This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4136 Views
  • 0 replies
  • 0 Likes

IPSEC Tunne with IBM cloud

HI I have setup a tunnel with IBM cloud and tunnel is UP. However I am unable to ping from both side. Routing and security policies are configured correctly, I can see on firewall logs byte sent is there but byte received is zero.There is no traffic arriving from IBM cloud device to palo alto firewal, I suspect issue from IBM cloud side. I am n...

Wildfire File Check

Hey Community, maybe someone can give me a hint or help about the following Topic: Does Wildfire re-checks Files after we have got a verdict ? For example, if a File is uploaded to Wildfire and the verdict is Benign, but after some Time something has changed in this File and it now has a malicious behaviour, does Wildfire checks the File after s...

Prevent User Traffic from Proton VPN Application

Hi All, Just wondering if anyone has a solution in creating either an application id for proton vpn, and or other methods in preventing users from bypassing the palo firewall. https://protonvpn.com/ I have discovered today that this application is not being blocked or denied access from internal users.ThanksRegardsDaniel

DWilkin by L0 Member
  • 6299 Views
  • 2 replies
  • 0 Likes

URL Filtering Log - MAC Address

Good morning, We are trying to leverage as much functionality from our PA FW right now. At the moment we are using 3rd party filtering and 3rd party captive portal. The challenge is always matching the URL filtering logs with the user mac address. Is there a way to see the MAC address of a client from the URL filtering logs?

btolsta by L0 Member
  • 3021 Views
  • 1 replies
  • 0 Likes

UserID agent - different two major

Hi, Just to confirm. it would be compatible this:UserIdagent in version 9.0.xand FWs in version 8.0.13 WE need to upgrade FWs to version 9.0.x, and we are thinking to upgrade first UIA, but we are not sure about compatibility in UIA two major higher.

BigPalo by L4 Transporter
  • 1835 Views
  • 1 replies
  • 0 Likes

Upgrade advices compatibility

Hi, I explain my scenario: We need a cluster A/P in 8.0.x. We had issues upgrading when the LACP didnt come up in the passive node jumping to 8.1.10.So in the last try we realised that jumping to base 8.1.0 the LACP interfaces were up. So we will do this upgrade path:8.0.13->8.1.0->9.0.0-> 9.0.9-h1. Customer has UIA 8.1.6 versionPanora...

BigPalo by L4 Transporter
  • 3068 Views
  • 4 replies
  • 0 Likes

Resolved! security policy application and service\ or service?

Hello,If I have a policy for example that allows application "web-browsing" and service is "port 500" - does that mean that the rule will allow if the application is either "web browsing" OR "service 500" or the rule will be allowed if the application is "web browsing" AND "service 500"?Thanks.

roma by L2 Linker
  • 2367 Views
  • 1 replies
  • 0 Likes

Panorama VM to VM migration while going from Legacy to Panorama Mode

Hello all, currently we use a Panorama VM running PanOS 9.0.5 in Legacy mode (did not even know that was possible) to manage a couple of HA pairs of firewalls. Unfortunately we are unable to edit the resources of that VM in our Hypervisor, likely due to how it was originally provisioned, so we cannot go the route of adding the needed resources f...

Resolved! Static Route Path Monitoring for automated VPN failover

Hello,I would like to know if static route path monitoring can monitoring outside of the interface bound to the static route? For example, I want to monitor across a VPN tunnel and if the test fails, withdraw the static route so traffic fails over to the backup VPN tunnel. I don't have a IP addresses (within the tunnel) on the destination side o...

Bilbo007 by L0 Member
  • 11535 Views
  • 2 replies
  • 0 Likes

Cyber Elite interview with MP18

Hey there everyone. I wanted to let everyone know that the Cyber Elite experts are among our top contributors within LIVECommunity, and our first interview is with @MP18. Read the blog here: https://live.paloaltonetworks.com/t5/blogs/get-to-know-cyber-elite-mp18/ba-p/347622 Get to know more about him as he shares a bit of his background, ...

jdelio by L7 Applicator
  • 3209 Views
  • 1 replies
  • 4 Likes

How to create e new network interface on a device using Panorama

Hi all,I'm quite new using Panorama.I need to create a new network interface on a device managed by Panorama.I tried to modify the template but when I push it to device I got an error telling that there isn't that interface.Of course I miss something.Could you help me understanding what? Thanks

MGatti by L1 Bithead
  • 6098 Views
  • 4 replies
  • 0 Likes

URL filtering and white list

Hi,I would like to do url white listing. before i do white listing , i would like to monitor all url of users and office application.after that i would like to allow specific url only. In paloalto monitoring is only show destination ip address and never show the url. I would like to know can i mornitor the user access url and application access ...

crypto by L2 Linker
  • 4348 Views
  • 3 replies
  • 0 Likes
  • 24340 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks