This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1693 Views
  • 0 replies
  • 0 Likes

Check GlobalProtect VPN users with PowerShell GUI

I wrote a simple PowerShell GUI script that can check for GlobalProtectVPN users connected currently, or at a past date.

It uses the Rest API to grab the information. Not sure if anyone would find it useful.

Here is the Github link: https://github.com/

...

paltoshell
molander by L2 Linker
  • 13733 Views
  • 15 replies
  • 2 Likes

Resolved! Wildfire Activity?

Hi folks,

 

We have a Wildfire public cloud subscription, dynamic updates, and security profile configured.

I've been asked, "How do we know it's doing anything?".

 

When I look at Wildfire submissions, the last submissions are from January and end of las

...

wildfire2.jpg
wildfire1.jpg
OMatlock by L4 Transporter
  • 3039 Views
  • 4 replies
  • 0 Likes

DAGPusher new setup

Hello,

 

I finished the setup of DAGPusher and DAG in Panorama.

The list of indicators is populated in the MineMeld DAGPusher but my DAG in Panorama is not populated.

In the MineMeld logs I can see following:

2018-02-23T14:18:23 (17217)dag._device_pu

...

pverar by L1 Bithead
  • 10517 Views
  • 10 replies
  • 0 Likes

Resolved! Custom URL matching on wrong URLs

Hi,

 

I have a security rule that's supposed to be only allowing traffic for URLs in a custom URL category.  However, it appears that it's matching lots of other URLs that aren't in the category.  Below are some screenshots.  I'm running v8.0.6.  Let m

...

mprintz by L2 Linker
  • 10224 Views
  • 13 replies
  • 0 Likes

Resolved! Verify SSL and SSH Inspection

Hello everybody.

I am using the SSL Inspection over HTTP (HTTPS) service on our office GWs. I know how to set up rule bases and configure my Decryption Profile well. I have read PAN's documentations and watched a tutorial about how to configure a SSL

...

Resolved! URL database schedule

I was going to check the update schedule of URL database but this is no longer there. Although i can see update has happened today. License is still valid. PANOS is 8.7.

 

url-filtering-version: 20180228.20221

raji_toor by L4 Transporter
  • 5328 Views
  • 1 replies
  • 0 Likes

GP user logouts.

trying to find out if there's a list of the various messages and what they mean, particulary with 'globalprotectgateway-logout-succ'. I'm specifically trying to identify what 'Reason: remove previous login' means.

 

I assume it means the previous sessi

...

Resolved! How to translate IP and port from trust to trust?

My goal is to be able to reroute traffic from internal server 192.168.0.10 port 123 to other internal server 192.168.0.20 port 456

 

My understanding is that I do not need a u-turn nat rule since we're using internal IP addresses, however so far I've n

...

Resolved! DNS Sinkhole - working or not?

I have followed the configuration guide for setting up dns sinkhole but i am not seeing the expected output in the logs.

 

My configuration is as follows:-

Client sits on a zone 'mplstrust' (internal LAN)

Internal DNS Server sits on zone 'dnstrust' (inte

...

shaneo by L1 Bithead
  • 6249 Views
  • 6 replies
  • 0 Likes

Resolved! suspend passive

If you suspend a passive firewall in an active/passive HA configuration does it just mean that you have turned off HA and the active cannot fail over to the passive?

jdprovine by L4 Transporter
  • 5264 Views
  • 5 replies
  • 0 Likes

Resolved! Probably a simple question

Our product detects malware in network traffic streams (the product does not really matter here).   When we generate what we call an event, we know the source/destination ip/port.   We have had some customers ask for automatically putting the externa

...

  • 24216 Posts
  • 117 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks