This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4111 Views
  • 0 replies
  • 0 Likes

Resolved! Source User ID being replaced by service account for SCCM

We have a service account for SCCM (Microsoft's System Center Configuration Manager) which will log onto our user PCs to run a scan to identify what is on the device. At times this account will log on after the user and will make it so the firewall sees the service account instead of the actual source user's ID. I have asked and we are not abl...

Recommended Version

Good Morning: What is the recommended version for the Palo Alto 3050 series firewalls? We are currently running 8.1.8 What are your thoughts on 9.0.2-h4? Are there any problems with it, or should we more likely than not be good to go?

birkhojk by L2 Linker
  • 4227 Views
  • 2 replies
  • 0 Likes

Custom URL Category and SSL Decryption

Hello all, We have a custom URL category created to exclude sites from SSL decyption. We have the category set to no decrypt on the firewall but recently we encountered an issue where URLs that we add to the custom object were not getting categorized as such. We talked to PAN TAC and they recommended adding a "/" to the end of the URLs. We teste...

BGP sessions not exporting

Hi folks/ I'm trying to use BGP to synchronise routing across two ISPec tunnels to a Palo Alto HA cluster. I have BGP connectivity established - the remote end is exporting the routes I want, and they're being seen (and managed correctly) by the Palo Alto as far as I can tell. However, I can't seem to get the Palo Alto to export routes BACK to t...

darren_g by L4 Transporter
  • 18955 Views
  • 11 replies
  • 0 Likes

Force BGP Peering over a certain interface/path

I have many paths through my network and my palo altos are choosing to peer iBGP with each other over the Northbound paths to the next level of of switches. I want them to use the links south bound to my datacenter core to peer BGP. They are peering with loopbacks. how do you weight routes or set costing within ospf on the palo?

USER-ID and problems with runas /netonly in combination with MMC modules

Hello, as a safety measure i placed my workstation in a different vlan and from there i'm managing our network and servers which are located in the designated dedicated vlans. On the firewall we have a rule which makes it possible for our 'admin' accounts to access most vlans for management tasks. Now when i use runas for certain management t...

hmcadmin by L0 Member
  • 4024 Views
  • 2 replies
  • 0 Likes

PAN DB URL filtering issue.

Dear all, One of my customer PAN DB License expired and we try to block all Youtube videos excluding some the vidoes links in Youtube. My query here is, whether if the device without a valid PAN DB Licence we will be able to acheive the above requirement to be configured. Please let me know if you have any questions. And eagerly waiting for a ...

Resolved! Policy details

Hi , Is there way to pull the details of all policies using same address/address group in Panorama via cli . I can check from gui , but it will need lot of manul work . Example: address group -" Test" is part of policy for 10 firewall managed by Panorama . How i can pull details which are the policy name along with respective device group nam...

deepak12 by L3 Networker
  • 5084 Views
  • 3 replies
  • 0 Likes

Resolved! Office 365 Security Policy Question

In referencing the link below (FAQ - Office 365 Access Control), I'm concerned with a destination in the Security Policy for Office 365. What is everyone else doing for destination? The list of IP addresses for Office 365 Business products is long and ever changing or can a URL Category be used in the Security Policy using the published FQDNs in...

Resolved! API-Call for QOS results in 'interface has unexpected text'

Hi, when I try to use an api call to query the qos statistics of an interface i get this errormessage: <response status="error" code="17"><msg><line><![CDATA[ show -> qos -> interface has unexpected text. ]]></line><line><![CDATA[ show -> qos -> interface is invalid ]]></line></msg&g...

ABux by L1 Bithead
  • 7501 Views
  • 4 replies
  • 0 Likes

Vulnerability in PA?

Hi, We just received info about this vulneraability:https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-001.mdSo we would like to know if PA appliances are impacted? Thanks

BigPalo by L4 Transporter
  • 10707 Views
  • 16 replies
  • 0 Likes

Resolved! Changing IP Addresses

Throwing this out here to see if I maybe creating any issues. I have a machine that is setup in my firewall with an address object. Let's say it's its Machine1 and it's IP is 10.0.0.50. This machine will be decommissioned soon and I have setup another machine that will replace it. Let's say it's Object name is Machine2 and it's address is 10...

Resolved! Skype for business screen sharing and file sending - incomplete

Hi We are getting reports of our Skype for business screen sharing or file sending isnt working today. We have had all the rules setup for a long while with no reported issues but today its not working. When i check the firewall logs for a particular user nothing is being blocked. What i can see that when he tries to share his screen according t...

CRDF18 by L2 Linker
  • 11544 Views
  • 3 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks