General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

DLP Options

Im exploring some various DLP options for one of my clients. Im niot finding much in regards to DLP functionality on Palo Altos (I have a pair of 3020's)

Does anyone know what Palo Altos DLP solutions consist of? If any?

Im primarily concerned with th

...

Resolved! revert configuration automatically

I had a situation where checking log at start session box in a security policy while troubleshooting, after 2 minutes to commit changes, I lost comunication with the fw, because data plane get 100%. I would like to know if there is a commit revert co

...

useful custom reports

Hey all,

I want to create some custom reports to get more useful information about what is going on in my network.

I would like to know - just informational - which reports do you use in your daily business?

Respectively which reports you consider as us

...

Where is the BPA tool located??

I want to run BPA reports against my configs but I can't find the tool anywhere???

I know it exists as I have a Initial Analysis from our 3rd party supplier, but I would prefere to cut them out of the loop.

Any ideas?

Cheers

Rob

Resolved! Getting Started with Best Practices Templates

Hi 2 all

I am trying to create best practice for Vulnerability Protection and Anti-Spyware Profile with extended packet capture as desribed in

https://www.paloaltonetworks.com/documentation/81/best-practices/best-practices-internet-gateway/best-practi

...

Resolved! /opt/panrepo

Hello,

someone know for What is used this partition? /opt/panrepo

Reassign PA-VM EVal license to new vm firewall after rebuilding the VM

How can reassign the VM Evaluation authorisation to new PA-VM after rebuilding the VM firewall?

Kind regards Zoumana

PVLAN with Palo Alto?

I'm looking at doing some re-design for our DC networks and wanted to investigate some further segmentation. Since we aren't really large enough for NSX or ACI I wanted to look at PVLAN.

I've got some Nexus9K switches with Layer 3 licensing in HA an

...

Resolved! IKE v2 ASA vs. PA

Hi together,

at the beginning of this week I ran into the following challenge.

I’ve to setup an IKE v2 Tunnel between a Cisco ASA and a PA-850 running on 8.0.12.

During the configuration the Cisco Partner send me the local and remote tunnel pre-shared

...

Resolved! PAN-OS 8.1 User-ID problems

Hi there,

I have some problems with a user-id installation on PAN-OS 8.1.4, scenario:

1) Windows AD Domain Forest, with around 6/7 domains

2) I'm only interested in authenticating users from one of the domains in the forest

3) I've correctly connected th

...

Is the PA-220 compatible with newer firmware versions. Like 8.0 and 8.1

So we have several PA-200 in production and need to upgrade to 8.0. I was talking to a Palo Alto technician and he was telling me that the PA-200 are too old and not enough resources to handle the newer firmware and to upgrade. Do the PA-220 have eno

...

Strangeness with EDL - for Office 365

Hi

I have minemeld mining O365 address for my PA's. Moved to the new API as well.

I have a hybrid Exchange setup.

I have moved some mailboxes up to the cloud

What I have found recently is mail stops flowing

I have a rule that basically say

MS Public

...

Resolved! DNS proxy not accepting tcp connections

Hi

so my setup 5220

vlan 20 ... my named dns server 10.43.20.100 and 10.43.20.102 ... dns1 and dns2

on the pa on interface with vlan 20 10.43.20.1 I have configured dns proxy.

works well for dns via udp

but tcp doesn't work

so

tcpdump -pni eth0 host 10.

...

Passive Panorma - Shows Commit failed for few managed devices

We have M100 in active and Passive mode.

On Active Panorma under managed devices I see commit succeded for all firewalls

when i log into passive panorama it shows commit failed for few firewalls - template and shared policy?

How can i fix the commit

...

Resolved! Email Profile - Choosing Location as Shared or Vsys

I had configured the Template say Corp

Under email profile I have selected the Location as vsys shared is not checked in.

When i go to log settings then system then under email I do not see email profile which i created

If i change the email pr

...