This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1186 Views
  • 0 replies
  • 0 Likes

Resolved! Miner to collect AWS IP

I would like to setup a new Miner to collect AWS Ips from the following http://docs.aws.amazon.com/general/latest/gr/aws-ip-ranges.html, using URL https://ip-ranges.amazonaws.com/ip-ranges.json.    How would that be accomlished, I can't seem to locat

...

Resolved! Importing a WildCard SSL to use with GlobalProtect

Hi All,

 

Im trying to import a WildCard SSL to use for our Palo Alto GlobalProtect VPN. Im Having some trouble as this is my first time using SSL. I can import the WildCard but im not able to link it to its Root CA (GoDaddy). Do i have to have this si

...

DNS proxy to GP clients

DNS configured in GP settings: Primary DNS 10.250.1.1, secondary DNS 10.250.1.2

 

Access route: split tunnel- 10.250.0.0/16 allowed in GP.

 

Once clients are connected to globalprotect, they are getting the above DNS settings. so the traffic going to int

...

Resolved! GP Clientless VPN setup

Hi, i have a PA200 for a testing purposes i want to enable clientless VPN access. Went to Device/licences and i see i do have a licence enabled.

then going to Device/dynamic update i do have clientless software uploaded:

 

but when i try to activate it

...

PANSSL.jpg
PANSSL2.jpg
PANSSL3.jpg

URL Filtering of Active Sync

Hello

There is some problem concerning url filtering of Active Sync.we create  url rule which must allow Active Sync but it doesnt work.we exclude this rule it is working.is there any particular configuration about Active Sync?

Radmin_85 by L4 Transporter
  • 1963 Views
  • 1 replies
  • 0 Likes

Resolved! Palo Alto global Protect setup issue

Hi All,

I'm currently trying to set up an SSL VPN using the global protect client on a Palo Alto FW.

I have:-

- issue a self signed root CA and CA to the palo

- set up VPN tunnel

- created VPN zone

- setup an authentication profile using RADIUS and directe

...

Resolved! Response pages not always presented to users

My response pages work when users attempt to browse to a blocked category but when the blocked item is buried within the page users just get a blank screen until the connection times out.

 

Any ideas or suggestions would be greatly appreciated!

Thanks!

sturek by L0 Member
  • 3030 Views
  • 3 replies
  • 0 Likes

Zone Protection Profile - testing

I've setup a Zone Protection network profile and applied it to our DMZ zone.  I changed the default for port scan on the Reconaissance Protection tab to 30 events in 3 seconds.  TCP port scan is enabled, and the action is set to block-IP.

 

I run a tes

...

URL Filtering - Chrome Device Client

Long time Palo user.

We use the URL filtering add-on.

 

Anyone know if Palo plans on making an extension for Chrome devices?  Every other URL filter has this already, and we may have to move off Palo to get this functionality.

 

Thanks.

Dannon

 

dannon by L3 Networker
  • 1983 Views
  • 1 replies
  • 0 Likes

I can reach a subnet trough a tunnel without proxy ID

Hello Community,

 

I´m having a strange behavior after configuring an IPSec tunnel, the situation is that I can ping a subnet trough the tunnel which hasn´t a proxy ID. This subnet has an entry in the virtual router and the tunnel interface points to i

...

Carracido by L3 Networker
  • 4984 Views
  • 11 replies
  • 0 Likes

Advertise 10.10.10.0/24 via BGP

I am trying to understand how to advertise my network 10.10.10.0/24 via BGP with the Palo. in the Cisco world, I use the command NETWORK 10.10.10.0. But with the Palo Alto, is it EXPORT or REDISTRIBUTION? Any comments will be greatly appreciated. Thx

jac101 by L2 Linker
  • 1951 Views
  • 2 replies
  • 0 Likes
  • 24171 Posts
  • 117 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks