General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Resolved! Email Profile - Choosing Location as Shared or Vsys

I had configured the Template say Corp

Under email profile I have selected the Location as vsys shared is not checked in.

When i go to log settings then system then under email I do not see email profile which i created

If i change the email pr

...

Resolved! DNS Proxy with vwire

Question is it possible to create and use a dns proxy when in vwire mode. I would think that a vlan with an ip would need to be created in Interfaces- Vlan to facilitate this. Thought I would query to see if anyone had tried this. One issue that come

...

How to block facebook chat and allow facebook base

Hi, I have a question like that. I am using PA-220. I want to block the use of facebook chat, but do not block the use of Facebook base. Is there a chance to do this without ssl decoding?

icloud email receiving but not sending

I can see the traffic using smtp on port 587 but everything end tcp-fin. Tried turning off decryption to me.com. Traffic hit the rule that allows any traffic out for this particular user and they are also exempt already from decyrption. What should b

...

Resolved! Configuration changes not allowed on the passive Panorama--dynamic updates

Panorama M100 is in active and passive mode.

Active PAnorama has latest app version.

Each Panorama has separate connection to Internet for dynamic updates and they do not get syn.

when on passive PA i click on download for app and threat version it gi

...

Security Policy Granular to Address Group?

I have a group of computers that I want to apply a different security policy with a different Security Profile to.

I have created 2 Security policies.

The first policy = Internet Out allow any - Trusted Zone to Untrusted Zone with the default 'basic

...

Resolved! Simple Explination of Share Levels

I have read all the documentation, and have a test environment for MineMeld, but I still cant work out what share levels are being used for.

I was of the beleif that it was green=good (i.e. whitelist these) and red=bad (i.e. block these) however this

...

Aggressive cleaning feature

Hi,

I have a doubt regarding the aggressive disk cleaning feature introduced starting in PANOS 8.0.7. Details below.

To enable aggressive cleaning:
> debug software disk-usage aggressive-cleaning enable

To check if enabled (if enabled, this command will

...

SSL_ERROR_NO_CYPHER_OVERLAP

All clients are intermittently seeing "SSL_ERROR_NO_CYPHER_OVERLAP" when browsing secure web pages. This began just about half an hour ago. Any Ideas?

Erro: Threat database Handler failed (Module: device) commit failed

Hi, i have to test the lab in eve-ng with palo alto 7.0.1 image and i can't commit to save the configuration as well as ip-address cannot set into this for management interface. Are we need to set the management ip address same EVE-ng ip address or

...