This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4139 Views
  • 0 replies
  • 0 Likes

Resolved! SFP Compatibility for PA-820

Hi All, I would like to know please a compatible Brand of SFP ports 1Gbps MMF for Firewall Palo Alto PA-820, for this FIrewall the SFP model in Palo Alto is: PAN-SFP-SX . I have been told that the brand Finisar model: Ftlf8519p3bnl is compatible with that. I would like to make sure about that please since I am in Bolivia and it is really hard...

PBF rule with src zone 'any'

Does anyone if it is/should be possible to configure a PBF rule with src zone any?The inline help says "To choose source zones (default is any), click Add and select from the drop-down." but 'any' is not an option when I actually try to create the rule in Panorama and I'm forced to choose a zone to be able to save the rule.

pkaren by L1 Bithead
  • 2672 Views
  • 2 replies
  • 0 Likes

Measure CPS practically

Hi Guys,We have PAN VM 300. To implement Zone Protection, we want to measure CPS. Now we dont have Panorama and dont do firewall monitoring with any tool.Now the admin guide suggests that:Use third-party tools such as Wireshark or NetFlow to collect and analyze network traffic.Use scripts to automate CPS information collection and continuous mon...

Resolved! Is PAN-OS 9.0 recommended version for PA-3020 device?

Hi, Is PAN-OS 9.0 recommended version for PA-3020 device? I can see the OS 9.0 is supported to PA-3020 but not sure whether is recommended version for PA-3020? Also, I have gone through the known issues about OS 9.0 and looks like no major impact that could affect on to the network. However, I would like to stick with a recommended version so pl...

ChiragP by L2 Linker
  • 5648 Views
  • 3 replies
  • 0 Likes

Panorama on ESXi resources

Hello community, we would like to build virtual Panorama and log collectors as virtual machines on ESXi.Does anybody know, if resources like CPU and memory must be dedicated to these machines only or can they be shared?I cannot find it in any documentation. Thank youRegardsRoman

Bandwidth limitation per policy

Hello All, I have filled the local database with users because we do not have an Active Directory, i create a captive portal to enforce the users to do authentication. in the polices i have grouped the users depends on what they should go through network. I need to know if there is any way to limit the bandwidth for wan connections depends on th...

diferente Version PAN 3220

HiThe new PA3220 device (FW2) has PANOS version 9 installed, but the firewall (FW1) that is operative is on PANOS 8.1.3.What are the steps to update the FW1 to the actual version of PANOS?

Global Protect Authentication Profile

Hi I have setup Global protect and I want to use it with LDAP Authentication profile. It works fine however when in the auth profile I add a specific AD group so only users in the group allow to connect to VPN it doesn't work. Even sometime with specific group added others users can connect to the VPN or it doesn't allow anyone to connect. Alrea...

umar00o by L2 Linker
  • 2714 Views
  • 2 replies
  • 0 Likes

Resolved! Azure Active Directory IP ranges

Hi all, I'm trying to use Minemeld to create an EDL that includes only the IP address ranges used by Azure AD. I've tried a few things, but can't seem to get it to work. My current setup is as follows Miner = cloudIPsWithServiceTags Processor = based on stdlib_aggregatorIPv4Generic but using the following config infilters:- actions: ...

dpurton by L0 Member
  • 14365 Views
  • 4 replies
  • 0 Likes

Wildfire Public Cloud - email

We’ve recently upgraded our PAN from 8.0.4 to the latest version (8.1.13) successfully. Now the issue is that we’ve been getting an email stating that “registering Wildfire Public Cloud has been successfully” every 20 minutes. Is there a way to make this particular email to stop? Subject: INV-FW1 - SYSTEM ALERT : medium : Successfully registered...

SD-WAN - routing with variables

Anyone been trying to setup SD-WAN routing with template variables? Surely that page in admin guide is completely wrong? Variables should be of type IP address.

santonic by L6 Presenter
  • 4053 Views
  • 2 replies
  • 0 Likes

Resolved! Download the licenses to PA 3220

What options are there to download the license on a PA3220 replacement of a failed PA 3220 , which cannot connect to the internet, please inform me how to do it thanks

Resolved! Palo Alto Traps Support for SQ1 processor

An error while installing the Palo Alto Traps. The error This installation package is not supported by this processor type, contact your product vendor. As per Palo alto Traps, Agent will support Intel and AMD processor only and I have Processor Microsoft SQ1 @3. 0 GHz, 3.0 GHz How I can install Traps on Mircosoft processor or any other alternat...

Resolved! Deny rules with service application-default

It is not clearly described in documentation and I could not find a complete topic related to it. How does application:any, service:application-default behaves when apply to a “Deny” rule? Presumably it will block the application if application is detected on a default port, but normally deny rules do not have recognised application, because of ...

batd2 by L4 Transporter
  • 7518 Views
  • 3 replies
  • 0 Likes

Resolved! Syslog Custom Log Format

If I use a custom log format for syslog does the new custom format replace the existing default format? So if I want syslog to send before-change-detail and after-change-detail do I have to add every default field to the new custom format so I get default+custom?

  • 24340 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks