This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4117 Views
  • 0 replies
  • 0 Likes

Resolved! Microsoft Self-Service Password Reset (SSPR) / GP VPN with User Authentication

Just wanted to share in case others run into this. My company has recently started to use Microsoft's SSPR process which is embedded into the Windows 10/11 OS. Specifics on how it works here: Self-service password reset for Windows devices - Microsoft Entra ID | Microsoft Learn This specific section is going to be an issue for GP VPN envir...

Resolved! HTTP-Proxy allow or deny app

Hi Everyone,I have a inbound rule in place fro my forward facing web-server and am tightning the policy down to only allow a few apps and a few default ports ssl and web-browsing When i was looking at what traffic was hitting the rule, Isaw the following applications SSL 443 = iexpectedweb-browsing (80) =expected however i am noticing http-proxy...

GlobalProtect prelogon and internal gateway detection

I've been doing mixes of internal and external gateways with customer forever (I usually forget that "always-on" must be enabled for internal gateway detection to even be allowed in the first place). I'm working on a pre-logon implementation that also would benefit from leveraging internal gateways/no-tunnel while inside the enterprise network...

Screenshot 2025-03-06 at 11.26.49 AM.png
Screenshot 2025-03-06 at 11.23.39 AM.png
Screenshot 2025-03-06 113028.png

Best method to permit SAML auth and Radius for Globalprotect at the same time?

Greetings all, I hope you can help me. I currently have Globalprotect set up on a single firewall - both portal and gateway. We're using Radius for authentication, it is working well. We want to transition to SAML. For testing purposes, we'd like to have SAML configured for a specific test user (or group), while leaving the current authentic...

mannix_0-1715099765068.png
mannix by L1 Bithead
  • 5699 Views
  • 7 replies
  • 0 Likes

REQUEST: Grace period for GlobalProtect patch checking

Problem: Because of occasional issues with vendor patches, like MS had early this year, (see URL below), very few companies release patches/updates to clients or servers on the day of release. They test the updates first, then release them days or even weeks later after testing has shown no major issues. GlobalProtect has no capability to delay ...

Resolved! Site flagged as GRAYWARE Please Help!!

Hi, a site I am working on with a client is being flagged as Grayware. This is a landing page for a digital agency product and shouldn't be flagged. Can this be reclassified? This is the domain: https://audiencexlerator.com/ Thanks in advance, Matt

PROTIP: Factory Reset from MacOX

tl;dr use the command "cu" instead of "screen". I have been trying to factory reset a PA-3200 for about 45 minutes. I am using a standard RJ-45 to DB9 serial cable with a USB serial adapter. Following the instructions I get to the step where I have to select the factory reset and it says "maintenance reason". Hitting "q" to go back a screen...

wstuart by L1 Bithead
  • 629 Views
  • 1 replies
  • 0 Likes

DNS sinkhole

Hello everybody, How many policy we need for block and review source of infected hosts? One or two? Internal dns is using but we can not see source of users.

valizada by L0 Member
  • 909 Views
  • 3 replies
  • 0 Likes

Bug Search Tool (New Feature & UI)

Hi all, A colleague of mine asked if it was possible to search for specific URLs or IP addresses in PAN hosted EDLs, to help figure out which EDLs they might be part of, which i found out it's not. It's pretty tedious to go through all the EDLs at https://docs.paloaltonetworks.com/resources/edl-hosting-service, so i decided to add this feature...

KasperTjellesen_3-1741174535669.png
KasperTjellesen_4-1741174580034.png
KasperTjellesen_5-1741174595294.png

Transitioning Free Trial to paid subscription

We selected the paid PA-VM subscription that includes the 15 day free trial. It looks like it won't be fully licensed until the end of the 15 day trial period. Can we skip that and enable now to get access to the support portal and wildfire api key?

Detecting Or Hunting For CVE-2025-0108

Hello Folks, I am looking for a ways to detect the attempt for this vulnerability through SIEM. Based on the blogs available the vulnerability can be exploited by accessing URL with "unauth" on management interface. So I am thinking to look for web interface access logs with keyword "unauth". However, I would like your help to get below detail...

IPSec tunnel over IPSec tunnel not working

Has anyone ever done tunnel-over-tunnel on the PaloAlto (to Cisco/etc.)? I have been having problems getting traffic to return to a remote site. I normally have multiple IPSec tunnels to remote sites (carrying specific isolated VLAN/networks) over a private WLAN, the tunnels tied to specific Network Zones on the PaloAlto. Recently I had to setup...

Add backup GlobalProtect portal to GlobalProtect client

On our PA-1410 under Network - GlobalProtect - Portals - each of our portals (one on each interface for each ISP) - Agent - Agent Config - External Gateway I added gp2.domain.com to go along with gp.domain.com. I was thinking (hoping) that would update the GlobalProtect client to add the gp2.domain.com to the GlobalProtect client as a failover ...

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks