General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! PA 3000 Error

I just had the follwing error on my PA

 

gdb: 2 tracked gdbs

gdb: 3 tracked gdbs

gdb: 3 tracked gdbs

pktproc_n_log: got max gdb failure event

 

Then the DP re-started.

 

Does any one know what this means.

 

RC-BHF by L2 Linker
  • 2837 Views
  • 3 replies
  • 0 Likes

MineMeld + Palo Alto Networks on Dynamic Block List

 

Is there anyone able to share on how to configure minemeld nodes to automate resolving/capturing the “*.google.com.*” dynamic IP address, so I could integrate with palo alto networks dynamic Block list feature to identify most of the google.com IP

...

Screen Shot 2016-07-19 at 9.00.47 am.png
dkoh by L2 Linker
  • 10807 Views
  • 8 replies
  • 0 Likes

Resolved! App and Threat content update release 609 MIA?

Am i the only one who got the reutine email about content update 609 who can't find it?

 

It's not online for a dynamic update check by the firewall, nor is it online for manual download as far as I can tell.

 

Anyone else seeing this update MIA?

 

Thanks

darren_g by L4 Transporter
  • 2566 Views
  • 2 replies
  • 0 Likes

Connecting L3 Port of Palo Alto to the Switch

Hi there,

 

On Palo Alto I have configured L3 interface and assgined ip address to it. I would like to connect this interface to the switch. The switch has an SVI configured with the port in the same vlan as the SVI. Can I connect the Palo Alto interfa

...

Stable OS

I am currently on 7.0.7 and was thinking of upgrading to most stable version.  Does anyone have any recommendation or cautions?

jdprovine by L4 Transporter
  • 1400 Views
  • 1 replies
  • 0 Likes

Minemeld - Cannot create new Miner Node

Heya All,

 

I've been testing out minemeld and have it a bit of a brick wall.. When I attempt to create a new miner node via CONFIG > NEW, it completes successfully but the node cannot be found listed under nodes so I cannot add it as an input to the i

...

Error Checking credentials - Gateway Timed out

Hi There,

  I have installed Minemeld on my Ubuntu Server 14.04.. And the service is up and running.. Wheneve I use the default Username and Password to logon to the console, it gives me an error "Error Checking credentials - gateway timed out".. I ha

...

maltwist by L2 Linker
  • 7705 Views
  • 4 replies
  • 0 Likes

URL Continue and Affect on Applications

Does anyone have any information on the functionality of an application say facebook or netflix on a phone (Android/IOS) where the traffic also goes through a URL policy that has those websites in a "Continue" function?

 

Currently the Netflix applicat

...

Domain syslog match not functioning

Hi!

 

I'm having some trouble matching domain indicators on syslog feeds. So far I have a setup like this:

 

ransomwaretracker_RW_DOMBL (Miner) -> aggregatorDomain (Aggregator) -> feedDomainHCGreenWithValue (Output) -> Domain EDL within PAN-OS

 

The

...

PAN-200 CLI - limited commands

hi

i`m trying to troubleshoot some vpn tunneling connection drops
so i logged to the CLI execute some commands to troubleshoot the VPNs

 

test vpn ike-sa gateway
show vpn ike-sa gateway
test vpn ipsec-sa tunnel

 

none of this command exist even in configure

...

pan200.jpg
Gav-Yam by L0 Member
  • 2169 Views
  • 3 replies
  • 0 Likes

Captive portal + decryption + squid: https problem.

Hi,

I try to configure path for users to access the Internet. I use Palo Alto and squid. But not everything works as I expected.

The path:

user---Palo Alto ---squid ---Internet.

Squid is behind Palo Alto because of citrix users. I want to control citrix

...

okress by L1 Bithead
  • 2011 Views
  • 3 replies
  • 0 Likes

Resolved! Session Info on one Interface

I'm trying to find the session info on our outside interface; however I can't seem to find a command simular to show session info for looking at one interface. 

BPry by Cyber Elite
  • 1554 Views
  • 1 replies
  • 0 Likes

Resolved! Where is PAN-OS 7.0.0?

I have been running PAN firewalls for years and have been the person responsible for upgrading PAN-OS on them since PAN-OS 3.1.9.  Each time, going from one release to a version in a different major release involved downloading the base version of th

...

VPN Tunnel down - Troubleshoot

Hi Admins,

I need some help to troubleshoot our problem with the VPN Tunnels. We installed a Cisco to PaloAlto VPN tunnel. The PA in passive mode. But constantly the tunnels go down.

Here are some log outputs:

less mp-log ikemgr.log

2014-04-23 09:21:54

...

Hithead by L4 Transporter
  • 11724 Views
  • 24 replies
  • 0 Likes
  • 24289 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels