This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4139 Views
  • 0 replies
  • 0 Likes

Panorama 8.1 VM on ESXi in Legacy Mode

Hi All I need to deploy Panorama 8.1 on ESXi . Due to some capacity (mostly disk and CPU) limitations on the customer infrastructure this needs to run this in Legacy mode with 4CPU/4GB RAM. There will be 10 PA220 firewalls, but all very quiet and don't' expect massive log volumes. I would like ~200GB available for log storage. I'm getting cau...

PaloAlto Decrypt Mirror not traffic visible to VM but switch port mirror traffic is

I've setup VMware ESXi 6.5 and 6.5U1 with a few different intrusion detection systems and SIEM platforms and getting inconsistent behavior w/ the Palo Alto Decrypt Mirror port vs. other technologies such as a SPAN or "Mirror Port".Many NIDS platforms (SecOnion, Bro, Moloch) can accept data from a SPAN, Mirror, or physical network tap and do intr...

dmurdoch by L0 Member
  • 4118 Views
  • 2 replies
  • 0 Likes

Resolved! Virtual Wires and Tag allowed

We are setting up PA in v wire mode. Say we have switch 1--- vlan tag 244,245,250----------------vwire---PA----vwire-------------------vlan tag 244,245,250 Switch2 Need to know under vwire pair for tag allowed should i leave it default that is any tag from 0 to 4094? OR should i put vlan tag numbers 244,245 and 250 under tag allowed? Mike

MP18 by Cyber Elite
  • 7094 Views
  • 6 replies
  • 0 Likes

PA VM-Series on VM in Azure

Hello Community! I would like to know if we can use Palo Alto on our own VMs that we have deployed on Azure instead of deploying the firewall software through Marketplace (maybe get an image file or something that we can directly deploy on an Azure VM)?

Changing Untrusted interface IP (VPN gateway/portal)

We will soon be switching ISPs and will need to change the IP address of our "untrusted" external interface. This is the same interface/IP address that is associated with the GlobalProtect gateway and portal. Are there any special considerations with this change we should be aware of, or is it a simple matter of changing the IP and committing ...

Cisco ACI, policy based redirect

This is often talked about from bot cisco and palo (when you use a pbr in aci to route some ports to the firewall)Is there anyone here acctuly using it?

hbalzac by L3 Networker
  • 3325 Views
  • 2 replies
  • 0 Likes

Resolved! CSV Output - Missing Attributes\Columns

I am trying to extract a list of IoC's from MM to pull into a SIEM via CSV lookup. When I connect to MineMeld using this syntax:- https://minemeld/feeds/Bad_IPv4?tr=1&v=csv&f=indicator&f=confidence&f=sources I get a list of indicators, but with no confidence\sources data (see output.png). I can check the same output node ...

apackard by L4 Transporter
  • 5923 Views
  • 2 replies
  • 0 Likes

Change encryption of certificate

Hello there!I have a question regarding the encryption of a certificate. Right now I am using a certificate issued by a Class 2 Certification Authority that is using SHA-1 encryption, but this is not satisfactory. How can I update the encryption type so the certificate uses SHA256 encryption?Thanks and regards

Multi-hop VPN

We have an interesting VPN request that's I have not seen yet. User logs into Global Protect from home and RDP's to desktop on campus. The user then tries to open a Global Protect connection from that campus workstation to get access to another restricted host on campus. The issue we have is when the user tries to connect on the second workstati...

mmeehan by L2 Linker
  • 4082 Views
  • 3 replies
  • 0 Likes
  • 24340 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks