This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4112 Views
  • 0 replies
  • 0 Likes

WildFire - how to configure the frequency of file submission to Wildfire cloud for analysis?

Hello Everyone, I did not manage to get this information in other online resources and in Wildfire -> General Settings does not seem to have this option. Hence I am asking for your help on these questions: How can I configure the "frequency" of my PaloAlto as to when it will send sample files to WildFire cloud for analysis? (e.g. time interva...

Setting up Policy Based Forwarding with two ISPs and 1 VPN tunnel

I've already read the articles in the live community for starters. Never setup a branch office before. This new branch office has 2 isp's and 1 VPN tunnel from there to HQ. I have the firewall completely configured already for using 1 ISP and the 1 VPN tunnel. Cannot follow the articles that exist on this subject. There are too many assumptions ...

bvadmin by L0 Member
  • 1881 Views
  • 1 replies
  • 0 Likes

Security Policy Listing

Hello, What’s the best way to generate security policy report to only show the listing of all the Security Policy rules on a PAN? I used the custom report and selected Source Zone, Destination Zone, Rule, and Application(also, played with adding other attributes) but wit didn’t quite generate the same listing as the ones showing when reviewi...

Resolved! Selection of the GlobalProtect portal by users

Hi ! We would like to install 2 GlobalProtect portals:- one for the connection to the internal network since the outside with a VPN by using the GlobalProtect client ;- one for the connection to the internal network with the GlobalProtect client, in premises of the company. To make this configuration easy to use for user, we would to make the us...

Palo Alto with Silver Peak SD-WAN

Hi all, Has anyone done a Silver Peak SD-WAN solution with Palo Alto Firewall ? if so, do you mind share the physical layout ? and how you handle redundancy ? I am working on a Silver Peak SD-WAN solution with Palo Alto firewall. The internet circuit will be terminated on the PA and Silver Peak will sit behind the PA. The PA will be the default ...

datran by L0 Member
  • 2937 Views
  • 2 replies
  • 0 Likes

Resolved! wildcard bitmasks

Will pan os support use of wildcard bitmasks in address objects in future as cisco ASA does.For example aal devices in in the 10.6.0.0/16 supernet ending on .1210.6.0.12 0.0.255.0. This will eliminatie a lot of entires in object address groups.

Resolved! Global protect VPN disconnecting multiple times

Hi,Im facing issue with connecting to GP VPN, unfortunatly im the one who is having issue.VPN works fine on other cmputer but having issue with my computerbelow are the error msg i got during the VPN disconnect time (T10836) 04/11/17 18:51:28:501 Debug( 980): VPN handle dhcp packet(T10516) 04/11/17 18:51:46:676 Debug(1189): SSL3 alert write:fata...

Resolved! Search rules based on Source Zone

Hi, If anyone can help me. Is there a way that i could filter all Security rules just based on the source Zone ? For example just show me Security Rules from Source Zone x ( and i need to see what rule corespondes to that zone) Thanks Alban

Resolved! TAP:Specifying external interface

I'm working on a home lab, have an ESXi server with some UTM VMs running and I'd like to give them something interesting to look at. Following the online documentation (both in support and this: https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Configure-a-Palo-Alto-Networks-Device-for-Tap-Mode/ta-p/59438) I can't seem to get ...

Resolved! Issue allowing port 2463

I'm trying to allow port 2463 (lsi-raid-management) traffic from my untrust zone to one of my vlan zones. I have added it to an application group and added a policy for traffic between my untrust zone and vlan zone with that application group. Every other application in the application group is allowed to pass but 2463 is still being blocked by ...

tglear by L1 Bithead
  • 7199 Views
  • 12 replies
  • 0 Likes

Resolved! Google Play Store Problem

Dear Members,Am here a new member, please I wish to know how to block only the google play store.If I try to block only that with google base application, other traffics also blocked.Let me know how to block only google play store.Regards,RKV

Resolved! Multiple Response Pages

Does anyone know of a way to make multiple response pages for different user groups. Specifically the URL Filtering and Category Match Block Page? Essentially what I'm trying to do is create two different responses; one that will tell you your request was blocked because of policy, and the other one will simply block the traffic and display a b...

BPry by Cyber Elite
  • 10248 Views
  • 8 replies
  • 0 Likes

palo alto firewall insufficent data in traffic Logs

I see lots of enteires in regards to Insufficient-Data but how does one go by troublshooting them? I understand the definition btu is Packet capture the only way to get reason for it? Considering I have a any port any service rule I wouldnt expect too see it

Resolved! How to check drops on PA-500 due to performance limits

Hello! Is there way to check session/packet drops on PA-500 due to performance limitaions? Scenaro:There is PA-500 appliance, that provide internet access to +2000 users with agentless integration with AD. Management CPU average load is about 70-100 %Data plane CPU: 40-60%Session utilization 40-60% Main internet-access rule has Threat-Prevention...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks