This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4254 Views
  • 0 replies
  • 0 Likes

Unable to ping to Secondary ISP IP from Primary ISP IP

Hello Everyone, I'm using two internet connections: a primary ISP and a secondary ISP. Is there a way to ping the public IP address of the secondary ISP from within the local network? I would appreciate it if you could share the configuration steps. Thank you so much!

URONMAPU by L1 Bithead
  • 154 Views
  • 1 replies
  • 0 Likes

SSL certificate has expired end date after PA decryption

Running into a weird problem with SSL decryption and a vendor's internet certificate that has broken after going through the PaloAlto. An external vendor updated their internet-facing certificate this afternoon and internal users immediately started receiving certificate expired errors. Externally the certificate appears fine, but internally the...

Need to block WINSCP application but want to allow ssh

Hi Team In sec policy I have allowed for some users only RDP and SSH application. But these users are able to use WINSCP application because WINSCP application also using port 22. I want to block winscp application but allow ssh application. How can we achieve this ? Please help us. RegardsMohammed Asik

How to get access to the knowledgebase articles (SSO Error)

Hello community, Has anybody experienced an issue with getting access to the knowledgebase articles recently? I am being redirected to a login page each time when try to open a link to the article provided by Google in search results. Once I successfully log in I get the same "Single Sign-On Error" with a text (https://knowledgebase.paloaltonetw...

dh by L1 Bithead
  • 840 Views
  • 6 replies
  • 3 Likes

Cloud Identity Engine - Sync / Attribute Verification

Is there a way to verify what attributes the firewall is pulling from CIE? I am using directory sync on CIE. I would like to confirm if the firewall has ever successfully pulled anything from CIE. The firewall is configured to pull SAM Account Name and User Principal Name user attributes under User-ID --> Cloud Identity Engine --> User Att...

nohash4u by L3 Networker
  • 77 Views
  • 0 replies
  • 0 Likes

Prisma Cloud defender agent unable to identify Red Hat back ported patches causing false positives

Hello, Wanted to throw this out here to see if anyone has run into this issue and hopefully found a solution. I have been reviewing vulnerabilities identified by the defender agent and have noticed that it is consistently unable to detect when Red Hat has back ported a patch to specific packages. It seems, despite being Certified for Red Hat ...

Where to begin

Hello Team, I just joined the community. I am passonate about learning Paloalto firewall. Please can someone help guide mo on where to start? Pangsui Linge

Unable to revert local changes to aggregate interface

Hello all, I have an issue with a couple of HA Palo Alto firewalls managed by Panorama. I was doing some tests for LACP and I overrode the configuration of an aggregate interface enabling LACP. Then I disabled it again from the firewall GUI (not from Panorama - so I overrode my previous override, I think). The problem is that now, when I try t...

GGarolla by L1 Bithead
  • 3866 Views
  • 3 replies
  • 0 Likes

Cortex XDR Uninstallation

I want to uninstall an agent, but it is not getting uninstalled because of anti-tampering , The endpoint is not connected with in the network so if a set global uninstallation password can i delete the endpoint using uninstallation password .

Expedition Installation

We are planning to Install Expedition in our air-gaped network. Please let us know what are the communications to be allowed in firewall for tool installation in our network without any issues.

Sujanya by L3 Networker
  • 1949 Views
  • 3 replies
  • 0 Likes

ロックアウト

コンソールからポリシーの設定の中で、URLフィルターの設定変更をしていたのですが 変更をコミットした後から、コンソールへのアクセスが不可となってしまいました。 変更前のセッションが残っている端末からも同様にアクセス不可の状態です。 こちらの環境から、変更したポリシーの修正ができなくなってしまったのですが 何か手立てはないでしょうか

EDL MS Intune All URL misses an entry

Dear all We got a question assigned about the PaloAlto EDL for MS Intune, the EDL "MSIntune All URL" (accessible via https://saasedl.paloaltonetworks.com/feeds/msintune/all/url). By 30th of April 2026, Microsoft added the URL "lgmsapeswiss.blob.core.windows.net" to her list, which can be reviewed here: Network endpoints for Microsoft Intune - ...

Resolved! How can I filter disabled rules in the 'policies'-tab

Hi,I am quite new with Palo Alto and I try to filter disabled rules, so that I only see the enabled rules. I know that a lot of syntax can be found in the monitoring tab, but since enabled/disabled rules are not in it, I cannot find. It is on the Palo alto itself, not Panorama.

  • 24362 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks