This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4229 Views
  • 0 replies
  • 0 Likes

Cisco ISE and Palo Alto TACACS

Few questions here. Why do you need user local on the PA devices?Why do you need those users local on the ISE box rather then allowing access from AD groups via ISE?If the users are local then password changes are not possible when a user changes their AD password, so how does that work?

Resolved! URL Filtering & Blocked Countries Response page

I have custom URL filtering response page enabled which works; however, I have noticed that when users get this response page, the URL category is correct and is allowed. When further investigating the issue, we found that the URL/Site is blocked by the Blocked Countries policy instead of the URL category Is there a way to include the actual pol...

MikeHamm by L1 Bithead
  • 3042 Views
  • 1 replies
  • 0 Likes

Panorama Device Removal

I had to rebuild Panorama 7 on ESX as for some reason after a power outage the image could not be restored... New installation completed and licensed but I cannot get the firewall 3020 to connect. I have removed the Panorama settings from firewall and re-applied. I have added the serial number to Panorama but the firewall is complaining..... Err...

Mick_Ball by L7 Applicator
  • 4192 Views
  • 4 replies
  • 0 Likes

Resolved! Global Protect - Newly Imaged Laptop, first time login before Windows login

Hello, Been trying to look around about how to do this but not finding anything. So we are moving from AnyConnect to Global Protect. The transition has been fairly smooth but ran into a unique issue yesterday. We have a small number of user's who are remote who can't come into the office and they are getting a new laptop shipped to them. In t...

Global protect

Hi team,How can i extract a detailed report on the list of all Global protect users (VPN users). this report aims to get the date each user was created. this is for audit reasons and i would appreciate if any one has a solution. thanks

Abduba by L0 Member
  • 2755 Views
  • 2 replies
  • 0 Likes

collecting palo alto firewall logs with Graylog 2.5

Dear palo alto community, I collect the palo alto firewall logs with Graylog 2.5.When i make an ssh connection to the fw palo alto with an incorrect password, this ssh connection does not get into the logs on Graylog interface web why ? To configure the syslog profile I followed this linkhttps://knowledgebase.paloaltonetworks.com/KCSArticleDetai...

Ayoub2 by L1 Bithead
  • 11923 Views
  • 9 replies
  • 0 Likes

Resolved! How to configure multiple routes at once

Need to configure a firewall with the same 100+ routes that exist on another. Is there a way to copy the routing table from one FW to another via CLI? Can I copy the "show routing route" output and configure multiple routes on another using this output? CLI example would be helpful.

Resolved! Botnet Report Missing 8.1

We are running 8.1.7 and discovered the Botnet report is missing from the monitor tab on the gateways. Does anyone know where this report went? PAN-OS 7.1.X PAN-OS 8.1.7

arr.jpg
arr2.jpg

Add Company to Customer Support account

Hi, does anyone know how to add a new company into your Customer Support Account? I already have an account with a client in it. I need to add another client, then I can register their PAs. I can't find this information anywhere.Thanks

WRibeiro by L1 Bithead
  • 2670 Views
  • 1 replies
  • 0 Likes

LogRhythm Threat Intelligence Service crashes MineMeld TAXII

I have a LogRhythm Appliance and the Threat Intelligence service is able to register my TAXII datafeed. However when I try and donwload the feed, the minemeld web server crashes. The feed also crashes using PostMan ... same thing, rabbitmq crashes and restarts. 127.0.0.1 - - [18/Nov/2016:20:53:55 +0000] "POST /taxii-poll-service HTTP/1.0" 2...

kmerolla by L0 Member
  • 10831 Views
  • 5 replies
  • 0 Likes

Log to CSV export limits

Hello everybody, sometimes I'm asked to export some logs from the devices I manage, and most of the time I'm given a well defined time range for the logs to search for. But sometimes I need all the logs matching a particular filter (source, destination, port/application) regardless of the time the logs were generated and, by default, the "expo...

grenzi by L3 Networker
  • 7688 Views
  • 3 replies
  • 0 Likes

HIP Profile for Hosts Domain.

Hi there, I am trying to setup the HIP Profile for restricting the users who've not joined to the domain( xyz.com) and I only want to allow RDP for those users. I do have active HIP subcription on HA devices. Thanks,

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks