General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Resolved! Miner to collect AWS IP

I would like to setup a new Miner to collect AWS Ips from the following http://docs.aws.amazon.com/general/latest/gr/aws-ip-ranges.html, using URL https://ip-ranges.amazonaws.com/ip-ranges.json. How would that be accomlished, I can't seem to locat

...

Resolved! Global Protect 4.0.2 -19 only connects with Windows Administrator Account

Hello everybody,

recently I am facing a strange Problem with Global Protect.

If I log into a Windows 7 Machine (64-bit) with an Administrator Account and enter Credentials of a NON-Administrative Account in Global Protect everything works just fine.

B

...

Resolved! Importing a WildCard SSL to use with GlobalProtect

Hi All,

Im trying to import a WildCard SSL to use for our Palo Alto GlobalProtect VPN. Im Having some trouble as this is my first time using SSL. I can import the WildCard but im not able to link it to its Root CA (GoDaddy). Do i have to have this si

...

DNS proxy to GP clients

DNS configured in GP settings: Primary DNS 10.250.1.1, secondary DNS 10.250.1.2

Access route: split tunnel- 10.250.0.0/16 allowed in GP.

Once clients are connected to globalprotect, they are getting the above DNS settings. so the traffic going to int

...

Resolved! GP Clientless VPN setup

Hi, i have a PA200 for a testing purposes i want to enable clientless VPN access. Went to Device/licences and i see i do have a licence enabled.

then going to Device/dynamic update i do have clientless software uploaded:

but when i try to activate it

...

How to download Panorama?

Can anyone redirect to the lkink to donwload Panorama?..can';t see it under Software Updates in support account.

URL Filtering of Active Sync

Hello

There is some problem concerning url filtering of Active Sync.we create url rule which must allow Active Sync but it doesnt work.we exclude this rule it is working.is there any particular configuration about Active Sync?

Resolved! Palo Alto global Protect setup issue

Hi All,

I'm currently trying to set up an SSL VPN using the global protect client on a Palo Alto FW.

I have:-

- issue a self signed root CA and CA to the palo

- set up VPN tunnel

- created VPN zone

- setup an authentication profile using RADIUS and directe

...

Resolved! Response pages not always presented to users

My response pages work when users attempt to browse to a blocked category but when the blocked item is buried within the page users just get a blank screen until the connection times out.

Any ideas or suggestions would be greatly appreciated!

Thanks!

Zone Protection Profile - testing

I've setup a Zone Protection network profile and applied it to our DMZ zone. I changed the default for port scan on the Reconaissance Protection tab to 30 events in 3 seconds. TCP port scan is enabled, and the action is set to block-IP.

I run a tes

...

URL Filtering - Chrome Device Client

Long time Palo user.

We use the URL filtering add-on.

Anyone know if Palo plans on making an extension for Chrome devices? Every other URL filter has this already, and we may have to move off Palo to get this functionality.

Thanks.

Dannon

Resolved! How to Replace a Managed Device (PA-3020) with a New Device (PA-850)

Hi Guys,

I am trying to replace a PA-3020 fierwall with a new Device (PA-850)

could someone maybe give me some Hints with the best Practice?

if the devices were of the same time it would have been pretty straigth-forward according to some docs release

...

Resolved! GlobalProtect Authentication with both Active Directory and local accounts

Hello,

I'm deploying a GlobalProtect VPN and I'm facing a problem in the Authentication.

I have both LDAP and Local authentication profile that are configured and I want to be able to connect with either an account in the Active Directory or the loca

...

I can reach a subnet trough a tunnel without proxy ID

Hello Community,

I´m having a strange behavior after configuring an IPSec tunnel, the situation is that I can ping a subnet trough the tunnel which hasn´t a proxy ID. This subnet has an entry in the virtual router and the tunnel interface points to i

...

Advertise 10.10.10.0/24 via BGP

I am trying to understand how to advertise my network 10.10.10.0/24 via BGP with the Palo. in the Cisco world, I use the command NETWORK 10.10.10.0. But with the Palo Alto, is it EXPORT or REDISTRIBUTION? Any comments will be greatly appreciated. Thx

Discussions

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

Discover LIVEcommunity Through Our New Animated Explainer Video!

Resolved! Miner to collect AWS IP

Resolved! Global Protect 4.0.2 -19 only connects with Windows Administrator Account

Resolved! Importing a WildCard SSL to use with GlobalProtect

DNS proxy to GP clients

Resolved! GP Clientless VPN setup

How to download Panorama?

URL Filtering of Active Sync

Resolved! Palo Alto global Protect setup issue

Resolved! Response pages not always presented to users

Zone Protection Profile - testing

URL Filtering - Chrome Device Client

Resolved! How to Replace a Managed Device (PA-3020) with a New Device (PA-850)

Resolved! GlobalProtect Authentication with both Active Directory and local accounts

I can reach a subnet trough a tunnel without proxy ID

Advertise 10.10.10.0/24 via BGP

No "certificate used by" field when generating certs for SSL forward trust and untrust?

A question about snat address pool couse a route loop

How do I get the documentation / training for creating advanced XQL queries

panorama disk health

Recommend os version

Re: Exclude only communications on specific port numbers from Global Protect

Re: Software NGFW Credits

Re: Advanced DNS Security vs DNS Security License

Re: Replacing HA Hardware

Re: About API keys when using the curl command

Unlock your full community experience!

Resolved! Miner to collect AWS IP

Resolved! Global Protect 4.0.2 -19 only connects with Windows Administrator Account

Resolved! Importing a WildCard SSL to use with GlobalProtect

Resolved! GP Clientless VPN setup

Resolved! Palo Alto global Protect setup issue

Resolved! Response pages not always presented to users

Resolved! How to Replace a Managed Device (PA-3020) with a New Device (PA-850)

Resolved! GlobalProtect Authentication with both Active Directory and local accounts