This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4121 Views
  • 0 replies
  • 0 Likes

Outbound decryption and PAN-OS 8.0.2

we recently upgraded from PAN-OS 7.1.10 to 8.0.2 and some (but not all) websites are no longer decrypting For instance, gmail doesn't decrypt anymore and we have a rule that allowed that application. Since that traffic isn't decrypted, it comes up as SSL and isn't applied. Any known issues in 8.0.2 that would cause this? Any way to fix it? Heath

Resolved! Consuming mind meld feeds on Firewall

Hi, I have minemeld running on Azure and it processes and creates feeds as I would expect and can view them in a browser. The only change from the inital Azure build I have done is to install my own go-daddy SSL cert so out the box browsers will trust minemeld. My lab has a PA-220 running 8.0.2 and when I add an external dynamic list it erro...

Resolved! Failed to Fetch Packages

Getting error while executiing sudo apt-get update && sudo apt-get install -y minemeld rsyslog-minemeld rsyslog-mmnormalize Error Failed to Fetch http://minemeld-updates.panw.io/ubuntu/dists/trysty-minemeld/main/binary-amd64/packages 403 Forbidden [IP:54.XXX.36.XXX 80]

Capture2.JPG
hsoni by L1 Bithead
  • 10407 Views
  • 5 replies
  • 0 Likes

Resolved! GP Access Routes

Is there any way to negate adding a prefix to the GP Access Routes? We have an app that we don't want to change the communication path when a machine connects with GP. So if it was accessing this app through an external method it should remain that way.If the app is using address 1.1.1.1 prior to connecting with GP, then the access routes would ...

Resolved! Dropped Traffic

We have PA3000 running 7.1.10I have issue where tarffic is being droped by the Deny All rule , the last rule even though I have allowed this tarffic to come in ext zone ext zone.Also for some reason the destination seems to be Internal where as the interafce is the public one. Does any one have an explanation

Untitled.png
RC-BHF by L2 Linker
  • 5977 Views
  • 7 replies
  • 0 Likes

User ID WiFi and LAN

Hello Our organisation does not use 802.1x authentication in our environment. We have LAN and WiFi for our employees. We want to implement User ID with PA with AD domains and User ID Agent. However I could not find documentation on User ID behaviour in following scenario:Our users have laptops and they use LAN when laptops are docked into dockin...

Blank page when logging into Panorama 7.1.9

Just wondering if anyone else has come across a situation where they were unable to load the Dashboard when logging into Panorama 7.1.9; or is this a one-off issue that only we have hit? Didn't matter which browser we used (ancient version of Firefox, older version of Firefox, latest version of Firefox, older Chrome, latest Chrome) the symptoms ...

fjwcash by L4 Transporter
  • 4564 Views
  • 1 replies
  • 0 Likes

PAN-OS 7.1 Resource List

Hi, I am looking to upgrade Panorama and firewalls from version 7.0.8 to version 8.0.2. Is there a requirement to upgrade PA and all firewalls to 7.1.0 prior to moving to 8? My main concern is if i am able to manage firewalls with 7.0.8 from Panorama running 8.0.2 Many thanks Craig

PA-200 | Auto Shutdown via UPS - USB

I'm wondering if the USB on the face of a PA-200 firewall can be used with a UPS to properly shutdown the firewall in the event of a power outage? If so, how can someone set this up?

Panorama - 50 user internet usage report

Hello, I have a list of 50 users who I need to run internet usage reports for. Is there a simple way to accomplish this?I can't do group reporting from Panorama. I dont really have the time to manually run 50 seperate reports. I can't run the group report directly from the firewall as the data is 6 months old and only exists on the panorama box....

Resolved! Custom Report; 'bytes' per 'vlan'/ '/24 subnet' with ? monitor tag ?

Hi all, I have a simple 'tenanted' environment. A /24 subnet represents a tenant behind the trust of my PAN.I want a simple report that shows 'traffic' over the last calendar month of that /24.I think this is simple by applying a 'monitor tag' per subnet. And then tagging my basic permit rules that match that source condition match of that /24...

Untitled.png
mpgioia by L3 Networker
  • 7189 Views
  • 5 replies
  • 0 Likes

Screwed up management IP

So I was configuring a new PA 200 using an XML file and I screwed up the management IP. So I logged into what I thought was my new device, but was an existing already operational device and changed only it's management IP without changing default gateway and other information. So now the device is inaccessable remotely. Is there a way to SSH ...

Rule matching: left-to-right question, unexpected output in traffic log

On PA5050 running 7.1.5, in the monitor:traffic logs section, traffic that matches interzone default rule shows up as matching the first rule in the list. The first rule is configured like so:source zone: any, source address: any, user: any, destination zone: any, destination address: any, application: I picked one that is not in-use e.g. 'doc...

Shanef by L0 Member
  • 6777 Views
  • 1 replies
  • 0 Likes
  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks