This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4115 Views
  • 0 replies
  • 0 Likes

Resolved! can netflow forwarding be filtered?

I am forwarding netflow to NAC device which then detects endpoints based on netflow data. But it is detecting obsolete hosts in the dest IP fields as live hosts nd casuing lot of false positives. Is there a way I can instruct firewall to send just source fields in netflow export?Thanks.

Credential Phishing with credential submission method as Use Domain Credential Filter

Hello team, Customer has configured Credential Phishing with credential submission method as Use Domain Credential Filter and it does not workThe user id agent is configured on the writeable domain controllerBut according to the below document to enable credential detection, must install the Windows-based User-ID agent on an RODChttps://www.palo...

output.PNG

ZTP - Zero Touch Provisioning on Palo Alto Devices

Hi,I just saw this video from Palo Alto on the ZTP feature for branch agencies deployments. https://www.paloaltonetworks.com/resources/videos/zero-trust-provisioning Is there already any documentation better describing how this feature is working ? I have checked the PAN OS and Panorama Admin Guides for ver 9.1 and there's no mention of a ZTP f...

Clientless VPN Loading Issue

Hi Friend, I have configured clientless VPN and application render to outside through clientless VPN portal. All authentication fine and I can see application icon also. But when i press it application redirect and it may takes more than 2 min to load. After first load its loading quickly. Please any suggestions. ThanksLakshitha

Resolved! MineMeld - Office 365 - How can I disable miners?

I am working on Office 365 control and I have discovered that MineMeld seems to be the best way to do this. To that end, I have set up a MineMeld server and imported the PAN-provided script for Office 365. There are some Office 365 features that we do not want to allow at this time, such as OneNote, SharePoint Online, and Yammer. I see that I ...

Need help to Delete a VM device registered with my Auth Code

I built a lab on Hyper-V to test and learn PA NGFW for my exam PCNSA, but unfortunately my Window Server crash and I had to replace Hard disk. I login to my PA account to deactivate that license but it is asking for license removal token which I can only get from VM , but that VM no longer exist.. How can i remove that license from my Account .N...

Resolved! Security Policies not working as expected

three are IP address need to reach the head office through a special WAN network from DR end. The NAT Policies for all three IP addresses are the same and they are all called in the same security policy. But only one IP address is going through the policy as expected, the other IP address is not reaching the destination and they are not going th...

Resolved! Problems connecting to Azure Devops

Hi, We use a PA3260 with PanOS 9.0.7.Since 2 months our programmers have problems connection to Azure Devops. The always lose the connection several times a day.When they work from home there is no problem, so I think the problem is the firewall. I already searched in the monitoring for deny's or SSL decryption errors but can't find anything. Af...

Azure_Devops_Problem.png
ZEBIT by L3 Networker
  • 8062 Views
  • 6 replies
  • 0 Likes

GP agent upgrade

Hi Team, Users already upgrade version GP from 1.2.1-15 to 3.1.3.-21. But on dashboard firewall, it show GP version 1.2.1-15 .? How to upgrade GP version on dashboard Firewall PA. and when users connect to vpn. GP keep ask to downgrade version. but I already disable auto update.For end users, they already upgrade latest version. PA-500

Resolved! Rename CN name certificate GlobalProtect .

Hi Team, I have question, currently, on firewall PA-500, we do 2 gateway VPN. Its mean have 2 WAN(ISP). So few users will use VPN via WAN1, and few users will use VPN via WAN2. Existing VPN using WAN1. So certificate CN name(IP address) point to Gateway WAN1. after added WAN2 and new gateway from WAN2. We notice have certificate mismatch when...

Setting user permissions with AD for certain devices and GP

Hello,I am currently experiencing an issue with GP VPN. In AD we want to set user permissions to certain devices. However when we do this we cannot login to Global Protect VPN, it will say invalid user name or password. However if we set the permissions to all devices it works. We are needing permissions for only certain devices. Does anyon...

ShinLor by L0 Member
  • 2104 Views
  • 1 replies
  • 0 Likes

Why Firewall is not detecting Active Directory?

Hello, I have configured the User-ID to authenticate Global Protect's users and for User Mapping. But, the Firewall shows the LDAP as "host unreachable". I don't have an MGT IP address, but I have changed the LDAP's service route to look for LDAP's request in the internal interface. Also, I have checked the User and Password in the Server Profi...

iscott by L2 Linker
  • 4511 Views
  • 2 replies
  • 0 Likes

No Review Policies option after new content updating

For new app-id content version, I downloaded and installed new content version 8275.As usual, I found review policy option in action column after installing new content.But I haven't found this review policy option after installing new content.Current PANOS ver: 8.1.10I concern it happen because of panos version. If not, anything else and possib...

review_policy issue.png
Su_Myat by L0 Member
  • 2599 Views
  • 1 replies
  • 0 Likes

Resolved! VM-1000-HV

Hi Community, my last state, was that the VM-700 is the biggest possible VM-Series firewall.I just noticed here, that the VM-1000-HV exists and seems to be related to the VM-300 performancewise.https://docs.paloaltonetworks.com/vm-series/8-0/vm-series-deployment/about-the-vm-series-firewall/vm-series-models.html Can anybody tell me, what the -HV...

Chacko42 by L4 Transporter
  • 9222 Views
  • 5 replies
  • 0 Likes
  • 24333 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks