This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4139 Views
  • 0 replies
  • 0 Likes

How ARP request initiated from Palo Alto sub interface

I am having some issues new ISP. I have assigned my sub interface with /29 range of IP given by my ISP.I have added staic route towards gateway of ISP with exit interface( sub interface) specified in Palo Alto Virtual router.Can some tell who will initaite ARP between these interface( its same subnet)When I take the packet capture, only ISP send...

Resolved! How to list url filtering profile using CLI

Hello I need to apply url filtering profile to two of my PA devices. I'm using PANOS 8.x How to list setting of one of my url profile (Object>url filtering> name of profile) ie. "url-set_1" on my first device and set the same setting on another one using CLI? I cand find keyword for list settings 😞 - help me please RegardsSlawek

_slv_ by L4 Transporter
  • 9958 Views
  • 2 replies
  • 0 Likes

How PA transceiver warranty?

Hi All, I have a question about paloaltonetworks transceiver warranty. If I order some transceivers e.g. PAN-SFP-PLUS-LR or PAN-SFP-PLUS-SR from paloaltonetworks , how the warranty about those transceivers? The same warranty with hardware FW platform ? or anothers ? Thanks. Joy Liu

Service Routes Don't Work W/O MGMT Connected

I have hundreds of PA 220's on 8.1.0 that are unable to download updates. The services routes are all configured to use a loopback and its IP which routes fine, and can ping whatever is necessary, the management interface is disconnected at all these locations. The problem is that the 220 will not resolve DNS via the service route, it seems, w...

SSL Decryption inbound and OCSP stapling

Hi Seems like inbound SSL Decrypt doesn't handle OCSP stapling ..... Not sure why PA have missed out on this. Raised it with my SE... not happy with my SE not feeling the love. Any one else been caught by this EDIT - adding stapling, must stay away from late night posting

SSL inbound inspection wildcard certificate

Trying to configure ssl inbound inspection for one of my web sites hosted internally. The IIS server has many sites being served thru host headers. All of the SSL bound sites use the same wildcard certificate *.external-domain-name on this server. I export this cert with key and import into pa.I make decryption policy to match a specific url in ...

Panorama - HA Group 10: Anti-Virus version does not match

Hi Experts, From Panorama, we're managing around 20+firewalls. In Panorama system logs, we're seeing " HA Group 10: Anti-Virus version does not match error messages".Though the errors are self expalantory , how do we confirm out of 20 firewalls which firewall is configured with HA Group ID 10 which is generating this error message. Please assi...

Resolved! Update 0.9.46 Broken (at least for me)

Hey all, So my Minemeld appliance updated to 0.9.46 at some point which broke the system. I was able to temporarily fix the issue by just changing the symlink in /opt/minemeld/engine from 0.9.46 to 0.9.44. Obviously, this is not ideal. When I look in the 0.9.46 folder I see that there are a lot of files that are missing that are present in t...

How to report false positive if I'm not a customer

Hello there, I represent Kromtech company(https://kromtech.com) which produces MacKeeper app (https://mackeeper.com). We have report from our partners that your WildFire service marks our products as Malware.We would like to report false positive but I didn't find a way how to do that if I don't own your service. Could you please help me with th...

Screen Shot 2018-05-18 at 10.41.48 AM.png
ze0adik by L1 Bithead
  • 3142 Views
  • 1 replies
  • 0 Likes

Resolved! VM50 on Server 2016 HypperV

Does anyone know if the VM50 is supported on Windows Server 2016 Hyper-V? I have downloaded the PANOS 8.0 Vhdx file and installed it based on the Server 2012 R2 Guidelines, but every time I try to start the VM, I receive a message the virtual machine failed to change states. I've verified my CPU, Memory and Network settings, and can't figu...

User-ID/Facebook allow group

Hello, I am having trouble with this configuration. In a Windows domain environment. I installed User-ID on server and confirmed User-ID is running and IP/user mapping is all listed in the monitoring log. User-ID agent is connected in the firewall. I created two AD groups one that permits FB and one that blocks it. I created two security ru...

MineMeld Splunk App

Hi Guys, I'm new to this community. At the moment, we are actively exploring MineMeld in our environment and would like to know if there is any connectors available for Splunk to consume intel collected by MineMeld .Please advise.Thank you.

  • 24340 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks