This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4110 Views
  • 0 replies
  • 0 Likes

Template Stacks for HA (Active\Passive)

Looking to deploy template stacks to all of our managed firewalls from our Panorama 8.1.x. I am wondering how to deploy STACKs with values unique to each individual in a HA (active\passive) pair. Some settings would include: Hostname,HA configurationsOther device unique settings When we create seperate stacks for each firewall we get an error (a...

Palo Alto 8.0.7 basic ospf configuration not working with aruba switches

Folks, We have 2 Palo Alto FW and 4 aruba switches in the same area (area 0), we are noticing that the aruba fw is loosing neighbor relationship with the routers every couple of seconds 30-60 seconds. The configuration is very simple, any ideas? guys i have palo alto and aruba switch in the same area and there neighbor relationshio ...

tpahuja by L0 Member
  • 3041 Views
  • 1 replies
  • 0 Likes

Adding filter "?v=panosurl" broken access to all websites

Custom URL category is configured to block phishing URLs collected from Linux MineMeld server through EDL. For some reason adding filter "?v=panosurl" (https://10.9.0.60/feeds/phishing-url?v=panosurl) to retrieve URLs in PAN-OS supported format (malware.com) is creating issue as all the websites are categorized as phishing and blocked. Using wit...

Resolved! PAN-OS Software Release naming?

Just upgraded to PAN-OS 8.1.9 on our PA-500 a few weeks ago. Just saw that 8.1.9-h4 is available now. Wondering what the significance is of the "h" in the name of the release version.

9.0.3 -h3 - Possible bug?

Hi, anyone had issues after updating to this version? We had strange behaviour accessing some websites stating that 'File Transfer Blocked' there was nothing showing in the logs. We rolled back to 9.0.3 and problem went away. Possible bug ? D.

BizBo by L2 Linker
  • 3271 Views
  • 2 replies
  • 0 Likes

Global Protect external IP address - Best practice?

Hello, We are a moderately-sized customer without an assigned sales or engineering resource due to account transitions. We are in the process of moving to a new ISP and it has been suggested by internal resources, for other reasons, to utilize the same IP for the Global Protect Gateway as is already assigned as the outside IP on the public inte...

Resolved! False positive threat

Hello, PA-3020 is falsely identifying some adobe-creative-cloud-base traffic as being a threat. I can't add an exception for this as the log view does not contain a threat ID as it normally would for a threat. All of my dynamic updates are up to date.The URL filtering profile is set to ‘alert’ for computer-and-internet-info (I have most of the...

1.jpg
2.jpg

Resolved! debug dataplane for vwire and flow

if we have PA in vwire mode for troubleshooting purposes we can do pcapAlso we can do debug dataplane packet-diag set log feature flow basic Other then this can we use any other flow for vwire troubleshooting?

MP18 by Cyber Elite
  • 4363 Views
  • 4 replies
  • 0 Likes

Cisco ASA multi Context migration

I am migrating a configuration over from a Cisco ASA that uses multiple contexts and have several questions about how to replicate that in a PA. 1. The ASA's use port-channel groups and for the internal and external those are shared. On the inside interface each belongs to the same group but uses a different VLAN tag. On the external interface, ...

aporue by L3 Networker
  • 7486 Views
  • 3 replies
  • 0 Likes

Resolved! DNS security and cloud lookup

With PAN OS 9.0 Does PA do cloud clookup for everydomain or only for domains which are not in DNS sinkhole of Antispyware profile? I was told DNS security is a part of PAN DB so when clouds verdict is that particular domain is bad hows does this info come to PA in real time? I know it comes via Management interface but which security profile...

MP18 by Cyber Elite
  • 5487 Views
  • 4 replies
  • 0 Likes

Resolved! Policy rule hit-count data is not stored on the firewall or Panorama

For link below https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-new-features/management-features/rule-usage-tracking Policy rule hit-count data is not stored on the firewall or Panorama so after you clear the hit count using the reset option, that data is no longer available. Where is this data stored??

MP18 by Cyber Elite
  • 6622 Views
  • 2 replies
  • 0 Likes

Resolved! commit error

today i got commit error Client websrvr requesting last config in the middle of a commit/validate. Aborting current commit/validate. Commit failed Fix was i just need to run the commit again.Need to know why this commit error occured?

MP18 by Cyber Elite
  • 9078 Views
  • 2 replies
  • 0 Likes

Setting All traffic of a specifif URL to the primary ISP

Hi Everyone! How will I set all traffic from https://www.siteground.com/ to my primary ISP? Because Currently we have two isp and running in a balanced round robin. The issue is whenever we go to the website it shows an error "Due to ip changed instantly"What are the procedures and confgurations should I do? Thank you

AVITUTS by L0 Member
  • 3397 Views
  • 3 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks