This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1936 Views
  • 0 replies
  • 0 Likes

User activity Report

Hello all

is it possible to put timestamp in user activity report for chronology?I am checking the Including detailed browsing but i can not see in the report which user or group of users at what time went into some resource

Radmin_85 by L4 Transporter
  • 1663 Views
  • 1 replies
  • 0 Likes

Firewall working as proxy for mail server

I have customer using TMG holding public ssl certificate for mail . The mail server doesnt have ssl certifcate.

Customer wants to eliminate TMG and using palo. Can palo hold the cert to authenticate the ssl . Mail server

sits behind the palo in trust z

...

Global Protect - two portals same firewall

Hello all,

 

Here is my question. Can I configure on the same firewall one global protect profile to only authenticate users based on certificates and a separate profile to authenticate users based on their AD credentials?

 

Currently I have authenticati

...

Resolved! Global Protect with multiple portals

Is it possible to have more than 1 Global Protect portal and gateway on a single appliance?  We use tunnel all mode with a route of 0.0.0.0/0 for all of our users.  However today a vendors need access but want to use their own systems at the same tim

...

nthen by L3 Networker
  • 8359 Views
  • 4 replies
  • 2 Likes

OCSP App-ID fail

Hello,

is anyone using ocsp as single app in a rule ? It's sometimes failing to match, seen as "web-browsing" although on very easy to recognize URLs such as ocsp.comodoca.com. Quite annoying when you debug a third-party software failing to setup beca

...

Resolved! Minemeld missing new O365 web

Hi,

 

We have installed PA with Minemeld. Everything is working fine but sometimes we can not access to any function in O365 online (for example "to create a new word cocument"), so we go to PA and we see that in URL logs that PA is blocking this web

...

Resolved! Query on URL filtering

Hello,

 

We are using this Security Policy:

Source->Inside, User->any, Destination->any, Application->any, Service/URL category->any, Action->allow.

We are using Group Profile under Profile Setting with a URL Filtering Profile 'test-URL'.

In this URL Filt

...

Farzana by L4 Transporter
  • 3391 Views
  • 2 replies
  • 0 Likes

QoS statistics Graphic monitoring Issue

Hello,

 

Using PAN-OS 6.1.17.

 

At first, Bandwidth graph was not showing in both Chrome and IE. The only change I made was adding all the classes into the QOS profile. The classes that were in use by QOS were already showing up in the other statistics t

...

Farzana by L4 Transporter
  • 3797 Views
  • 4 replies
  • 0 Likes

When are we getting a GlobalProtect Client for Linux

Hey guys,

 

I already know how to get my Linux clients (Ubuntu) to connect via xAuth, and it works great. However, I've been tasked with implementing MFA to the VPN infrastructure. Works fine for the Windows/Mac clients using the GlobalProtect Client.

...

Resolved! Failover methods Manual vs Link Down (traffic loss)

There are few triggers that could cause a failover in HA cluster.

I'm interested to understand the difference between manual (graceful) and a hard failover like Link Down. 

In a matter of network traffic loss, is there a difference between Link monitor

...

Trustnet by L1 Bithead
  • 9712 Views
  • 10 replies
  • 1 Likes

Active | Active Dual WAN

Can someone tell me what the supported configurations are for an active | active dual wan configuration in regard to physical wiring.

 

Can I have one ISP connected to one Palo and the other ISP on another Palo or do I need both connected to both, run

...

Question about redundent paths with IPSEC Tunnels.

I have a HA-pair of 3050s in my corp office with an single existing IPSEC tunnel to a remote office on a 200.

 

The remote office has very poor reliability on it's existing connection and the local ISP has provided them with a backup satcom link they c

...

Resolved! GlobalProtect and AD group restriction

Hi,

I'm setting up GlobalProtect, which works just fine.  Now I want to restrict GlobalProtect access to only 1 AD group.  I created a separate GP authentication profile with my ssl_vpn AD group in the allow list, but as soon as I commit that allow li

...

fcremer by Not applicable
  • 19252 Views
  • 9 replies
  • 0 Likes
  • 24197 Posts
  • 117 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks