This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4231 Views
  • 0 replies
  • 0 Likes

Resolved! Schedule cli command execute

Hi all, I need schedule some cli command which i execute manually from SSH console like below; Command line 1: test vpn ipsec-sa tunnel Xtunnelname:XtunnelProxyIdCommand line 2: test vpn ike-sa gateway Xtunnelname Is there any way schedule tasks in palo alto? Regards.

Lacrymae by L1 Bithead
  • 4704 Views
  • 2 replies
  • 1 Likes

Failed to Launch Help warning pops up randomly while connected to GloabalProtect(5.1.5)

Hello everyone, most lately have started seeing a warning messaged "Failed to Launch Help" pop up randomly while connected to GloabalProtect(5.1.5). Tried looking for KB Articles around it and could not find any. Was wondering if I could get some insight on what could be causing this and how to get rid of it? Thank you,VC

changing AD user passwords through globalprotect app

Hi Community, I have the following scenario:user_1/password_1 Active Directory credentials for login into windows system and domainuser_2/password_2 Active Directory credentials only for globalprotect authentication. I´d like to know if there is a way to change the password_2 for user_2 through the GP agent application? Thank you!

Carracido by L4 Transporter
  • 2204 Views
  • 1 replies
  • 0 Likes

Resolved! PAN 5050 DDNS

Hello Team, I moved up from Fortinet/Ubiquity, bought a used PAN 5050 and upgrade the OS to 8.1.18 for a Home Use. However, since i am new to PAN during the configuration i realized PAN 5050 does not support DDNS. In my case i am home user I don't have a Static IP. As you all know, having Dynamic IP is a pain for almost all firewalls and limited...

KurdTech by L1 Bithead
  • 3474 Views
  • 3 replies
  • 0 Likes

EDL URL List Format and Subpages

I understand that for an EDL of type URL, the format is either company.com*.company.com This will include any additional subdomains, whether at the beginning or the end of the URL. Regarding the forward slash, will a URL like the following be a valid entry that will be processed? company.com/subpage/QWERTY/ Additionally, does that mean only th...

Captive Portal for Corporate devices

We have recently upgraded our HA firewall cluster (PA-3020) from 7.1.22 to 9.1.6 following the suggested upgrade path by PA.We have captive portal in place, before the upgrade, all our corporate windows 10 laptops as soon as we power them on, they used to connect to our corporate Wi-Fi and allowed users to login as per normal.Since the time we h...

UHL by L0 Member
  • 3174 Views
  • 3 replies
  • 0 Likes

Minemeld MISP miner needs a revisit

Hi guys, I believe the MISP miner for Minemeld needs a re-visit. None of the tagged indicators are being pulled by Minemeld from our MISP instance. I think there are a lot of changes to the current API as compared to the ones used by the current miners. Also, a lot of new queries such as Decay Model and Timeline can be done through API. I don't ...

vedd3r by L2 Linker
  • 3168 Views
  • 1 replies
  • 1 Likes

Resolved! Logging for deny/drop policy

Hi Team, what is the recommended/ best practice logging option for policies with action set as deny/drop? is it "log at session end" or "log at session start"?

Query on file blocking profile.

Hi, Can we achieve the following points, 1.Required only our office domain user can able to access upload/download file2.Hotmail user can only access for downloading / uploading block3.Another domain user (Guest user) only downloading the file uploading block I know that we can block other domains but can we achieve this requirement downloading...

Bad Gateway error

Hello All, I installed minemeld on aws instance, when I am trying to logging getting "Error checking credential: bad gateway". I checked Minemeld services and getting error as : minemeld-engine FATAL Exited too quickly (process log may have details)minemeld-supervisord-listener RUNNING pid 1921, uptime 0:08:47minemeld-t...

sam2016 by L0 Member
  • 23099 Views
  • 9 replies
  • 0 Likes

Tons of "Generic:<URL> hits in threat logs for DNS Query hits

Hi Guys, I am seeing a ton of "generic:&lt;random-url&gt;" hits in my threat logs under the spyware category for DNS queries from my email spam filter server out to the world. I have DNS security set up on the Palo so they are being sinkholed, but there are a ton of them, and several dozen different URL's. The spam filter uses a proprietary sof...

dromanelli_0-1611763278220.png

Resolved! VPN from Palo to Cloud – Physical Interface or Loopback?

Just wondering what is best practice for this?We have a /29 on our outside interface. We are using the IP assigned for client NAT translation.Over the coming months we’ll be configuring several VPNs to the same cloud provider. Should these terminate via a loopback or just on the physical interface and we should add an address to the physical int...

Resolved! Open-vpn client for Globalprotect

I have a consultant who is asking if the Global Protect VPN would connect with an OpenVPN-based client? I suspect he is working from a Linux PC.does Palo support it?

Best Practices for acquisition

Hi Guys, Our company has recently made several acquisitions. All of them have non-palo alto firewalls. We will be migrating each of non-palo firewalls to our palos.Now, for migrating the rules, we are using expedition. But, some of them have overlapping IP addressing. We are planning to resolve that problem with NAT.But wanted to ask here: Is th...

  • 24357 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks