General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics


New Product mention feature

Hey everyone, We just enabled a feature on the LIVEcommunity that allows for products to be linked inside of discussions or articles.. this helps cross link information throughout the site, especially useful if you are looking for specific informatio...

jdelio by Community Team Member
  • 2 replies

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 43 replies

Minemeld install error on RHEL

I am attempted to perform an ansible install of Minemeld on RHEL 7. I am receiving the following error. Anyone seen this and have any suggestions for remediation? Thanks I receive the following message when I run the ansible playbook: TASK [minemeld ...

taustin by L1 Bithead
  • 2 replies

invalid interface

hello have getting a lot of 802.1q tag not configured and invalid interface message in global counters. I'm trying to find the cause, I have configured subinterfaces I see traffic in rx.pcap with properly tag, all traffic is dropped, I see as destina...

Marivi by L3 Networker
  • 8 replies

Feature Request - Reporting

I just spoke to Jim Silha about reporting. Palo Alto comes with a user activity report. Under the section 'Browing Summary by Website' there is a 'Host' column. It is much more report friendly than say 'URL'. I would like to be able to use that in my...

HA Active/Active and VPN

Hello, We have a scenario where a customer wants to deploy two PA3250s in two different locations which will be an Active/Active cluster. There will be a layer 2 link between the two sites and also customer wants a VPN as a backup if the layer 2 link...

sajidsil by L0 Member
  • 3 replies

LDAP interval

Hi,I have a question in reference to the LDAP interval time. Specifically what my goal is I want to be able to let the firewall know about my AD group membership changes quicker. For example if I have a specific AD group that is configured on the fw ...

Resolved! URL domain reports

Hello,I'd like to produce URL reports. I noticed that you can get report on the comlete URL but not based on the URL domain.i.e i get entry for and another entry for and for report purpose is o...

Resolved! Meaning of different Interface states

I have scourred everywhere...... What are the differences between the interface states? I can't find anything anywhere!! ukn/ukn/down(power-down)disabled/downforced/uknforced/down If there are others I have missed, I'd love to be enlightened.

Weirdest thing I have seen

Having a weird issue. I installed an 820. I have internet traffic being NAT'ed. My gateway is set to the Palo. My hops to the internet look like this Windows Box ---> Palo 820 --> Cisco Pix --> Internet Provider Pretty basic.. I have a rule in place ...

Bad certificate _ inbound ssl inspection

Hi All we are using 3rd party singed certificate for inbound SSL inspection , once we imported the certificate it is not showing any error and commit is working fine . once we add the certificate to decryption policy it is showing error as bad certif...

Resolved! URL Category and URL Profile in same Rule

We have a default URL Filtering Profile that we use for general use. The default URL Filtering Profile has a couple dozen URL Categories which are set to alert. I need to allow EXEs from only five of the URL categories. If I add the five URL Categori...

GlobalProtect remote access - some pointers

Dear All, I'm relatively new to Palo Alto firewalls and I am attempting to implement GlobalProtect to provide remote users with access to our internal network through the Palo Alto firewall and I am striggling to get even the most basic system workin...

GlobalProtect Best Practices

I searched through previous threads to see what the best practices are for securing GlobalProtect but the only thread I saw was dated and didn't have too much information. Could anyone share what their best practice is with setting up GlobalProtect? ...

Resolved! VPN not working

Hi, we are configuring a VPn between Palo Alto and PFsense. The VPN is configured properly but its nos getting up. No phase 1 up. We have treid to change all values proposals and lifetime. This is the log. We tried to change lifetime with no success....

BigPalo by L4 Transporter
  • 4 replies