This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4109 Views
  • 0 replies
  • 0 Likes

Resolved! Query on User-ID Agent

Hello, The issue we are currently facing is we have reached the maximum amount of items 50 in the PA user id agent software and currently have it running on 2 servers and have 100 devices now again we need to install on a third server to allow for more items. Is there another solution? or new version that allows more then 50 items?We are using P...

Farzana by L4 Transporter
  • 2888 Views
  • 3 replies
  • 0 Likes

Resolved! updates.uswest2.gslb.paloaltonetworks.com

Hi Team, Has the update server changed for dynamic updates ? updates.paloaltonetworks.com showing generic communication errors. A ping to updates.paloaltonetworks.com resolves to the address in the title, when ye change it in the config [device>setup>services>update server] connects again fine.. admin@TAC-HomeLab> ping source 10.1...

updateError.GIF
original.GIF
newone.GIF

Antivirus reset-both action for mail protocols

Hi! We enable the blocking email viruses attachement by setting the antivirus profile with an action “reset-both” for SMTP. The virus attachement could be blockded, however the sender’s mail server keep retry until timeout and no undelivered mail message returned to sender. Please advice? Thank you!Device : PA3050, PANOS 7.08

BillKuo by L0 Member
  • 8401 Views
  • 6 replies
  • 0 Likes

Authentication policy

Hello,I'm in proccess of migration from TMG to Palo Alto. One of the rules on TMG whic is used to publish web site to the Internet have AD autehntication enabled. Because I can't change anything on web server and I have to enable some kind of authentication when users are connecting to this site, I was thinking to use PAN Authentication policy f...

Resolved! When to upgade from 7.1.14 to 8.0.6

Hi Everyone,I know this is more of a personal choice rather than a exact science , I am currently running 7.1.14 on a PA 3600 which is very stable for my organisation at the moment, however I do not want to fall to far behind firmware levels , so I am beginning to question when to move to the current F/W My question is , have alot of people up...

Stuck out of management

Hello guys, I have made a stupid mistake on a PA-820. I have changed the Permitted IP in the Interface Management Settings to a single IP (the Panorama server) and now I cannot access the device anymore. Any ideas? I cannot access even in SSH. The Pan-OS versionis 8.0.3 and is peered with another device (that I can access). Thanks

Shye80 by L1 Bithead
  • 3644 Views
  • 2 replies
  • 0 Likes

Resolved! Question regarding VM series HA after a hardware failure

I am new to VM series PAs and looking into how to setup HA. So it is interesting that the license is attached to the host and VM file location. Any change in this needs a re-registration of the license via tech support. Even using VMotion would trigger a need for a support call. I then assumed that I could put one VM on a separate Hypervisor...

Panorama Read Only mode?

Hi all, I cannot modify my Panorama templates (Network, Device), even though I logged in with the admin account. As I attached the screenshots, it says (Read Only) mode and grayed out the check boxes, so I am unable to modify the Interface Management Profile or Services. However, the Device Groups (Policies, Objects) are okay. Does anyone have a...

Panorama_ReadOnly_services.jpg
Panorama_ReadOnly_interfacemgmt_profile.jpg

Multiple DHCP Scope’s on 1 interface

I have a router with 2 VLAN’s. The router is connected to a PaloAlto and behind this PaloAlto I have a server witch serves DHCP. The VLAN interfaces on the router are configured with a helper address to the DHCP server. We would like to remove all servers (and go fully cloud based). I decided I want the PaloAlto to serve the DHCP function. So: I...

Sjoerd by L2 Linker
  • 8747 Views
  • 6 replies
  • 1 Likes

App-id not working on some Apps

I am seeing a number of applications which have definitions, but are not being identified correctly: kaokatalk, league of legends, battle.net and guild wars to name a few. these are showing the correct ports but showing as "unkown-tcp". Is there some way to update these, reset the definitions, etc.?All of my App-ids are up to date.ThanksBob

BobW by L4 Transporter
  • 7708 Views
  • 3 replies
  • 0 Likes

Resolved! GlobalProtect Enforce Connection for Network Access Captive Portal detection

Hi, We are using global protect with the following agent features : GlobalProtect Enforce Connection for Network Access enable and Captive Portal detection enable with timeout of 3600 seconds. Howver we can see many cases at some hotels, and airports where the actual portal detection is not being recognised by Global Protect agent. Hence user ca...

Traps - Permit .exe file with specific certificate

Hi, We would like to add a specific certificate ("Exacq Technologies, Inc") to the TRAPS database so that it recognizes all the ".exe" with this certificate as correct and it is not necessary to upload them to Wildfire, since due to the size limitation of the files to be sent configured in the TRAP console itself, these are not analyzed and ther...

Removing peer from HA cluster

I have a pair of PA-3020s running 7.1.x in HA configuration. I need to remove the passive switch from the rack to be used in another location. What is the best way to disable the HA and delete the config from the active switch without risk of service interruption. Thanks in advance.

Resolved! Re-creating a specific routing configuration.

Hello folks,I am trying to reproduce a configuration from work where we use a Metro Line to connect our two sites. It's working at my job, but not at home. It seems like a simple setup and I think I am close, but having an issue. Checking if anyone may have a comment? My test is trying to connect to my esxi server from vsphere client, but una...

metrof.jpg
metroc.jpg
metrob.jpg
metrod.jpg
OMatlock by L4 Transporter
  • 4683 Views
  • 5 replies
  • 0 Likes

Interface in vsys

Hello this may sound like a stupid question but i could not somehow find a definitive answer to this in the PAN OS Guide: We have to configure a 3050 iun multi-vsys configuration. We would be needing 2 interfaces per vsys and we wil be having 2 vsys only. All the interfaces wil be L3. Regarding "physical" interface assignment, what is ALLOWED an...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks