This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4110 Views
  • 0 replies
  • 0 Likes

Global protect - Windows issues

Hi, We are having any issue wih globalprotect and several feaures of windows (office store, images word...).we realised that if we configure de default gateway made by hand in PAnGP interfaces, its working fine. Why is this happening?Is there any way to add atumacticallyany default gateway in PAnGP interface? For Windows store we found this link...

BigPalo by L4 Transporter
  • 4823 Views
  • 5 replies
  • 0 Likes

Resolved! Custom Application v default-Application

Hi, Am planning to replace the services in my environment with custom applications. My question is this? (1) - Must I use application override to use custom application?(2)- While using custom application, can I use default-application on the Service Column? Or should this column be set to Any since the default app is not in use Thanks

Resolved! Config Audit PDF Report

Hi all lovely people of Palo Alto Live, I want to see if there is a way to generate a custom (or in-built) report for the config changes on the Palo Alto?For example, the requirement is that a weekly report is needed on what changes are made by which administrators in the past week, or the difference in config between today and the config 7 days...

MHamad by L2 Linker
  • 11506 Views
  • 5 replies
  • 0 Likes

UserTrust CA certificate expiry on the weekend causing sites to be blocked

Hi, It appears that the UserTrust root CA and the Comodo RSA CA certificates expired this weekend and now my users are getting blocked since the certificate has expired. The sites are accessable through chrome when not behind the Palo. I've tried importing trusted CAs and the only thing that works is to add the site to a URL list and exclude...

jpage386 by L0 Member
  • 3494 Views
  • 1 replies
  • 0 Likes

Chinese characters are populating automatically in GP username

I am having experience in the global protect agent login window when the user starts logging from the machine. Chinese characters are populating automatically in the GP agent username logging field window, and users have to clear the character to enter their username logging into GP.And this issue came after the upgrade of the Palo Alto global p...

GP.JPG

Resolved! Sectigo wildcard certificate problem for Globalprotect

Dear Community, I've recently purchased a wildcard certificate, that I intend to use it on our firewall for globalprotect. It is a single device, and gateway is configured as external gateway (it provides only vpn access from the external world). I've installed the certificate, without any issue, but CA is not ticked on that. Therefore I cannot ...

KovBal by L0 Member
  • 9511 Views
  • 6 replies
  • 0 Likes

Resolved! External Untrusted Site LDAP via NAT to Trusted Windows AD server

Hello. I have reviewed a number of PA article and Live Video's and still am not sure my NAT and Security policy are functioning.PA-220.Below is the monitoring log I am seeing. I expect to see 389/LDAP to complete and show some NAT details - which I am not. The source (External site) will be sending the LDAP requests from 52.38.125.245 or 54.1...

PA LDAP Security policy.JPG
PA LDAP NAT policy.JPG
catrock_0-1590991417560.png
catrock by L2 Linker
  • 3276 Views
  • 2 replies
  • 0 Likes

Resolved! User-ID Agents

Hi, I'm digging deeper into User-ID agents, and I'm aware that I have two options; The Windows agent, and the PAN-OS agent. If I have a Windows domain, and no other directory services, is the Windows agent the best choice?Is there any benefit to configuring both? Or is this completely unnecessary? Thanks!

Luke_R by L2 Linker
  • 5481 Views
  • 4 replies
  • 0 Likes

Resolved! Global Protect SMB traffic slowness

Hi Team, We are using global protect to connect to corporate file sharing server. Once GP is connected we are able to copy and paste the file from fileserver which is mapped in my local machine. But the issue is it is very slow. Like only 373Kbps traffic only passing in it. But when we use different VPN like Sonic wall Speed is good. Can appli...

SSL Decryption

I have never configured any type of SSL decryption so how do I check for it, what all can be configured to use it and is there decryption that occurs by default with no configuration

jdprovine by L4 Transporter
  • 7458 Views
  • 8 replies
  • 0 Likes

Resolved! Move VPN DHCP off Palo Alto

We are currently running DHCP off of our firewall for all external VPN users. I would like to move this DHCP to our 2019 windows servers. I have looked around trying to find out how to move this but can't find much. Can someone point me in the right direction?

Resolved! How NAT Oversubscription works?

Hi experts, I am trying to understand how NAT oversubscriptions works in Plao Alto. What will be its exact use case and how firewall behaves in default settings?

Vikashh by L2 Linker
  • 8952 Views
  • 3 replies
  • 0 Likes

Importing configuration from Panoram shared template to a single PA-VM

Hi,I am setting up a PA-VM50 that is in an isolated environment solely for testing any changes before we deploy to our production physical Palo's managed by Panorama template and template stack in a device group.I would like to save myself a heck load of time by being able to import most of the object configuration and pre-rulebases. I don't min...

Resolved! Workaound for PAN-OS: Predictable temporary file vulnerability

There is no workaround available for this vulnerability https://security.paloaltonetworks.com/CVE-2020-1981A predictable temporary filename vulnerability in PAN-OS allows local privilege escalation.This issue allows a local attacker who bypassed the restricted shell to execute commands as a low privileged user and gain root access on the PAN-OS ...

Deepak_K by L3 Networker
  • 2833 Views
  • 1 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks