This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4239 Views
  • 0 replies
  • 0 Likes

Output limit?

Hi,I run minemeld (standalone) in a virtual machine with 2 cpu, 6GB RAM and 40GB hd. My config has 63 miners (mainly youtube miners and ransomware trackers), 13 aggregators and 30 output nodes. The miners start the job, but when it reach the band "85k-95k indicators", the Minemeld stops mining. The miners get the status "started" and few of them...

Matching Dynamic IP

I hope the brilliant minds here can answer my question I have a situation where I need to change NAT to translate in a specific way, I am looking at how the PA's behavior specific to how it selects IP address in a NAT pool based on the mask. Here is the setupCompany A uses a public IP within their DMZ for sake of example Class A (4.0.0.0/8) add...

Bhattman by L1 Bithead
  • 6782 Views
  • 10 replies
  • 0 Likes

Resolved! External Dynamic List & URL Filtering

Hello all, I want to use an EDL to try to whitelist a group of approved sites for users and block all other sites. In URL Filtering, I have all other categories set to block, and just allowing the EDL. However, when a user tries to go to one of those sites (for example - *.lync.com), he is getting blocked and the category is showing as internet-...

Resolved! GP 4.1.0 released and....

I have not seen any chatter or mention of this but I tried the 4.1.0 GP client in a lab environment yesterday. The good:* The app is redesigned and looks really nice* You can now select from/add/remove multiple gateways! The bad:* It would not connect to the VPN even after a reboot and reinstall 😕 After going back to 4.0.7 everything worked aga...

hshawn by L4 Transporter
  • 15648 Views
  • 33 replies
  • 0 Likes

Resolved! Web server publishing error

Hi! Help, please, with an Internal Web server publication. I have a PaloAltor PA-200, PanOS 7.0.19. I have ext. Internet on Eth1/1 (L3-Untrust zone) and LAN on Eth1/2 (L3-Trust zone). In my LAN I have a Server with Web publication (WebServer), which should be accessd from outside (Internet). I`m trying to publish it. But got an error: Mismatch o...

nat.png
policy.png
SPB99RO by L1 Bithead
  • 8406 Views
  • 14 replies
  • 0 Likes

Palo Alto not loading certain valid sites, why?

Having another issue with these things (ready to throw them out the window in all honesty). Seems as though a couple sites simply won't load when routed through a pair of HA-3020s. Of course Palo Alto support does a packet capture and sees no drops so immediately not their fault. But I know it is because I can route that specific traffic out ...

drewdown by L4 Transporter
  • 9926 Views
  • 12 replies
  • 0 Likes

Resolved! Are Application Filters in Groups an AND or an OR?

Hi all, If there are multiple application filters in an application group, do they work with AND or OR logic? For instance, someone configured an application group which contains five filters. All of the filters have "Subcategory = file-sharing." Then one filter has "Characteristic = Transfers Files," the second has "Tunnels other apps," the t...

HA Active/active vwire different location

Dear All, We want to deploy 2 firewall PAN in 2 different location (Building) but same area/complex. Is there any ideal distance for HA link for both firewall? Is it need to directly or i can use via switch? Can i deploy this topology? is there any suggest?

topology.png

Resolved! Traffic showing from wrong zone

Hello all, I have a (hopefully) simple problem I can't seem to figure out.I have recently created a new DMZ zone on my PA for guest users, but when a guest tries to access the internet, the traffic is showing as sourcing from the trust zone instead of the DMZ zone. A trace from the guest user makes it to the PA, then dies. I have the policy from...

Resolved! Windows and User-Mappings

I have a user group in Active Directory where we place users who should not reach the internet. This user group is then tied to a Palo Alto rule to Deny access.I've noticed (Windows PC) this week, that if a user who is in the Deny group logs in to a PC, they will be denied (works fine), however, lets say they log out and a person who should have...

  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks