This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4222 Views
  • 0 replies
  • 0 Likes

Resolved! Virtual Firewall

Dear All,is it possible to make a Local Virtual Firewall using Hyper V or Vmware for the purpose of learning the functionalities of the Virtual Firewall ?

Resolved! Can't join Windows Updates server, application "not applicable"

Hi ! I'm trying to connect the server to the Internet in order to download and to install updates. My server is a Windows Server 2016, so i'm trying to reach Windows Updates servers. In order to do that, I created a rule in the firewall : The address group contain theses addresses : To verifiy that my server can reach Windows Update server, ...

Regle SRVACD WU.PNG
adresse.PNG
Log.PNG
Srv - WU not applicable trame.PNG

Adding a section title to a group of rules

Hello,is there a way of adding a title/header to a group of rules in order to create some logical structure/grouping in the rule set?In Checkpoint this is possible and we find that it helps keeping a big ruleset organised.Thank you.

NicPezzi by L0 Member
  • 3619 Views
  • 1 replies
  • 0 Likes

Whats wrong with my xpath??

Hi all, trying to delete a single object from a static address-group. Why does it keep deleting entire group?? My syntax below: https://x.x.x.x/api/?type=config&action=delete&key=LUFRPT1BeWFJamVEYmdUV0JXZTdjNlFzOUMzdmhOaXM9RkdEb0lMT1g1WVNhMk9mL3&xpath=/config/devices/entry/vsys/entry[@name='vsys2']/address-group/entry[@name='clyde']...

Using unlicensed VM100.

I have a VM-100 on VMWare ESXi running 7.0.4 . The demo license has expired for VM.Would I be able to us it for testing still ( not using any url,threat features). I am see speed issue from trust to untrustand traffic just trickles.

How can I get dual ISP with DUAL IPSEC Tunnel to work with static routes and no tunnel monitor?

HI, How can I get dual ISP with DUAL IPSEC Tunnel to work with static routes and no tunnel monitor? I want the IPSEC tunnel to only failover when the primary circuit goes down. Problem I am having is the static route metrics is not taking over when the primary ISP and primary IPSEC tunnel goes down. Metric is 10 for primary tunnel and 20 for bac...

junior_r by L3 Networker
  • 3827 Views
  • 3 replies
  • 0 Likes

FQDN jobs FAILED

Hi, We have added several FQDN objects and its not working. If we run update.symantec.com (Objectname update.symantec.com):Not resolvedus.archive.ubuntu.com (Objectname us.archive.ubuntu.com):Not usedxxxxxxx (Objectname HOST_xxxx13):Not resolved 2017/04/25 13:35:54 29960 FqdnRefresh FIN FAIL 13:36:042017/04/25 13:31:44 29959 FqdnRefresh FIN FAIL...

Resolved! High number of logins to AD

Good day, Is it normal for the account that the FW uses to get the user-id information from AD to have a high number of logins? Across our entire network, this account is over 90% of all of our successful logins. It just seems that this account is logging in way too much. Thanks

Resolved! LAN users cannot reach GP users

Hi All, I've one inquiry where the client used to have an issue where the GP users can reach the LAN users but not vice versa.Users in LAN and GP are on the same zone (Trust) but only GP can ping the LAN. The tunnel of the GP doesn't have an IP address by default, I've tried to add an IP address for the tunnel but its still not working. Nothing ...

How to disconnect remote users at a specific hour

Goodmorning,I need to disconnect one or more users from Global Protect VPN at a specific hour.I try to explain, I don't want that after 7pm the remote suppliers can work on my net. I can't use the scheduled policy rules becouse the sessions started before 7pm (for example Remote desktop or ultraVNC) will stay active.So I have thought to disconne...

FassaSRL by L1 Bithead
  • 8336 Views
  • 5 replies
  • 0 Likes

Resolved! URL Filtering Issue

Hi, Without URL Filtering in the Security Profile of the policy, we can access vimeo.com but with URL filtering profile, getting error message below in IE, Chrome and also on the phone. No proxy used, no SSL decryption. This is happening to the category 'continue' and https.Streaming-media is in Continue Categories. Below is a screenshot of the ...

Error.png
DetailedLogView.png
Farzana by L4 Transporter
  • 4484 Views
  • 4 replies
  • 1 Likes

Source zone - source address

If you enter a specific source zone but any for the source address what traffic is really allowed? Does is only allow addresses that are listed in the specified zone or is it truly any IP address?

jdprovine by L4 Transporter
  • 7715 Views
  • 11 replies
  • 0 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks