This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4244 Views
  • 0 replies
  • 0 Likes

Resolved! DNS sinkhole not blocking malware

PC does DNS query, which gets inspected and is not sinkholed. PC then sends traffic to resolved address which gets inspected and blocked as malware. This is the pattern i am seeing right now and this is not for a single domain. I am not saying sinkhole is not working, it is working but not for all destinations. Below is the example of both sink...

image.png
image.png
raji_toor by L4 Transporter
  • 5006 Views
  • 3 replies
  • 0 Likes

Resolved! External access question

Hi, I am a network admin and sometimes SQL admin. I have been asked to allow a consultant to build a database reporting server on our network. He will VPN into our network through a Palo Alto firewall and use RDP to access a single non-domain server called "Reports." A firewall rule will control this access. On the Reports server, the consultant...

tsheldon by L1 Bithead
  • 4094 Views
  • 3 replies
  • 0 Likes

SSL Decryption quits working.

We have SSL Decryption setup and seems to work for awhile and then quits. I cannot say for sure but it seems to be USER-ID related. Out IT department logs in locally onto their laptops. They might occasionally map a network drive or launch a program using run as their domain user account. You might be browsing away and all the SSL is working...

High Sierra and GP 4.0.5

When installing GlobalProject on High Sierra we can connect to our site and install the software. When we enter the portal and connect we just see a spinning disc. It never connects, never asks for credentials. This only happens on High Sierra.

ping speed

Is it possible that, delay and the inconstancy of ping speed is due to the low priority of ping compared to other packages?

Marivi by L2 Linker
  • 1978 Views
  • 1 replies
  • 0 Likes

How ARP request initiated from Palo Alto sub interface

I am having some issues new ISP. I have assigned my sub interface with /29 range of IP given by my ISP.I have added staic route towards gateway of ISP with exit interface( sub interface) specified in Palo Alto Virtual router.Can some tell who will initaite ARP between these interface( its same subnet)When I take the packet capture, only ISP send...

Resolved! How to list url filtering profile using CLI

Hello I need to apply url filtering profile to two of my PA devices. I'm using PANOS 8.x How to list setting of one of my url profile (Object>url filtering> name of profile) ie. "url-set_1" on my first device and set the same setting on another one using CLI? I cand find keyword for list settings 😞 - help me please RegardsSlawek

_slv_ by L4 Transporter
  • 10084 Views
  • 2 replies
  • 0 Likes

How PA transceiver warranty?

Hi All, I have a question about paloaltonetworks transceiver warranty. If I order some transceivers e.g. PAN-SFP-PLUS-LR or PAN-SFP-PLUS-SR from paloaltonetworks , how the warranty about those transceivers? The same warranty with hardware FW platform ? or anothers ? Thanks. Joy Liu

Service Routes Don't Work W/O MGMT Connected

I have hundreds of PA 220's on 8.1.0 that are unable to download updates. The services routes are all configured to use a loopback and its IP which routes fine, and can ping whatever is necessary, the management interface is disconnected at all these locations. The problem is that the 220 will not resolve DNS via the service route, it seems, w...

SSL Decryption inbound and OCSP stapling

Hi Seems like inbound SSL Decrypt doesn't handle OCSP stapling ..... Not sure why PA have missed out on this. Raised it with my SE... not happy with my SE not feeling the love. Any one else been caught by this EDIT - adding stapling, must stay away from late night posting

SSL inbound inspection wildcard certificate

Trying to configure ssl inbound inspection for one of my web sites hosted internally. The IIS server has many sites being served thru host headers. All of the SSL bound sites use the same wildcard certificate *.external-domain-name on this server. I export this cert with key and import into pa.I make decryption policy to match a specific url in ...

Panorama - HA Group 10: Anti-Virus version does not match

Hi Experts, From Panorama, we're managing around 20+firewalls. In Panorama system logs, we're seeing " HA Group 10: Anti-Virus version does not match error messages".Though the errors are self expalantory , how do we confirm out of 20 firewalls which firewall is configured with HA Group ID 10 which is generating this error message. Please assi...

Resolved! Update 0.9.46 Broken (at least for me)

Hey all, So my Minemeld appliance updated to 0.9.46 at some point which broke the system. I was able to temporarily fix the issue by just changing the symlink in /opt/minemeld/engine from 0.9.46 to 0.9.44. Obviously, this is not ideal. When I look in the 0.9.46 folder I see that there are a lot of files that are missing that are present in t...

  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks