This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4115 Views
  • 0 replies
  • 0 Likes

Resolved! Global Protect VPN client holding internal DNS address on Wireless network adaptor

Hi, I am new to PA and having just started in a new role we have an on-going issue with remote workers connecting via VPN. Sometimes when they have finished their VPN session the laptop's wireless adaptor will still have an internal dns IP address in its dns server settings. This means the user cant connect to the internet until they go to the p...

vwire setup in active-active mode with port-channels

I am trying to add a pair of PA 850's in vwire mode between a Cisco ASR1001 router and a nexus 6k over that has a port-channel configured. I setup the PA interfaces as a vwire , setup the zones, and polices. Am I suppose to aggregate the interfaces on the 850's? When I tried to insert the 850's in between the router and switch this weekend all i...

Virus/Win32.WGeneric.alpvzn - OneDriveSetup.exe detected in threat logs

@hisingh Hello,Palo alto has been released a new signature Virus/Win32.WGeneric.alpvznName: Virus/Win32.WGeneric.alpvznUnique Threat ID: 354554856We are getting Virus alerts in the Threat log for OneDriveSetup.exe.is that false positive?how can I stop this threat alert?I have checked this application is working fine. Thank you.!!!!!!!!

Panorama - Remote PA52xx

I have not had much hands on with Palo Alto in particular Panorama but I would like to ask for some help -We have Panorama at our central Data Center which is used to Configure our remote PA52xx's. If Panorama is used to apply policy to a firewall and there is a need to rollback a recent policy change which of these are possible. 1) Rollback th...

mcronin by L0 Member
  • 2231 Views
  • 1 replies
  • 0 Likes

Need stdlib.aggregatorIPv4Generic to provide single IPs instead of IP ranges

Hello all, I am trying to use Minemeld in a setup with Microsoft Sentinel (Microsoft Graph). I am encountering an issue with entities of type IP, as they are getting in my log analytics space as IP ranges, mentioned in the "ExternalIndicatorID" along with the word IPv4. I cannot process that and I need single IP alone in another column, like N...

Block layer 4 traffic for destination blocked on URL filtering

We have a very peculiar situation. There is Azure public PaaS environment connected over express route and we have a Palo inline. Now the destination ip/subnet range is dynamic but we just end to allow few specific URLs. It was all fine where we had url filtering allowing the required destinations and blocked everything while testing from a web ...

Biswa by L0 Member
  • 4096 Views
  • 3 replies
  • 0 Likes

PAN-OS 9.0 URL DB manual Download not available

Hi, not sure if I to stupid to find it, but after upgrading to PAN-SO 9.0 there is no more option under Licenses URL DB to download the URL DB manually. In an Active/Passive Cluster the Active Firewall downloads the URL DB every few hours, but the passive one sits there with no URL DB. Just a cosmetic thing as the URL DB gets downloaded once yo...

holbem by L1 Bithead
  • 5953 Views
  • 3 replies
  • 0 Likes

Resolved! Untrust interface we have created Global protect gateway

we have separated GP portal and GP gateway interface.Untrust interface we have created Global protect gateway and we allowed ping on the interface but when we are typing untrust interface IP address on our browser eg https://112.20.20.1 . We are getting the above message 502 bad gateway.Qustion :we have only allowed ping on GP gateway interface ...

Sonu_Singh_0-1595145568421.png
bit_byte by L2 Linker
  • 6052 Views
  • 4 replies
  • 0 Likes

Resolved! exclude-access-route is an invalid ipv4/v6 address

Hi All,, I'm getting this error, see attached, when trying to add new routes to Global Protect Split Tunnel config. Only thing I can think of, we're running v9 on Panorama and v8 on the firewalls. do the firewalls not like the format when trying to push to them? they are due to be upgraded to same v9 end of this week, wait and try again after? Ian

MicrosoftTeams-image.png

Why do unused rules show traffic hits?

I am doing cleanup of old unused firewall rules. Using the UNUSED policy optimizer I noticed that some rules are showing Traffic usage but 0 hits? Can someone explain why this is? I am wary to trust the HIT count until I understand the correlation. Best guess is that it tracks what apps would have hit it?

PeteHalatsis_0-1595009863372.png

Block Tor application traffic.

Hi We are planning to block Tor application traffic in our PA device , so do we need to write security policy in both the direction and also share the steps to block the traffic in Palo Alto device. Thanks,Yusuf

Yusuf_PA by L1 Bithead
  • 12091 Views
  • 10 replies
  • 0 Likes

radius authentication issue

After the device PA-500 is upgraded from 7.1 to 8.1.15, the radius authentication of the user name and password of the device fails, and we can only log in to the device through local authentication. After performing Radius-related configuration according to the configuration guide, the account login still prompts "invalid account or password" l...

Eccomtac by L0 Member
  • 4101 Views
  • 1 replies
  • 0 Likes

PAN-OS 8.0.15 issues X SNMP

We updated the 2 pair of Firewalls on last sunday to 8.0.15 and after that our CACTI stop to show the interfaces statistics from PA-5020.Cacti is monitoring the updated PA-3020 correctly. The issue only happen with PA-5020.Did anyone experience something related ? Regards,Marcelo Castro

mmcastr by L1 Bithead
  • 2351 Views
  • 1 replies
  • 0 Likes

PBF with nat

Hi So I have 1 internal address that when it goes out via the PA to the internet (SNAT) i want it us a specific route - net hop. So it looks like I can't set pBF on source address (SNAT). has to be on the original address.and I can't specify outbound internet

  • 24333 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks