This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4105 Views
  • 0 replies
  • 0 Likes

Microsoft Edge is blocked.

Hi everyone! I have such kind of problem, maybe some of you have faced this.I've blocked Chrome, Firefox and Opera, but it also blocked Microsoft Edge, which should work.I tested deleting this application filters, which I created and found that the problem was with Chrome app filter.I have shared it here. What can cause a problem?

blocking.jpg

DigiCert SHA2 untrusted

We own a wildcard cert from Digicert for on-prem or cloud hosted websites. When doing decryption traffic to our websites breaks and i had to uncheck 'block untrusted certificates' to make it work. How can i keep blocking untrusted certificates and still allow traffic. I know i can create a separate profile for known websites, but i was thinking ...

raji_toor by L4 Transporter
  • 2738 Views
  • 1 replies
  • 0 Likes

RDP To VPN Connected User

As the title, is this physically possible? Long story short, have a requirement to connect remotely to a company users laptop, which is connected to GlobalProtect VPN... via remote desktop from another pc on the same companys LAN Have attempted to connect from a pc on the company LAN to a user working from home who is connected to GlobalProtec...

carterg by L2 Linker
  • 13452 Views
  • 6 replies
  • 0 Likes

SSL Decryption every day more exclusions

Hi, We are using a PaloAlto 3260 with PanOS 9.0.7. We have configured SSL decryption wich uses a certificate signed by our own Windows CA server. Each client in our environment has the Windows Root CA.In the beginning (2 years ago) everything worked well. We could decrypt everything except everything in the category financial.But now latest mont...

ZEBIT by L3 Networker
  • 3512 Views
  • 3 replies
  • 0 Likes

Loopback between two virtual routers are not pinging

I created two Virtual Router for internal bgp peering to export routes. Virtual-Router-1 - loopback-interface- 5.5.5.5/32 ; zone-fiveVirtual-Router-2 - Loopback-interface-6.6.6.6/32 ; zone-sixsecurity policy any-zone to any-zone is allow. I am unable to ping from 5.5.5.5 to 6.6.6.6 or vice versa. BGP peering is getting established but advertised...

Automatic updates broken?

Anyone else got trouble with Dynamic content updates?? Failed to download due to generic communication error. Please try again later.Failed to download file

Incomplete Pcap - RTP

We are performing a pcap on our Firewall. We are capturing all traffic between two different Cidr's.We see all of the sip information. We see full bi-directional traffic. We then see 2 RTP packets for each call then nothing else in the capture. The packets are not dropping, We know RTP is indeed making it because there is no problem with the aud...

NGFW Routing & Switching VS Router Routing & switching performances

Hello, As the NGFW supports routing & switching capabilities why do I need to add a router to connect to the WAN, I am mainly using OSPF and BGP and MPLS in my router and all these features are present in a NGFW, I need to understand if I really need a firewall + a WAN router or a NGFW alone can do the job? Thanks

query URL Filtering DOESN'T WORK

Hi TeamI try since yesterday to check URL categories but service does not work.Please check what's going on.My browser give me:502 Bad Gateway. Thanks for advice.Przemek

Using App-ID to block

I have a question about using App-ID. Can you block an application just by using APP-ID. I have a situation where my firewall is in a default allow environment. I know this isn't a best practice but it is a complex environment and there are a lot of politics so it is what it is. Anyway, I tried to block a service based on App-ID and it is no...

jdemares by L1 Bithead
  • 8799 Views
  • 4 replies
  • 0 Likes

How to block bloody youtube?

Ok, the task is stimple. I want to allow only one particular URL accessible from youtube. Let's say the URL is this:https://www.youtube.com/watch?v=-RyESqegW9Y&I created a custom URL category and put this URL into it: *.youtube.com/watch?v=-RyESqegW9Y SSL decryption is enabled and working in my network. I created another Custom URL category ...

ovel by L2 Linker
  • 9707 Views
  • 4 replies
  • 0 Likes

PAN OS 9.0.4 BUG

Hi,I cought a another bug on PAN OS 9.0.4. when we exporting NAT rules to whatever format PDF/CSV we are not getting proper output as expected. Its giving some garbage information alos.

Resolved! can netflow forwarding be filtered?

I am forwarding netflow to NAC device which then detects endpoints based on netflow data. But it is detecting obsolete hosts in the dest IP fields as live hosts nd casuing lot of false positives. Is there a way I can instruct firewall to send just source fields in netflow export?Thanks.

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks