This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4111 Views
  • 0 replies
  • 0 Likes

Feature Request: alert rule message template for ALL destination types

Allow for creation of message templates for ALL destination types, not just email.Would like to customize SQS message and all other messages formats when sending an alert.Business value:Allows customers to customize and manage event messages from alert rules to be properly formatted for the customer's use cases/integrations.

Video Streaming/MSteam Video hazy

Hello,Recently we upgraded the OS from 8.1.13 to 8.1.16 .After that we found that there is delay in video streaming sites especially Youtube .Apart from that our video enabled meetings are hazy for all the internal users.I am not sure whether its related with upgrade issue or any other scenario.Please suggest

Farabi by L0 Member
  • 2519 Views
  • 2 replies
  • 0 Likes

Enabling IPv6 on untrusted Ethernet1/1 interface brings down IPv4

I tried working with Palo Alto support but there hours don't match with my schedule. I decided to start using IPv6 on my local LAN and WAN. I setup a DHCP server using MS Server and created a scope. Devices on the network are getting two IPv6 address. I configured the IPv6 on PA-220 and hit the enable button and committed and immediately lost...

bryanscott_0-1607189276233.png

Unable to change the admin of the virtual PAN OS 9.0 credentials on VMware Lab

Hello Community,I have set up my Virtual Palo Alto Firewall on a VMware virtual machine. The issue is that when I start the Virtual FW , it asks me for the credentials. I enter admin/admin , then it requests to change the password. I enter the new password/confirm password. After that, when I try to login with the new password, it says " login i...

Kevin20 by L0 Member
  • 2125 Views
  • 1 replies
  • 0 Likes

Deployment when not on domain

I've noted some laptops handed out when people went to work from home are not running Cortex XDR as Active Directory deployment of a startup script (which runs the msi from a share) was the chosen deployment method. What are my options for getting machines up to date when they don't connect to the VPN until after the machine is already started up?

TimGowen by L1 Bithead
  • 2280 Views
  • 1 replies
  • 0 Likes

Resolved! Error decompressing data stream

Greetings All Been running minemeld for quite a while but have not seen this one before. We are setting up a new threat stream from a government provider that we have been using for a while but they are upgrading to a v4 of their feed. Did everything the same as usual but getting a error "Error -5 while decompressing data: incomplete or trun...

Resolved! Service Route Help

Hello, I need to create a source service route for LDAP on one of our PANs due to MGT interface IP being unable to access the LDAP servers (I am unable to change this). I have gone into Device, Setup, Services, Service Route Configuration, selected customize and then changed LDAP to use ethernet1/1 and the source of that address. I then com...

COlson by L2 Linker
  • 4379 Views
  • 3 replies
  • 0 Likes

Resolved! OSPF - preventing Ext1 inter-area route redistribution

I am trying to minimize some router's routing table, in a multi-area OSPF setup. As you can see in the attached diagram, my PA firewall is an ABR. It's also the core router of the entire network, DR on each OSPF area with no BDR (it's an HA active/standby setup). PA Firewall's routing table is built by the routes advertised by each area, with ve...

OSPF-trim.png

Resolved! Choosing user certificate when you have multiple such as multiple company VPNs

If a user has multiple user certificates, how can I ensure that the firewall chooses the correct one to use?For example, a user might have a VPN to two different companies that both have PA firewalls. I'd strongly prefer not having to have a separate windows user account depending on which useraccount and portal I want to connect to. Thanks

Avaya RTP UDP traffic dropped

Hi AllTrying to get a path working for an Avaya solution. I can see in the log that SIP traffic is flowing without issue. When the user tries to make a call I should see some UDP traffic within a specified range but I do not see it in the logs. I have performed a packet capture and I can see that the UDP traffic, showing as RTP, is being dropped...

a.jones by L3 Networker
  • 3646 Views
  • 2 replies
  • 0 Likes

wild card certificate.

Dears, i am using a wild card certificate for global protect. when i tried to connect global protect agent. i am facing the below issue:- Certificate description:-I have imported the wild card certificate that is sign by digicert.firstly i have imported trusted root CA.Then intermediate CA.After that the server chain certificate. Configuration d...

Jafar_Hussain_0-1607017194770.png

several IKE Crypto Profiles on the same interface for SITE-to-SITE VPN

Hello dear colleagues, according to the documentation, there is a limitation for IKE gateways:All IKE gateways configured on the same interface or local IP address must use the same cryptoprofile. (c) The same restriction is mentioned in the PANOS v8.1 course. First of all, it seems strange that we cannot use different IKE options for different ...

Panorama plugin for VMware vCenter

Hello Everyone,I would like to use custom tags from VCenter in dynamic address groups. We are using VM information sources, but this method isn´t able to fetch these tags. It seems that VMware vCenter plugin can do this thing. Is it good idea to use this plugin? It hasn´t received any update since it was created and I don´t want to risk any prob...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks