This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4229 Views
  • 0 replies
  • 0 Likes

Block TLD and Security Profiles in Monitor and Log Details

I am working on blocking a TLD using a URL filter. I have multiple URL Filtering Profiles. I have the TLD block working, but the lack of security profile information in the Monitor tab view and detail logs makes it difficult to troubleshoot. Is there a way to display what security profile(s) are being hit? I understand these are tied to the rule...

mike406 by L2 Linker
  • 4366 Views
  • 5 replies
  • 0 Likes

Resolved! OSPF routing - Metric question

Hi,My setup is like below.e1/1 - To Internete1/2 - To MPLS WAN - Learns remote site routes via OSPF as type-2 external routes.e1/3 - Internal networkTunnel.x - One tunnel to each of the 9 remote sites.My network works fine and learns remote routes via WAN and Tunnel. However the tunnel routes are taking preference because they are learned as Oi ...

smunzani by Not applicable
  • 4783 Views
  • 3 replies
  • 0 Likes

Panorama 8.1 VM on ESXi in Legacy Mode

Hi All I need to deploy Panorama 8.1 on ESXi . Due to some capacity (mostly disk and CPU) limitations on the customer infrastructure this needs to run this in Legacy mode with 4CPU/4GB RAM. There will be 10 PA220 firewalls, but all very quiet and don't' expect massive log volumes. I would like ~200GB available for log storage. I'm getting cau...

PaloAlto Decrypt Mirror not traffic visible to VM but switch port mirror traffic is

I've setup VMware ESXi 6.5 and 6.5U1 with a few different intrusion detection systems and SIEM platforms and getting inconsistent behavior w/ the Palo Alto Decrypt Mirror port vs. other technologies such as a SPAN or "Mirror Port".Many NIDS platforms (SecOnion, Bro, Moloch) can accept data from a SPAN, Mirror, or physical network tap and do intr...

dmurdoch by L0 Member
  • 4171 Views
  • 2 replies
  • 0 Likes

Resolved! Virtual Wires and Tag allowed

We are setting up PA in v wire mode. Say we have switch 1--- vlan tag 244,245,250----------------vwire---PA----vwire-------------------vlan tag 244,245,250 Switch2 Need to know under vwire pair for tag allowed should i leave it default that is any tag from 0 to 4094? OR should i put vlan tag numbers 244,245 and 250 under tag allowed? Mike

MP18 by Cyber Elite
  • 7177 Views
  • 6 replies
  • 0 Likes

PA VM-Series on VM in Azure

Hello Community! I would like to know if we can use Palo Alto on our own VMs that we have deployed on Azure instead of deploying the firewall software through Marketplace (maybe get an image file or something that we can directly deploy on an Azure VM)?

Changing Untrusted interface IP (VPN gateway/portal)

We will soon be switching ISPs and will need to change the IP address of our "untrusted" external interface. This is the same interface/IP address that is associated with the GlobalProtect gateway and portal. Are there any special considerations with this change we should be aware of, or is it a simple matter of changing the IP and committing ...

Cisco ACI, policy based redirect

This is often talked about from bot cisco and palo (when you use a pbr in aci to route some ports to the firewall)Is there anyone here acctuly using it?

hbalzac by L3 Networker
  • 3352 Views
  • 2 replies
  • 0 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks