This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1682 Views
  • 0 replies
  • 0 Likes

Resolved! How to add switchport trunk allowed to AE interfaces?

I have a cisco switch which has a trunk to a PA device. On the switch it is configured switchport trunk allowed vlan 120,766,767. How do I add the corresponding configuration on the PA end?

The AE2 int already has the .120, .766 and .767 sub interfac

...

M.Allen by L1 Bithead
  • 1283 Views
  • 3 replies
  • 0 Likes

Resolved! Proto in packet capture filter

What is proto in packet capture filter ? The manual only says:

Proto—Specify the protocol to filter

The field only seems to accept numbers...

dieter_b by L4 Transporter
  • 7727 Views
  • 5 replies
  • 0 Likes

PAN-OS 11.2.8 ETA

Hi All,

 

i would like to know the ETA of the PAN-OS 11.2.8 as per last PA TAC mention that the 11.2.8 tentative release date of june 25 

 

but so far no info of the release yet 

 

this is to fix for GUI display issue with SAML SLO url.

 

thank you

Advice on dual isp, getting dns to work

Hello all,

I currently have a PA440 and I have 2 isp's, ATT and comcast which will be our backup and it's my 1st time setting this up, we are a small business of about 80 users, I already followed how to configure dual isp redundancy on the links pro

...

cdcirexx by L3 Networker
  • 1320 Views
  • 8 replies
  • 0 Likes

PA-820 Support renewal

 

Hi All,

Our current PA-820 support is due to expire in October, so I requested a renewal quote, and our vendor is stating that paloalto is declining to extend support. Has anyone had similar feedback from resellers and or paloalto regarding their n

...

Palo Alto Kerberos for sso

Anyone hit the same issue before?

2025-08-16 20:35:38.768 +0800 debug: pan_auth_cache_get_authprof_info(pan_auth_cache_authprof_n_authseqprof.c:218): prof "KRB-SSO", vsys "vsys1" (method: Kerberos pre-auth) has sso hash table id: 1 (0 means no or inv

...

prevent-brute-force-attacks

Hello Everyone

 

I am looking for suggestions on how we could protect our GlobalProtect VPN. We have been seeing people trying to perform brute-force attacks on random user accounts daily. We do have MFA set up, but is there any automation we could i

...

dshastri by L0 Member
  • 2291 Views
  • 6 replies
  • 0 Likes

Resolved! Advanced-routing ignores BGP local-pref

Troubleshooting a routing issue I've just discovered that the local preference isn't used for forwarding decisions when ECMP is enabled. Has anyone seen this before? I'm about to log a support case, but I thought I'd ask here in tandem.

What I see is

...

dmgeurts by L2 Linker
  • 1384 Views
  • 3 replies
  • 0 Likes

web browsing slowness

Hello,

Is there a Palo Alto expert who can help explain an issue we are facing? At times, we experience internet slowness on our firewalls (not always on the same unit). When this happens, we check resources, CPU, and interfaces, and everything appea

...

Resolved! PANO and NGWF

Can you provide the implications of not renewing the subscription of PANO and NGFWs.

What do we lose access to, services, updates, support..?

 

Solution for "SSL decryption bypass for Anydesk"

Hello,

 

I am being asked a lot about why is Anydesk getting a "decrypt-error" end reason when SSL Decryption is active.

Here is a simple explanation and how to overcome this.

 

What you usually going to do with this kind of errors is creating a Decryptio

...

OZamir by L1 Bithead
  • 35530 Views
  • 32 replies
  • 7 Likes

Resolved! Browser not prompting/selecting client cert for GP portal

Does anyone know exactly what is needed for browser to either select or prompt for client certificae when connecting to GP portal?

I know you need a client sert in personal user store and certificate profile on GP portal.

 

But still i find the behaviou

...

santonic by L6 Presenter
  • 4808 Views
  • 7 replies
  • 0 Likes
  • 24216 Posts
  • 117 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks