This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1197 Views
  • 0 replies
  • 0 Likes

Resolved! DNS is changing?

Anybody has hear about it and are PA firewalls effected by it. It seems they are making some changes to its functioning. Does PA application supports the said change?

  

https://dnsflagday.net

______________________________ What is happening? The curren...

raji_toor by L4 Transporter
  • 3940 Views
  • 3 replies
  • 0 Likes

GP+DECRYPT+MFA

 

Hello,

 

I have been playing around with this setup:

 

- user connect to internal network with globalprotect

- initiating any connection to internal resources trigger ether a redirect to captive portal for MFA challenge or a global protect popup with the

...

norbhinn by L1 Bithead
  • 2081 Views
  • 2 replies
  • 0 Likes

Resolved! Application changed color in ACC.

Hello,

 

I changed a timeout value on an application and then changed it back to original setting, after this:

 

The application show up in a greenish color (like the support info button color) in ACC

The application lost its category and sub-category. Bo

...

norbhinn by L1 Bithead
  • 2384 Views
  • 2 replies
  • 0 Likes

Resolved! LACP question

I was given this design to implement on our PA 5050's. This would be to segregate a user segment (4500x-VSS) from the data center (7K's vpc). Can anyone tell me if this is a valid LACP connection? I have never seen it done without a Stacking or VPC l

...

Capture.JPG
jstalone by L0 Member
  • 1964 Views
  • 1 replies
  • 0 Likes

H323 Gatekeeper Question

Hello everyone,

 

The agency I work for is experiencing H323 call drops. After some research I found documentation here that Palos do not support H323 signaling when a gatekeeper is in call routed mode. The gatekeeper is currently in call routed mode.

 

...

VTCguy by L0 Member
  • 2368 Views
  • 1 replies
  • 0 Likes

Create User based Internet access rule

Hi, 

 

Could someone please advise how I can limit internet access by user? 

 

I would like the below 

 

Block level 1 - blocks the bad stuff but allows everything else 

Block level 2 - blocks everything apart from an allow list 

 

I believe I have set Enable

...

8.0.15 How is it running

Hello Community,

How is it running for those that have already upgraded? I would wait but the release of the recent vulnerabilities have pushed this forward for me.

 

https://securityadvisories.paloaltonetworks.com/

 

Thanks in advance!

Template not showing up in Device Groups

Created template I have Templates showing up over Network and Device tabs. But when I commit there isn't a radio button for templates and when you look under Device Groups and click the group I created it in, the template does not show up. Panorama 8

...

ccall678 by L0 Member
  • 2877 Views
  • 1 replies
  • 0 Likes

QOS Policy config with Destination NAT Traffic

Hi, all

How can i set to config QoS Policy for Destination NAT Traffic from untrust to untrust zone.

I searched for related knowledge but could not find it.

which one is right?
untrust to untrust (Public IP)
untrust to trust (Public IP)
untrust to trust (P...

hbshin by L2 Linker
  • 2481 Views
  • 2 replies
  • 0 Likes

Resolved! Security rules on middle level DGs

I have three templates in a stack and three levels of device groups. I want to create a leveled policies based on security zones. Let's say I have a secuity zone called GlobalProtect.

 

Let's say I have:

DG-Standard

|-------DG-Management

            |----

...

Resolved! Template stack and referencing security zones

Settings in a template cannot reference to another template even if in the same template stack. I want to simplify management of security policies based on security zones. 

 

Let say I have Template-Standard and then templates for each PA like Template

...

  • 24172 Posts
  • 117 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks