This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4118 Views
  • 0 replies
  • 0 Likes

Resolved! Cannot apply advanced filters for O365 API feeds

I'm trying to filter out unneeded/unnecessary indicators from our O365 feed, but no matter where I apply the filters I am still receiving all of the indicators. For example, I would like to filter on only indicators available over Express Route, and in the JSON you can see that 'expressRoute' is an available field with a boolean value of eithe...

benime by L1 Bithead
  • 13506 Views
  • 6 replies
  • 0 Likes

Resolved! Email alerts for utilised interfaces and HA status (active/passive)

Hi Gang, I have a server profile configured but completely unsure, even after some searching around. I'd like to generate email alerts for:Interface - in that their status changes e.g. data-link down, hard down, flappingAre the dedicated HA ports possible to be alerted tooFirewall goes into HA where the passive firewall takes overI know the answ...

Panorama HA Config question

Hi All, Quick question on my new deployment for Panorama. I have a HA pair with unique hostnames and IP addresses with firewall as an active passive pair. The migration steps state the following:Do not combine the HA firewall pair in to a single template if a unique Hostname, management IP address, or HA configuration is configured for each HA p...

a.jones by L3 Networker
  • 2819 Views
  • 1 replies
  • 0 Likes

Google Play Store Broken When SSL Decrypted

As part of our setup, at an independent school, we decrypt the majority of traffic and set rules to bypass where needed. As part of this, we've struggled to get the Google Play Store to work with decryption turned on. I've used a test phone without decryption and reviewed the URL logs to determine which URL(s) may need adding to a bypass rule. A...

Resolved! URL from URL filtering and SSL Decryption

Hi folks!I have an andriod device that has a news app installed and also included into the SSL decrypted devices zone. The traffic from this app is apparently has a certificate pinning because it doesn't show anything once started. Obviously, the Palo signed CA cert is installed into this android. The trick is that the app starts working if I re...

ovel by L2 Linker
  • 7928 Views
  • 4 replies
  • 0 Likes

Resolved! Configuring QoS

Hi, I'm still a little new to Palo Alto (but familiar with QoS concepts), and right now I'm trying to understand how QoS is configured on a PA3020 in production (configured by someone else before I was with the company). I can see a QoS profile called 'default', which is applied to two interfaces. However, there is no QoS policy at all.If I unde...

Luke_R by L2 Linker
  • 4794 Views
  • 4 replies
  • 0 Likes

Resolved! Multi-domain/child domain group mappings

We are in the process of moving two old domains into a new domain with child domains and have been having some issues with UserID and group mapping applying the wrong domain to users, which in turn makes it so the correct security policies don't apply. The general setup is this: Old1 and Old2 are the old domains (neither has child domains); Roo...

Resolved! OSPF question

I have a stub area - my office.But I have 2 paths into it from area 0.0.0.0Is it still a stub as its has 2 paths in and out. so area 0.0.0.0 via rtr A to area 10.172.0.0 or area 0.0.0.0 via rtr b to area 10.172.0.0 What I want it just the DGW sent it from both rtrA and rtrB

Resolved! Warning in panorama "app not found"

We are having a warning when we push in panorama: We have check the apps&threats version and everything is OK. Panorama version is 9.0.4. It could be a cosmetic issue?

appweb.jpg
BigPalo by L4 Transporter
  • 12947 Views
  • 13 replies
  • 1 Likes

HA link monitoring

Hi All, I apologize for the basic question and have to ask since I do not have a spare firewall pair to test with. Wanted to understand the link group configuration behavior when there are no interfaces specified under it. Palo Alto does accept the configuration so does that mean that all interfaces are being monitored or none of the interfaces ...

rahulbri by L1 Bithead
  • 7906 Views
  • 5 replies
  • 0 Likes

Access from dynamic Office 365 URLs to internal ressources

Hello,Im using minemeld to get the dynamic address (URLs, IPs) from office 365. If there are IP addresses, this works without problems via the EDL. In this case the EDL replace the source object.What about addresses that have a wildcard in the URL? These EDLs cannot be selected from the source object and must be saved using the URL pattern filte...

Wildcard domain + destination question

Hi..I want to be able to allow a specific set of apps to *.github.com. To do this would I simply specify a custom URL with *.github.com and destination of ANY? That would then only allow those apps to *.github.com? I ask just because I am wary of having the destination as ANY and not clear on which takes precedence. Currently I have it lock...

Annotation 2020-01-21 093816.png
drewdown by L4 Transporter
  • 3320 Views
  • 3 replies
  • 0 Likes

Mgmt interface stop working

Hi. I have a PA-500 and after a storm, the management interface stopped work. When I connect a network cable the leds doesn't work.I made a configuration to access the Firewall and to use some services throught another interface, but the "Log Scheduled Export" doesn't have this option.How can I solv this problem?

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks