This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Content translations are temporarily unavailable due to site maintenance. We apologize for any inconvenience.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 488 Views
  • 0 replies
  • 2 Likes

Resolved! Firewall upgrade/replacement

What is the easiest way to replace old hardware(5050) with new(5520), that are in HA pair. Can i add 2 new firewalls to the HA group and failover. Or do i have to replace passive with new, make it active then remove the other.

raji_toor by L4 Transporter
  • 8012 Views
  • 4 replies
  • 0 Likes

URL Response Page for SSL without decryption

Hello everyone,

 

we have PA7050 managed by panorama. We dont have SSL decryption but we want to serve users a block url response page for https traffic. For that I followed following link:

 

https://live.paloaltonetworks.com/t5/Configuration-Articles/Ho

...

Report mismatch

We are facing issue with mismatching of bandwidth statistics between our weekly report and custom total bandwidth report.

 

For example, on 11 Nov the bandwidth shown on the weekly report is around 2000GB but the one shown on the custom total bandwidth

...

Report.jpg

Not seeing any security events in the dashboard

Hello all! I've had a strange thing happen in the Traps dashboard. No security events for an entire month. Not even low or medium. I find this hard to believe. I've just run the test malware file and it did pop up on the endpoint and it did report th

...

Getting a list of smtp.office365.com IP ranges

Hi,

 

Pretty new to MM and so far I have it up and running in Azure.

I used the O365 guide and it worked well however I was wondering if there is a way to get specifically the ranges used for SMTP and if someone could potentially help me with that?

 

...

TyronF by L2 Linker
  • 12350 Views
  • 5 replies
  • 0 Likes

Field name of "Name" at Palo Alto Threat logs

May I know what is the field name of "Name" at Palo Alto Threat logs, i've checked the documentation on https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-admin/monitoring/use-syslog-for-monitoring/syslog-field-descriptions/threat-log-fields but it

...

a.png
yaboixd by L0 Member
  • 2325 Views
  • 2 replies
  • 0 Likes

Resolved! DoS protection policy process order

Hi All,

 

Basic question and l think l know the answer but just would like to confirm.

Is it the same for the DoS protection profiles if you compare with normal security policies, fist match from top to bottom?

I have a general DoS rule with broad src an

...

myky by L3 Networker
  • 3213 Views
  • 2 replies
  • 1 Likes

TCP / UDP Flood

Hi all,

I have set up a dos rule from outside to my server zone.

Why sometimes I can see attacker and victim IP and sometimes not?

 

s_quasar by L3 Networker
  • 5775 Views
  • 4 replies
  • 0 Likes

Cisco ASA to Palo Migration for ACLs

It seems to me that the "migration" from Cisco ASA to Palo is not apples to apples. Working in ASA for quite some time I am able to control traffic as what I allow in to the interface....So if I have 14 security zones I can control what comes into in

...

Allow downloading from Akamai or other CDNs

PANOS 8.1

 

Hi all - I have ongoing issues with trying to control downloading of files from CDNs. An easy example is .cab files used by Microsoft Office templates. When you download a template it goes off to a page off: templatesmetadata.office.net, bu

...

SARowe_NZ by L3 Networker
  • 4058 Views
  • 2 replies
  • 0 Likes

Resolved! Multi VSYS, VRs and ARP tables?

Hello team,

 

I will be deploying a couple of 3250s in HA and multi VSYS, and VRs.

 

My main concern is that are we getting separate ARP tables per each VSYS/VR? Let me give you some more background about what we will try to achieve:

 

We want to create 4

...

clipboard_image_0.png

Resolved! Block all traffic but a single IP Address

Let me start by saying that I am not a firewall expert by any means but I think the task I have is simple. I want to block all traffic through a PA-500 except for a single conversation between a dedicated machine on each side of the firewall. Is ther

...

hdaigle by L0 Member
  • 4399 Views
  • 3 replies
  • 0 Likes
  • 23712 Posts
  • 110 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks