This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4131 Views
  • 0 replies
  • 0 Likes

SSH decrypt and not decrypt

Hi. I have an ERP server on the inside which must be access from supplier via SSH. Trying both using proxy and no decrypt but always getting Aged out in traffic monitor. I don't have access to the ERP system but I got the routing printed and it looks ok. Any ideas what would be causing aged out? Firewall in the *nix machine? (Trying to get acc...

Resolved! SIP traffic between a Mitel IPBX and a sip server

HI, We have a PA3020 and we are trying to create a trunksip between a Mitel IPBX and a SIP server and it doesn't work. I can't see the traffic in logs even if I create a rule to see it but I can see it if I do "Packet Capture", I see the REGISTER request from the IPBX but no answer from the SIP server. If I use NMAP from another machine and tes...

Resolved! EOL dates

I was looking for EOL announcements for a couple of PA models and found this link: https://www.paloaltonetworks.com/services/support/end-of-life-announcements/hardware-end-of-life-dates. It doesn’t have dates for the 3032 or the 500. I just wanted to confirm this list is up to date or if there are dates posted for the two models mentioned?

Bvance by L2 Linker
  • 5624 Views
  • 3 replies
  • 0 Likes

8.1 clientless VPN missing icons

I just updated my home 220 to 8.1 and my clientless vpn icons no longer show up. I can see them when I click the preview button on the clientless application popup in the management GUI. I tried re adding the icons to the configuration, but they still wont show up when I log into the GlobalProtect portal.

Static Route Removal

Default route via ISP-A (primary) has not yet recovered, even though the monitored IP address (DNS server of ISP-A) is already rechable via the interface connected to ISP-A router. (tested via ping source x.x.x.x host y.y.y.y) I have seen the logs from previous months that the firewall has detected path failure and was able to recover. So I assu...

PNCSE practice questions I don't get at all...

Hello So I'm preparing taking the PNCSE 8.0 certification exam.as part of my prep I took the practice exam on the palo alto site.it went fairly well( 16 wrong, so failed) however an emergency came up so I rushed through and later in reviewing I found a few very stupid mistakes (that I would have picked out if I had reviewed the questiosn before ...

practicequestion-guessing the routing.PNG
practicequestion-confusingformulation.PNG

Output limit?

Hi,I run minemeld (standalone) in a virtual machine with 2 cpu, 6GB RAM and 40GB hd. My config has 63 miners (mainly youtube miners and ransomware trackers), 13 aggregators and 30 output nodes. The miners start the job, but when it reach the band "85k-95k indicators", the Minemeld stops mining. The miners get the status "started" and few of them...

Matching Dynamic IP

I hope the brilliant minds here can answer my question I have a situation where I need to change NAT to translate in a specific way, I am looking at how the PA's behavior specific to how it selects IP address in a NAT pool based on the mask. Here is the setupCompany A uses a public IP within their DMZ for sake of example Class A (4.0.0.0/8) add...

Bhattman by L1 Bithead
  • 6707 Views
  • 10 replies
  • 0 Likes

Resolved! External Dynamic List & URL Filtering

Hello all, I want to use an EDL to try to whitelist a group of approved sites for users and block all other sites. In URL Filtering, I have all other categories set to block, and just allowing the EDL. However, when a user tries to go to one of those sites (for example - *.lync.com), he is getting blocked and the category is showing as internet-...

Resolved! GP 4.1.0 released and....

I have not seen any chatter or mention of this but I tried the 4.1.0 GP client in a lab environment yesterday. The good:* The app is redesigned and looks really nice* You can now select from/add/remove multiple gateways! The bad:* It would not connect to the VPN even after a reboot and reinstall 😕 After going back to 4.0.7 everything worked aga...

hshawn by L4 Transporter
  • 15406 Views
  • 33 replies
  • 0 Likes
  • 24337 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks