General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Sending Before Change and After Change details in Panorama to Syslog

I've been testing the logging of change events to a syslog server from Panorama. Syslog events indicate a change made by a person and the general section of the change without giving any specific details of what was changed. Looking in Panorama in

...

Shutting down/disabling subinterfaces

I am very new to the PANOS world so I will apologize in advance if this is obvious, however my search of documentation and knowledebase did not yield anything. I have been looking for a way to administratively shut down sub interfaces. Is this possib

...

PA equivalent of ASA packet tracer?

One of the more useful features in troubleshooting on the PIX/ASA (which we used until recently) is the packet tracer, which allows us to enter source/destination IP/port, etc and check to see if a given connection is allowed or blocked, and by which

...

Scheduled Log Export Failure

I have Scheduled Log Export but it's failing. The system log reads "Failed exporting traffic log via ftp (last-calendar-day)".

If I run the export command via CLI, it runs successfully.

>ftp export log traffic start-time equal 2012/11/28@00:00:00 end-

...

Resolved! commit confirmed X on PaloAlto firewall ?

Hello All,

I am a newbie to PA firewalls but have some experience with JunOS firewalls. I like the "commit confirmed XX" command on JunOS because it will revert a change after XX minutes if for some reason I get locked out. A good example is when c

...

Resolved! Cannot connect to management server

Dear All:

I had meet this problem for three times ,and It comes again , I can ping

the Management port with a low delay , but can not login through the https

and can login from SSH, but without any cli , I can't typing . and always

"Oct 30 12:21:13 Erro

...

Exclude www.google.* from decryption

Hello,

are you able to exculde https://www.google.com ; https://www.google.de and other domains from SSL decryption?

Or clients complain about the slow loading of the website when they open Google or try to search something.

Currently i add in a white c

...

SysLog setup not working

Hi,

I am using PA-2050, with PAN OS 4.1.3.

From few days I am trying to configure the syslog to be sent to a central logging system. I followed every possible documentation, but I am not getting any syslogs coming to the syslog server. I tried on sys

...

Resolved! Maximum number of FW admin sessions

Hi Community

I was teaching a class and was asked a simple question:

Is there a max number of FW administrators that can be concurrently logged into the FW at the same time?

I have a large customer (a Managed Service Provider) with a large number of FWs

...

Applications not being identified correctly

I am running into a number of situations where the applications are not being identified correctly and thus not working. I can see that the applications is using the correct port, but the PA shows it is "web browsing", unknown, etc. Examples:

KaKao

...

Resolved! Commit failed - failed to send phase 1 to client logrcvr

Hello,

Since this morning I'm not able to commit any change from my panorama to my firewalls

Here is the message error that I receive:

Details:
. Management server failed to send phase 1 to client logrcvr
. Management server failed to send phase 1 abort

...

GlobalProtect reports a "Client Certificate Error" but still connects

Hello-

I'm running a PA-500 on with GlobalProtect for VPN access. Just recently our users started experiencing an issue wherein they try to connect and receive a "Client Certificate Error" error dialog. However, after they click OK to close the dial

...

Resolved! SHOW SHADOW RULES?

Hello,

do you know if it's possible to check shadow rules without do a commit. like a commit check? or show shadow rules?

thks,

Alex

Global Protect 1.2.2-14 winhttpObj, error! ipaddress

Hi,

I keep getting this error when trying to connect with global protect, this pc is on the internal network. I should get the massage 'Connected Internal'...any ideas. I have included the log below and highlighted the line.

(T3776) 04/24/13 09:46:14:8

...

Commit Error "commit operation aborted as all daemons are not available"

What does it mean and how to solve it?

Regards Robert

Unlock your full community experience!

Rules and Best Practices

Resolved! commit confirmed X on PaloAlto firewall ?

Resolved! Cannot connect to management server

Resolved! Maximum number of FW admin sessions

Resolved! Commit failed - failed to send phase 1 to client logrcvr

Resolved! SHOW SHADOW RULES?