This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1700 Views
  • 0 replies
  • 0 Likes

inbound ssl decrypt and iphone

Hi

 

Seems like I am having issues with iphones and inbound ssl decrypt with 8.0.12

 

any one else having this issue. seems like 0-200k of data is okay, after that ... dies in the arse

A

Trigger/logs DoS policy

Hello,

 

We would like to be notified when there is a high number of requests to our servers, and even to control them in time. Aside to be able to see an event in the logs (as it is the case with the flood in the sessions)

 

The configuration we are loo

...

BigPalo by L4 Transporter
  • 3180 Views
  • 2 replies
  • 0 Likes

Can't Update License from License Server

I recently bought a used PA-200 off ebay just to play with and learn on. It's been factory reset and has no licenses loaded. I am unable update the license from the license server. I do not have a support contract. I suspect I'm just hosed, but wante

...

Resolved! GlobalProtect with Certificate Profle

I have configured GlobalProtect to use Authentication Profile using LDAP (sAMAccountName) and a Certificate profile.

 

I have user certificates pushed through Group Policy.  The configuration works. However, I noticed a few things

 

1) If I login as User

...

ce1028 by L4 Transporter
  • 6627 Views
  • 5 replies
  • 0 Likes

Resolved! Received conflicting ARP on interface ethernet

Hi all, after exporting the old config from my old pa500 to the 820, I had an old interface that was for my  wifi vlan, that used to be a physical int on the 500 but I needed to remove it since now the 820 only has 4 ethernet ports, I reset it as a s

...

cdcirexx by L3 Networker
  • 16559 Views
  • 7 replies
  • 0 Likes

502 Bad Gateway Errors

I've recently noticed that I've started to receive '502 Bad Gateway' errors when trying to connect to a couple of specific websites (two so far).  I use a PA-200 as my home network boundary device, running 8.0.3.  I know that it's an issue with my fi

...

Sbarlock by L1 Bithead
  • 15386 Views
  • 5 replies
  • 0 Likes

Guest Captive Portal Auto-Registration Page

Hi,

 

my customer have an PaloAlto 5050 , and he need to configure captive portal wifi guest access,

my question is : is it possible using palo alto captive portal to have a form with the following information to fill (by the guest)

 

  • first name
  • last name
  • e
...

Resolved! SSL Decryption just some users

Hello everybody,

 

I'm struggling thinking how i can do this. I've implemented SSL Decryption in the Palo Alto FW and i just tried with two IP's  with a succesful result.

 

Now i would like to open the range. I want to apply that decryption rule to an OU

...

Deleting Security-Policy Rules from CLI

I'm trying to find a way to mass delete a couple of rules from the CLI. Is there a way to do this?

I know you can run something like:

 

> show running security-policy | match Minemeld|MineMeld

But I have not found a way to actually remove one of the matc

...

fospina by L0 Member
  • 4745 Views
  • 1 replies
  • 0 Likes

Resolved! Office 365 and SSL decrypt

Hi

 

I have my PA's setup with O365 ip address and URL's using minemeld. Cool.

 

But I would like to decrypt that traffic and I find that de crypt ssl breask lots of O365 stuff.

 

Does somebody have a list of stuff I can de crypt or what I can't decrypt or

...

DMVPN router traffic through DMZ to trusted LAN

We are setting up DMVPN routers for on-demand VPNs from our remote sites to HQ.  our DMVPN routers have the front end exposed to internet and the back end is on our special DMVPN DMZ.  When the VPN is built from the remote site traffic from the site

...

Resolved! GP 4.1.1 wanting me to downgrade to 2.1.1 as an "Update"

I haven't had this issue with any other 4.1.1 clients I have installed for my users. We have been slowly rolling  out 4.1.1 while upgrading machines and replacing them with users. This morning when I came in to finalize a deployment GP 4.1.1 is now p

...

wtf gp.png
nrhoades by L0 Member
  • 3112 Views
  • 3 replies
  • 0 Likes

Query on wildcard certificate

Hello,

 

Our wildcard certificate doesn't have any SANs associated with it.

 

Is this a requirement for usage of a wildcard cert?

Can I use the same certificate for both web management and GP?

 

Thanks in advance.

Farzana by L4 Transporter
  • 2770 Views
  • 2 replies
  • 0 Likes
  • 24217 Posts
  • 117 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks