This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4112 Views
  • 0 replies
  • 0 Likes

GP client fedora certificate

HI, We are trying to go up a VPN using Global protect client in fedora device. We have read that global protect 4.x requires that the certificate be signed by a trusted CA. Our certificate is self-signed. So we have GP client version 3.1.x because we whitnk its not neccessary a certificate signed by CA. Is this true? whats are the requisites for...

BigPalo by L4 Transporter
  • 4258 Views
  • 3 replies
  • 0 Likes

Resolved! Migrate PA-220 from company account to personal account

I received a PA-220 through my previous employer. For this the PA-200. I've been using them for years. I have been working for another employer since 1 April 2019I can keep the PA-220 as a farewell gift. But now the license has expired, and I cannot license the PA-220 since it is still in the name of my previous employer (Stibbe). I want to pay ...

Biga01 by L0 Member
  • 3138 Views
  • 1 replies
  • 0 Likes

Current stable release for PAN-OS 8.1

Hello, I was hoping someone would be able to tell me what the current stable release for 8.1 is? I am planning to upgrade from 8.0 in the next couple of weeks. I see that 8.1.8-h5 has been available for over a month so was wanting to check if this or 8.1.7 is the recommeneded release?

site to site ipsec vpn question

Hi,I have cisco cucm on Head Office and Branch there is phones also cucm server ip is 10.0.2.10 and phones are head office also in the same network . And I want phones in branch also in the same network ( it 10.0.2.10 ) Can I achieve these using ipsec vpn How can i do that ?Thanks

simsim by L4 Transporter
  • 3425 Views
  • 1 replies
  • 0 Likes

New to Minemeld for O365

Hello - So I followed these instructions as best as I could (new to Palo Alto as well): https://live.paloaltonetworks.com/t5/MineMeld-Articles/How-to-Safely-Enable-access-to-Office-365-using-MineMeld-Updated/ta-p/224148 My issue is, how do i know if i did it right? There were so many links in that article that led to other articles which led ...

Shawverr by L3 Networker
  • 2879 Views
  • 1 replies
  • 0 Likes

Resolved! MineMeld URL Access Error

I have setup MineMeld on a VM and it seems to be working correctly but, when I setup the EDBL on a PAN firewall and test it, I get a "URL access error" message on the firewall. I can access the feed if I put the URL into a browser and can see the list of addresses. I get the same error whether using the IP or FQDN as the Source. I've even gone...

Ash2k by L2 Linker
  • 23073 Views
  • 9 replies
  • 1 Likes

Resolved! UserID compatibility

Just to confirm, we have several FWs in 8.0.11, we are going to upgrade to 8.1.7. First of all we will upgrade the userId agent to version 8.1.x. I understand that UserId 8.1.x can work with FW in 8.0.11. right? What fws version can support userid agent 8.1.x? all the fw lowers version (7.0, 7.1,8.0,8.1??

BigPalo by L4 Transporter
  • 4304 Views
  • 1 replies
  • 0 Likes

Resolved! Minemeld Azure

Hello, I have a use case in which I need to create a custom miner for Azure, but only mine for uswest and uswest2 regions. Is this possible?Thanks in advance

Resolved! Experience with migration to PAN-OS 9 regarding URL filtering changes

Does anybody has experience with migration to PAN-OS 9 regarding URL filtering changes? Today with PAN-OS 8.1Url-Filtering Profile 1 with Override Allow list: Url 1, Url 2, Url 3Url-Filtering Profile 2 with Override Allow list: Url 2, Url 3, Url 4Url-Filtering Profile 3 with Override Allow list: Url 3, Url 4, Url 5 During migration to PAN-OS 9 (...

Anon1 by L4 Transporter
  • 6797 Views
  • 3 replies
  • 0 Likes

FQDN based PBF

Hello, I have a customer who wants to replace proxy servers to NGFW.The proxy server is used for website filtering as well as URL based routing especially for G Suite. Unfortunately, PBF policy rule doesn't have URL as match criteria and only FQDN object can be used for that purpose.But google publishes some wildcard or single digit number URLs ...

tmyzw by L2 Linker
  • 4699 Views
  • 2 replies
  • 0 Likes

Linux system Patch Issue

Currently we are facing a peculiar issue with Linux system, which when connected to URL but are unable to fetch the OSquery packs from the mentioned URL. The same url is working properly when the linux system is connected to an open internet & able to download the packs. We have already allowed the Destination ip’s of URL in our firewalls. ...

Email sending times out when GlobalProtect connected

Hello, one of my colleges has an issue when GlobalProtect VPN is connected, the sending emails in outlook times out and all emails stay in the outbox. SMTP port is 8025 please help me with any hint, read through google results and could not solve the issue. HEBA

Problem with Support Account

Hi,I've just created an account with a PA-220 associated to it following the official documentation found in https://docs.paloaltonetworks.com/pan-os/8-0/pan-os-admin/getting-started/register-the-firewall#I've finished the activation of the account but when i sign in i get the following message"You have no active memberships in the support porta...

Resolved! Conditional NAT (Nat source when destination is A but do not Nat the source if detination is B'

HI Guys This is very urgent! Wondering I can get a response quickly. I have several VPN clients accessing 2 servers in DMZ. The server A has evolved and migrated to a new server which now resides in the Inside of the Firewall instead of DMZ and I need to do the destination NAT. I need to do destination NAT but if I NAt the source, the same sourc...

R_Sharma by L2 Linker
  • 7244 Views
  • 5 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks