This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4111 Views
  • 0 replies
  • 0 Likes

New NG PA implementation path URL

Hi all, we are replacing our aging ASA VPN with the new PA GlobalProtect. ASA has a path of someurl.com/path rather than just a default someurl.com. Makes it a bit harder for the bad guys to guess. Is PA capable of creating a path, rather than a default url? thank you in advance for the helpRegards

au_igs by L1 Bithead
  • 5055 Views
  • 5 replies
  • 0 Likes

Resolved! Palo Alto - Dynamic Updates

Hi I'm new to Palo Alto alto. but my company have several diffrent versions of Palo alto firewalls, some with direct support via palo alto PA-3050 where i have access to download the Dynaic updates directly. Plus some that we have support through a reseller that they need to download the updates and send to us as the firewalls don't have access ...

kev91234 by L1 Bithead
  • 5406 Views
  • 4 replies
  • 0 Likes

Resolved! Re-order BGP Import/Export Filters via CLI/API

Hi, I'm looking for a way to re-order BGP Import/Export filters via the CLI or via the API (preferrably CLI). I have not been able to find a set, move or edit command which does this and searching the API browser there doesnt seem to be a path that would be able to alter order of these rules. Is this even possible? Cheers

Resolved! Documentation bug? User-ID XML API has double closing tags

The XML API documentation for 7.1, 8.0, 8.1, and 9.0 appears to have an extra closing tag for the <uid-message> object. You can see it on the following pages: https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-panorama-api/pan-os-xml-api-request-types/apply-user-id-mapping-and-populate-dynamic-address-groups-api.html https://docs.paloalt...

fjwcash by L4 Transporter
  • 3248 Views
  • 1 replies
  • 0 Likes

Proof Of Concept - Focus Points On Mid POC Call Before Final SLR

Hi community, I'm wondering what you guys like to focus on when running a Proof Of Concept with the nextgeneration firewall? For example, you are running a PoC in TAP mode for two weeks. At the half way mark you have a call with the customer to show them what kind of traffic and/or threats have been seen, usernames in the logs. Do you mainly foc...

Resolved! Deny internet traffic for a specific subnet

Hello, is it possible with palo alto firewall to deny internet traffic for a specific subnet?let's say I have this subnet: 10.100.30.0/24I want 10.100.30.0/24 to not reach the internet.What should I do?

Hello Message Interval -PANORAMA HA

Hi, What is the correct default Hello Message interval in Panorama HA? Is it 5000ms or 8000ms? I am asking this because, PA docs have quoted these two values at default at two different places. https://docs.paloaltonetworks.com/pan-os/7-1/pan-os-admin/high-availability/ha-timers quoting 8000ms see the screenshot taken from EDU-120, Module - Hig...

HA Default hello interval.PNG

Palo alto Education, Pa 2020

Greetings. I have bought PA 2020 used without HDD. PA 2020 have No elf image at address 0x20000000 Octeon kestrel: such error on boot.What are the ways to boot my PA 2020 wich i bought used from auction?Where can i have VM images or help me please to boot my Palo alto device?What are other ways to study palo alto networks if i can't download PA...

borisk95 by L1 Bithead
  • 6225 Views
  • 5 replies
  • 0 Likes

Logging Service Subscription Added to Assets in Support Portal

All - So, I noticed something today, when logging into the PAN Support Portal. All of my NGFWs listed have had a Logging Service subscription added to them (albeit expiring in May 2019). This was not something that I did on my own, and all of them have different auth codes associated with them. Additionally, they are on the FIREWALLS, not as ...

Resolved! Paloalto regions  DB

HIDo you know the Paloalto regions DB?ftp://ftp.arin.net/pub/stats/ I found this ulr, but it only shows the USA's DB.I would like to see the whole area DB.

jskang by L1 Bithead
  • 3851 Views
  • 1 replies
  • 0 Likes

Panorama(ESX6.5VM)のログ領域を120GB拡張する方法について

参考サイトを見て、Panorama(ESX6.5VM)のログ領域を120GB拡張する方法をいくつか試みたのですが、上手く拡張出来ず困っております。 【参考サイト】https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClZfCAK https://docs.paloaltonetworks.com/panorama/8-1/panorama-admin/set-up-panorama/set-up-the-panorama-virtual-appliance/install-the-panorama-virtual-appliance/install-panorama-on-vmware/in...

Interface IP for Log collector - LC communication

I have configured Interface between 2 m500 with /24 Mask. M500-1----------eth1/5---------------------------------eth1/5---------M500-2 eth1/5 is used for collector communication. Need to confirm this is right design to have IP address on directly connected interface with /24 mask? Please confirm?

MP18 by Cyber Elite
  • 2245 Views
  • 1 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks