This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4111 Views
  • 0 replies
  • 0 Likes

Question about Service Route Configuration

I just inherited a PA-820 and know nothing about this device. It's unable to connect to the cloud for updates. Currently it's service route is set as the default (Management Interface). I was told by support to switch it to an untrusted interface to resolve this. I can see how that is done via this article: https://knowledgebase.paloaltonetw...

Cmaddox by L0 Member
  • 4372 Views
  • 2 replies
  • 0 Likes

Cannot check for new Dynamic Updates

Hello, I have a PA-200, version 7.0.10 (I know, too old) I'm planning an upgrade to 8.1, but I understand that I have to download Dynamic Updates before upgrade, am I right? The issue is that I can't Check for Dynamic Updates, I've tried with Check Now, but nothing happened, neither with command request content upgrade check: Version Size Releas...

emendezo by L1 Bithead
  • 5970 Views
  • 6 replies
  • 0 Likes

Files' upload problems

Hi.I'm searching for someone can help me.My problem started when I tried to upload custom logo for the login page.The upload fails becouse the process blocks itself and never ends.I had the idea to try the "Import named configuration snapshot" function in the same web page of PA3260 administration site.Thinking it would be failed, I used the log...

Denied traffic even though GlobalProtect HIP check passes?

Hi all, I have a PA-3020 that is configured for GlobalProtect. All is good as far as being able to connect to the VPN, but once I am connected I find that I'm having issues connecting to servers that are permitted in security policy, but have the HIP Profile attached. If I remove the HIP profile the traffic flows as expected. The HIP profile is ...

PA 820 to PA VM migration

we have implemented PA 820 in one of our client places now we are facing issues in hardware. We need to migrate the entire configuration to the PA VM series firewall. Let us know the procedure to migrate the entire configuration from PA 820 to PA VM Series.

SBAINFO by L0 Member
  • 3158 Views
  • 2 replies
  • 0 Likes

Global Protect with SAML Azure Authentication and disconnect tab on client

We have configured the global protect 5.0.6 with SAML Authentication.It is same authen profile on both portal and gateway. I have unchecked the authentication override on both portal and gateway.Seems when i connect to the client and when i disconnect it does not send me push notification on phone?Is this the default behaviour? When i click on s...

MP18 by Cyber Elite
  • 5769 Views
  • 5 replies
  • 0 Likes

Resolved! Management Interface Permitted IP Addresses & other devices

Hello all, Our PAN-OS Management Interface Permitted IP Addresses (on both Panorama and firewalls, version 8.14) contain IPs for the firewalls and both members of the Panorama cluster. These weren't set up by me and I'm wondering if that's necessary. I have read an article that said that that device configs, log retrieval, etc. are managed ove...

Resolved! Traps Uninstallation Issue

I’m trying to install the latest version CortexXDR 7.02 however I’m unable to remove the previous Traps installation that is still shown in the registry files. We are on current Traps agent 6.11.18549 and we can remove this successfully however unable to remove Traps agent 6.00.4961 This is what I’m using below in a batch file: (did not include ...

Resolved! Phone calls random failing to connect at remote locations - Cisco Call Manager

We are in the process of converting over to Palo Alto firewalls at our remote locations from ASA firewalls. A few of our sites now are having some strange issues when attempting to make phone calls.We are a Cisco call manager shop. Here is a basic setup of our network:Remote Office <-Site to site VPN tunnell-> Main Office Voice setup betwe...

Need to block WINSCP application but want to allow ssh

Hi Team In sec policy I have allowed for some users only RDP and SSH application. But these users are able to use WINSCP application because WINSCP application also using port 22. I want to block winscp application but allow ssh application. How can we achieve this ? Please help us. RegardsMohammed Asik

Resolved! SSL inbound inspection delay

hey all, I've deployed SSL inbound inspection, connection gets really slow when SSL Inbound Inspection.It takes almost one minute for the page to be loaded. Without SSL it takes 2 secs. Would any of you have a clue what could be causing the problem?

WRibeiro by L1 Bithead
  • 6526 Views
  • 3 replies
  • 0 Likes

Show A Warning Page When Loading A Block Website

Hey,Is it possible to set up either a warning page or auto email to the specific user when trying to access a blocked site, currently it just doesn't load and wonder if I can set up a notification to the user that the following page is not allowed?

DHCP Server Reserve a long list of IP addresses

Hi everyone,I have a list with more than 50 mac addresses, I want to configure PA DHCP Server to reserve IP addresses to these MAC addresses, is there an easy way to make reservation instead of enter these 50+ records one-by-one? Thanks. Regards,Daniel

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks