A client of ours has Palo Alto NGFW in more geographically distant locations, and they also have Proof Point integrated with Wild Fire.[1] How and with whom does Proof Point communicate and where is his position in the network?[2] In regard to th...

Hammer88 by L1 Bithead
  • 8479 Views
  • 6 replies
  • 0 Likes

AV Profile - Alert action

Hello guys, I have a question about the alert action in the AV profile. - When I configure alert in AV action (threat already known), is traffic allowed or blocked?- When I configure alert on WildFire action, is traffic allowed? or does it depend on the detection I do on the file? I'm a bit confused, as I have traffic being allowed, when Wildfi...

Resolved! Allowing redirects

i have an app that crosses zones to auth then redirects the client to another host/ip. the firewall seems to be dropping the traffic when it is redirected. I am certain there is a solution, i just cannot locate it. any thoughts?thanks

tcsmithh by L1 Bithead
  • 2391 Views
  • 1 replies
  • 0 Likes

Source user Questions

Hello!I am a beginner engineer in Japan.We need to put it in the hundreds of source users policy this time.Is there any other way than to input one by one?

eCloud by L1 Bithead
  • 3099 Views
  • 5 replies
  • 0 Likes

Upgrading from 5060 to 5250

Hello everyone, We have an upcoming project where we need to upgrade our 5060 firewalls to 5250. I was unable to find a document that explains like items to consider to do the migration. This is actually my first project so I am trying to think of maybe a guide or a tutorial that I can start with. The main requirement that I have not been able ...

bambox by L1 Bithead
  • 2586 Views
  • 1 replies
  • 0 Likes

Resolved! Having issues with GoDaddy redirect sites from IP 184.168.131.241

Is anyone having issues behind your Palos accessing any websites the use Godaddy's IP 184.168.131.241 as a redirect? Website example http://www.rootworkers.com/http://sccforme.com We are experiencing incomplete connections. I also have a SonicWall and it is also not letting me access any site that redirects from that IP address.

Resolved! Enforcing Global Protect Connection Issue

Hi All, Has anyone who's implemented the Enforce Global Protect connection option had issues permitting remote support applications? I've tried adding the required wildcarded FQDN's to the Global Protect Portal under App Configurations but no joy yet. Just wondering if anyone else has had a similar issue?

Josh990 by L2 Linker
  • 8176 Views
  • 12 replies
  • 0 Likes

Terminal server user identification

Hello.We have terminal server in which there are many users logged in.But we see them in traffic monitoring only as one Ip address and no separate users.I have installed terminal service agent on terminal server and everything is ok.IT shows connected and green and TS agent define the users.But in firewall i cant see the separate users in monito...

Radmin_85 by L4 Transporter
  • 8058 Views
  • 13 replies
  • 0 Likes
  • 24333 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks