This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 467 Views
  • 0 replies
  • 0 Likes

DNS Signature Lists

Does anyone know any free External Dynamic Lists for DNS signatures to use in conjunction with the Palo DNS Signatures? We would like some extra protection for our anti-spyware protection.

Monitor of IPSec tunnel

What is the best way to monitor an IPSec tunnel on the PA, I don't see anything in the traffic logs at all just the systeme logs

jdprovine by L4 Transporter
  • 2917 Views
  • 7 replies
  • 0 Likes

Resolved! Decoder function

 

Need to confirm in PA  decoder does content id app id and antivirus detection.?

 

Also once session is offloaded then function of decoder is finished?

MP18 by Cyber Elite
  • 3045 Views
  • 2 replies
  • 0 Likes

Commits and Firmware Upgrades Failing

I've got a couple of support tickets open on my issues just seeing if anyone has any suggestions/ideas as Support I wait for support to help me out.


Configuration: 2x PA-5220's in HA (Active-Passive)

Code: 8.0.11-h1 (Moving to 8.0.12 per PA recommendat

...

hank08 by L0 Member
  • 3727 Views
  • 2 replies
  • 0 Likes

Panorama configuration is over 80MB

I am getting the following system log message on my Panorama dashboard:

 

The current configuration is 81MB, which exceeds the supported limit of 80MB.  We highly recommend that you reduce the configuration size to within 80MB. 

 

What are the potential

...

Resolved! url database - learning new urls from cloud

 

when new websites comes up  we see that it is under unknown category

 

one option is to ask PA to re category that.

 

in some cases we see that after few days that websites is not under known category and is reachable.

 

How does PA cloud database keeps t

...

MP18 by Cyber Elite
  • 3230 Views
  • 6 replies
  • 0 Likes

Palo Alto behind ReverseProxy, how block real IP ?

Hello,

I have many website behind my Palo Alto.

In front of many websites (and then Palo Alto), I have Reverse Proxy.

Into traffic logs I see Reverse proxy IP, not the real visitor IP.

 

I have enabled "Use X-Forwarded-For" and now I see Real IP into colu

...

Resolved! config push from panorama to HA PA

 

New configuration  is pushed from Panorama to a pair of firewalls that are configured as an active/passive HA pair.

will both PA active and passive syn theconfig ?

 

 

MP18 by Cyber Elite
  • 10412 Views
  • 2 replies
  • 0 Likes

Pre-Logon Machine Certificate placement

When doing pre-logon with machine certificate, where does the certificate need to be placed? Documentation says to put it into computer>personal, but i am unable to do this via GPO directly. Can it be placed into any of the other stores?

welly_59 by L3 Networker
  • 1974 Views
  • 1 replies
  • 0 Likes

Switch Redundancy at Access Layer

This is a bit off topic, but I thought some folks might have some knowledge and wisdom to offer. 

 

Where I work we're working dilligently to provide robust resiliency and redundancy for our firewalls using dual powersupplies, HA, and multiple ISP circ

...

locampo by L2 Linker
  • 9143 Views
  • 12 replies
  • 0 Likes
  • 24085 Posts
  • 116 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks