This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4110 Views
  • 0 replies
  • 0 Likes

AI ​​Access feature 11.2.2-h1

PA-5450 I need to enable the AI ​​Access feature, then the PAN OS requirement must be PANOS version 11.2.2-h1. Currently PAN OS uses 10.2.9-h1, then I checked in portal Preferred it is still 11.1.6-h3. Please confirm to Palo Alto best practice, which OS version should I upgrade to enable AI Access?

PAN-OS ISO File download blocked

Hi Everyone, I am unable to see on my Palo Alto Firewall PAN-OS 11.1.4-h13 on Monitor Data Filtering or Unifed when I was downloading an iso which file extension in the iso file is blocked. Nothing shows up as blocked and the browser stops the downloading at 224mb. Extensions that are blocked: 7z, bat, cab, chm, class, cpl, encrypted-r...

smledv by L1 Bithead
  • 4340 Views
  • 5 replies
  • 0 Likes

Resolved! Third-party SFP transceivers

Hi Everyone,i am currently running 7.1.14 and am looking to upgrade to 8.08 with third part trancivers HPE X242 10G SFP+ to SFP+ 3m Direct Attach Copper Cable J9283B I read in the Upgrade/Downgrade Considerations Support for Third-Party SFP Transceivers https://www.paloaltonetworks.com/documentation/81/pan-os/newfeaturesguide/upgrade-to-pan-os...

UDP Relay support on PANOS 11.1

Hello Experts, Is UDP broadcast relay (not DHCP) supported by PANOS 11.1? There is a requirement to relay these UDP traffic: ip forward-protocol ndip forward-protocol udp 10001

Is there a limit to the number of objects within a dynamic address group?

I'm working on doing some clean up, and I want to take advantage of dynamic address groups. I have 943 address objects tagged and one dynamic group. When I monitor the logs, I see some traffic bypassing my rule and going to rules below. I checked the address objects and they are tagged.As a test I put all 943 address objects into a static group....

Install Device Certificate for LogCollector CLI

Hello everyone,I upgraded a Pan log collector to Software version 9.1.11 . Recently I receive the event "No valid device certificate found" . So I need to generate OTP certificate and install it . This can be done easily through GUI. However, with LogCollecor , Web UI is disabled and CLI is the only way to access the device .Can anyone guide on ...

Resolved! Paloalto NGFW - Policy-Based Forwarding (PBF) - Enforce Symmetric Return

Hello, I have two sites: Site 1 and Site 1, both running Palo Alto NGFW. Currently, traffic is routed between the sites via an IPSec VPN tunnel. However, we’ve recently set up MPLS between the sites and are planning to gradually migrate traffic from IPSec to MPLS. The challenge we're facing is related to asymmetric routing, where requests co...

Untitled Diagram.drawio.png

PAN-OS Release Frequency

Hi, How can we know the frequency release version of PAN OS? Or just wait for new info on software release guidance eg version 10.1.14-h8 Version Represents Frequency 10 Major Version 1 Minor Version 14 Maintenance H8 hotfix (urgent fix on introduce issued) Thanks in advance!

Al-Zuhri by L0 Member
  • 1382 Views
  • 2 replies
  • 0 Likes

VPN disconnection when using the sbs robot, which performs queries to a certain page located in the internal network of an entity.

They mentioned that based on this behavior in which they think that this is a : 1.-Threat identification.2.- VPN disconnection when using the sbs robot, which performs queries to a certain page located in the internal network of an entity (Judicial Power). 3. -Sbs query: add ip range in the policies so that a user group can access from vpn con...

F.Pinar by L3 Networker
  • 1102 Views
  • 2 replies
  • 1 Likes

Resolved! Data center providing dual ports already in VRRP - my topology?

I will have a single PA device in the cabinet, so no HA on my end. I understand the risks and this is not part of the question. Datacenter/Colocation is providing me dual ports into the cabinet and they are handling VRRP through their IP blend. They will provide me a /29 with the first 3 IP's being the VIP, R1 and R2 addresses. I am being to...

Resolved! Test command does not work

Hello, team. I have a problem.I have a couple of users created for read mode administration of the Palo Alto Firewall Cluster (they are local users). When I try to test the Test Authentication Server Connectivity (I follow the documentation to the letter), I am constantly getting the same error when testing with the local users. Any idea how to ...

T2.png
T1.png
Matlu_NN by L2 Linker
  • 9369 Views
  • 16 replies
  • 0 Likes

PAN-160633 solved in 10.2.10-h9?

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000HCcXCAWI could see the KB say's 10.2.6 version are covered, does that means it covered in 10.2.10-h9? or it's like 10.2.6-h1, 10.2.6-h2 like that?

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks