This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! Understanding Static NAT

Hi All,

When it comes to Static NAT it will be one to one NAT in vendors like Checkpoint and Cisco ASA. I am bit confused with the NAT configuration in Palo Alto. Went through config guide and examples of NAT as well but still confused.

We have a sce

...

Resolved! Can log in PAN OS VM

I get this error when i try and log in

OZ3-06-05 06 : 11.0Z5 -0700 Error :
sysd_construct_sync_importer(sysd_sync .c : 360): sysd_sync_register() failed: (111) Unknown

mzedalis by L0 Member
  • 1139 Views
  • 1 replies
  • 0 Likes

file blocking profile not working for SFTP

Hii

we are trying to access our internal storage using SFTP from internet. after applying file blocking profile we are able to access mentioned files but firewall not restrict the file. we found that file blocking is not happening.

 

Please advise ho

...

Resolved! unknown command during SSH script

by testing a ssh skript i get an "unknown command" error from the CLI

 

user@host:~/> cat reset.sh ssh -t -t fw.domain.de << EOF set cli pager off show user ip-user-mapping all type CP debug user-id reset captive-portal ip-address 1.2.3.4 quit EOF ...

mhuels by L3 Networker
  • 1075 Views
  • 1 replies
  • 0 Likes

Resolved! Running Security LifeCycle Review SLR for a NGFW

Hi All,

I have access to the PA HUB and want to run a SLR review for a client's NGFW (i have a statsdump file)

however it is asking me to activate this service and requires a cortex data lake instance of which i don't have one, is this still doable?

...

Ants by L1 Bithead
  • 1179 Views
  • 2 replies
  • 0 Likes

Certificates not appearing in XML running configuration

Dear colleagues,

 

I am having trouble with the custom Nagios plugin check_paloalto, specifically with the "certificates" check.

The rest of the checks are working fine.

 

Basically, the "certificates" check leverages the API calls and parse the XML

...

GGarolla by L1 Bithead
  • 784 Views
  • 2 replies
  • 0 Likes

Resolved! Best practice for Active/Passive HA and OSPF

I configured Active/Passive HA in an environment where the firewalls connect to a core switch. There is an OSPF adjacency exists between the active Palo and the core switch. I'm curious what the best practice is for OSPF and HA. When tweaking the OSP

...

inssider by L1 Bithead
  • 2543 Views
  • 2 replies
  • 0 Likes

Resolved! IKEv2 tunnel does not restore after HA failover

I have an IKEv2 IPSec tunnel that does not automatically restore after an HA failover. Once the IKE-SA and IPSec-SA is manually cleared, the tunnel eventually restores. I have other IKEv2 tunnels that restore after several minutes with no interventio

...

Day 1 Configuration of PAN-410 model firewall

I created day 1 config file for my PA-410 model firewall and loaded the configuration. But while commiting Got below error:

"email-scheduler -> Possible Compromise -> report-group 'Possible Compromise' is not a valid reference
email-scheduler -> Possi

...

Sujanya by L3 Networker
  • 2111 Views
  • 5 replies
  • 0 Likes
  • 24260 Posts
  • 99 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks