This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4393 Views
  • 0 replies
  • 0 Likes

whois lookups

I am on OS 7.1.10 and my whois searches through the ACC never work for me, anyone else have this issue or a resolution to the issue

jdprovine by L4 Transporter
  • 4170 Views
  • 8 replies
  • 0 Likes

Deleting VPN from iOS device

Hi All, How do you remove Global Protect from settings an Iphone? Went into settings --> general --> then VPN. But not able to remove or delete the profile. Also checked in profile management and the VPN is not located there. Does anyone have a solution for this?

Custom URL Category in security rule - traffic log shows allowed with "any" in URL Category field

I've read the articles about the processes that take place when analyzing traffic and understand that sometimes there could be an allow status when it seems there shouldn't be. However it also seems that if the traffic truly shouldn't be allowed there would be an associated log entry with some kind of denial.In my case there is no associated de...

UrlCat.jpg
herrmoss by L2 Linker
  • 8344 Views
  • 12 replies
  • 0 Likes

Safe Search enforcement not work with Quic

On a rule with open the following service:- service-http- service-https- udp-443and with URL Filtering profile where is enabled Safe Search Enforcementif a user use Chrome, and set up Resctricted Mode = off in youtube site, he can see any type of video without any problem.If I remove udp-443 and force the Chrome failback on SSL/TLS, if set up Re...

VPN Issues (IPsec Xauth PSK) after Update to PAN OS 8.0

Good evening, We've had an issue since we upgraded our PaloAlto 500 to Palo Alto PAN OS 8.0 a couple weeks ago. If it helps we actually updated to PAN OS 7.1 and then 8.0; so not entirely sure if the problem occured at 7.1 first. Windows Global Protect clients work just fine connecting to VPN, however we had others who connected from iOS, Mac ...

a.deboer by L0 Member
  • 3834 Views
  • 2 replies
  • 0 Likes

Resolved! Response page in active-active mode

Hello,Would anybody knows how to have a response page for Captive Portal redirect mode, inactive-active mode (PAN v4.0.4) ?For example, through a loopback floating IP ?ThanksChristophe

Tap and Layer 3 mode

HI I have my PA's looking at TAP from my switches and also L3. My thought was to look at traffic that wasn't being routed. But I was thinking what happens to my TAP traffic if I have a policy that allow traffic from zone staff so a L3, but the PA also see the packet on the TAP interface, that policy will not apply and that packet will get caugh...

Global Protect Question

Hi I am having (a new ) issue with global protect. Now the support person is telling me GP is not setup to allow connection made from the client to the laptop (GP client). I'm a bit flabber gasted. But hey I could be wrong. The guys is suggesting I need GP satelitte Alex

Miner for STIX using API token

couldnt find the miner of STIX API Token type.Below is the sample request. Appreciate any pointers to an existing miner and connfig requirement / help to create new miner. POST /stixapi/recent HTTP/1.1Host: ncert.nlabs.orgContent-Type: application/x-www-form-urlencodedapi_token=MY_TOKEN_VALUE

Resolved! Using Panorama to setup a HA cluster

Hi I am trying to setup a brand new pair of pa-5220's in active active. But I can't set aux1 & aux2 for HA1, HA1 backupIP address used for HAand I can't seem to push the config to the PA from panorama, a cyclical error - no ip address , HA not enabled , device ID not set... Is it possible ?Or do I need to setup the HA links first and then d...

PA SSL decryption for web traffic and squid

Hi Where should I be doing the decryption client -> pa (l3) -> squid -> internetorclient -> squid -> pa (l3) -> internet I thinking the first one, then I can also see who is making the request A

Resolved! The only populated item under the ACC tab is the risk factor

Hey there everyone, I'm running 7.1.11 on a PA-200. The top-applications widget under Dashboard tab works just fine, but nothing (other than risk factor) is presented under the ACC tab. No filters are active and it doesn't matter what time period I set it for. Actually, data pertaining to threats is displayed, with bytes and sessions always ze...

DHCP ISP CLIENT

Hi, I have a DYNAMIC ISP that I will use DHCP Client on interface. I know there is option to add default GW provided by ISP, but I only want to use this default GW for a couple IPS such as peer IPSEC IP. How can I do this with out PBF Thanks

junior_r by L3 Networker
  • 1869 Views
  • 1 replies
  • 0 Likes

Can OSPF run without a "true" area 0

I've started working for a new company who uses only static routing. We just turned up a second ISP at one site, but I noticed an issue with failover which is expected. When ISP 1 fails, local traffic at the site routes out ISP 2, but site to site traffic doesn't failover because of the metrics on the site-to-site VPNs at the other sites. At my ...

  • 24371 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks