This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4139 Views
  • 0 replies
  • 0 Likes

Resolved! How to create IPv4 list from a text file

Hi community, I am encountering decrypt-err with Anydesk application after deploying SSL Decryption. In order to fix that, I am going to create a list of Public IPv4 that Anydesk use to excludes them from the decryption. Currently I collected an IPv4 list and want to create an EDL so I can simply add them to exclusion list. I have created and us...

tienngo by L2 Linker
  • 11915 Views
  • 9 replies
  • 0 Likes

PAN-OS Upgrade

We're planning to upgrade the PAN-OS from 9.0.6 to 9.1.X version.Which is the stable 9.1.x version? Thank you.

set readonly commands

Found a bunch of config lines as such. Where/how? Can't delete them. They don't appear in the GUI. set readonly device-group grpname address-group NAME_LAN_GRP id 289set readonly device-group grpname address-group NAME_LAN_GRP id 290set readonly device-group grpname address-group NAME_LAN_GRP id 291set readonly device-group grpname address-grou...

luchette by L1 Bithead
  • 4194 Views
  • 3 replies
  • 0 Likes

Resolved! How much bandwith are GlobalProtect clients comsuming?

Hello, Is there a way to see the bandwidth that VPNs clients are using when they are connected through a VPN? I have not seen any specific report for GlobalProtect statistics, for example in ACC. Just logs in the tab Monitor, but they are not showing the activity of the users. Regards,

iscott by L2 Linker
  • 5695 Views
  • 5 replies
  • 0 Likes

Force GlobalProtect client to only apply to 1 of 2 ethernet connections

I have 2 physical ethernet ports on my Windows PC. 1 is for external internet and connecting to work VPN. The other is for a local-only ethernet network. When I connect to my office VPN via GlobalProtect, I lose access to the devices on my local-only network. How can I tell GlobalProtect to only apply to traffic on ethernet port 1? Why is it red...

Panorama space issue

8.1.0 is 782MB and 8.1.8 is 422MB. I deleted them both but i still cannot directly download 9.0.8 which is 423MB.I have also followed this KB and deleted content updates but still no go. Manual upload did work. https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PLSJCA4 Before upload show system disk-spaceFilesystem Size Us...

raji_toor by L4 Transporter
  • 4111 Views
  • 4 replies
  • 0 Likes

Resolved! Two Directly Connected PANs via IPSEC- Do I Need to Build Tunnel Interfaces

We are having installed a 10 Gbps Light Wave service for a WAN connection and will have PANs on either side. (The PANs will be on the same /30 subnet, and the Wave service appears to be a raw fiber connection terminated on physical PAN L3 interfaces). We want to authenticate the other end and encrypt using IPSEC. Do I need to build a tunnel inte...

Resolved! NFR VM-Series Firewall

Hi, I am new in Palo Alto Networks and have few questions about NFR VM-Series Firewall. Hope you can help or guide me please. 1) How to get NFR VM series licenses?2) What are the options for NFR VM?3) How to license them? I do have partners login but currently doesn't have an access to support portal.

Ludolfo by L1 Bithead
  • 7153 Views
  • 3 replies
  • 0 Likes

Needed confirmation on firewall Port spanning or port mirroring

Dear Team, As per the customer requirement we want to perform Port spanning or port mirroring on the firewall interface so we need confirmation whether it is recommended from Palo Alto and if we perform this will there be any impact on the firewall as firewall is in production at data center or is there any alternate method for this. Request you...

Resolved! What ports are needed for site to site IPsec tunnels to work?

We have 2 palo alot firewalls & we are trying to establish a ipsec tunnel between both. We proved that all vpn configurations are correct and were able to establish the tunnel & pass traffic but only if we add a firewall rule saying allow any/any/any/any at the very top of the rule base, which goes against our security requirements. O...

Resolved! TSF file has entry of Core files but downloaded bundle says otherwise

Dear Patrons, I had an issue with PA where secondary active firewall stopped processing the traffic and unable to access the device from remote as well. We did a hard reboot to bring up the device and the connection restored successfully, but we wanted to investigate hence downloaded the Tech Support file and found HA2 went down, and also there...

Non business customer obtain PanOS downloads?

We use two PaloAlto PA-220 firewalls at my work place, and I have been so amazingly impressed by the GUI interface and all the reporting tools on PA devices (especially the Application Command Center ), I was considering piking up a 2nd hand PaloAlto PA-820 or PA-850 from eBay and using it at home with my existing Cisco SG-350X-24P Switch.Bas...

eveares by L1 Bithead
  • 4725 Views
  • 4 replies
  • 1 Likes

How to allow access to OWA to selected external users?

Hello everyone,I was hoping to get couple ideas on the problem that we currently have and cannot give a solution yet.About a year ago we were able to migrate our old firewalls infrastructure to PAN.We had 1 firewall facing internet(Sidewinder) - basically for Destination NAT functions, MS ISA server as proxy and main firewall (behind Sidewinder)...

Global Protect Gateway - Split-Tunnel Exluded Domains

Hello I am trying to exclude some domain from coming through the gateway to improve user experience so they are not hair-pinning through our DC's at the moment I have no access route entered so I am running 0.0.0.0/0 out of our DC's - there are are certain domains for Microsoft updates, teams and hosted business services when I add them to exclu...

Jake_Ryan by L1 Bithead
  • 13204 Views
  • 13 replies
  • 0 Likes
  • 24340 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks