General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 198 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 880 Views
  • 0 replies
  • 0 Likes

Resolved! Can I use PANOS software from a PA-220 on a PA-500?

I have new PA-220 firewalls that are replacing my old PA-500's.  The PA-500's have v7.0.5-h2 of the PANOS installed.  The Firewall Migration Guide states that I need to update the PANOS on my old firewalls to match the new firewalls at 8.1.0.  The PA

...

infoit by L1 Bithead
  • 3500 Views
  • 5 replies
  • 0 Likes

Resolved! asa to pan migration

i had a migration from asa to pan which failed

curent conectivity is

asa (no change)<>switch (no change)<>asa (to be replaced)

planned connectivity is

asa (no change)<>switch (no change)<>pan (replacing asa)

 

i reused ips from asa on new pan and cleared a

...

josggf by L2 Linker
  • 1895 Views
  • 1 replies
  • 0 Likes

Dynamic Updates only on Active HA Member.

Our active HA member failed last week, and that highlighted that the passive had a couple of minor issues with the Dynamic update configurationa and email configuration which we fixed.

 

Howevr it's also highlighted another issue.

 

Our "Content Updates"

...

Resolved! 2 Step RADIUS Auth Reliability

We are trying to get 2FA RADIUS based authentication working with our Palo's and are seeing unreliable results. After much hunting and teeth gnashing we think we may have found the issue, but not the cause. 

 

The below is a debug dump from the RADIUS

...

apackard by L4 Transporter
  • 3316 Views
  • 4 replies
  • 0 Likes

Resolved! Zscaler and Minemeld

Hello,

 

I'm using Minemeld 0.9.44 and I would to get 'range' from the URL https://ips.zscaler.net/cenr/json.

After several attempts with JSON prototype, trying to set different extractor, field (indicator set as range).

 

I'm still not able to get a

...

Resolved! Creating a global, URL based whitelist rule

I'm trying to build a global rule for Sophos cloud based services. I've built a list of all the URLs they use, added the URL list to the URL category part of the rule with the applications web-browsing, ssl, sophos-update and sophos-live-protection,

...

Getting started Panorama 8.1

Ok, let just star by saying I am new to Panorama and I think understand the concept but just doesn’t work as expected. So I will just explain the end goal, I currently have an active/passive pa-500 pair that I am switching to two 3220 in an ha pair. ...

bschaper by L2 Linker
  • 1997 Views
  • 1 replies
  • 0 Likes

Adding MFA to Pre-login GlobalProtect

Global Protect VPN Solution is defined with Pre-login and always-on VPN features.

 

 

Workflow:

  1. Once machine is booted and before user login, Machine is authenticated based on certificate and identified in logs with (Pre-login) user
  2. Pre-login access is re
...

GP.PNG

Resolved! Asterisk Wildcard Error

When Creating a Custom URL Category, I am entering a wildcard infront of the url *lans.com.au

 

However when attempting to apply this wildcard, I am getting this error

 

URLBlock -> list '*lans.com.au' is invalid. Consecutive asterisks (*) in a URL wildc

...

Pooch87 by L0 Member
  • 3971 Views
  • 2 replies
  • 1 Likes

Resolved! Policy Export

Hello,

Is there way to export a policy from a PAN device in a read-able format? We are in the process of cutting over a new PAN internet firewall and all the rules had to be created by hand (from the previous vendor model). I'm looking for the ability

...

CRHC by L4 Transporter
  • 6436 Views
  • 5 replies
  • 0 Likes
  • 24013 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Authors
Labels