This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4108 Views
  • 0 replies
  • 0 Likes

WMI probing issue - "list is full"

Hi all, is anyone familiar with this issue? We are facing this currently but Google almost spits out nothing about this issue. I was going through the User-ID deployment and troubleshooting guide but nothing helpful there. Any ideas?

wmi.png
Rboehme by L2 Linker
  • 3827 Views
  • 2 replies
  • 0 Likes

Resolved! Decryption of SMTP using STARTTLS

Our current setup with Exchange uses SMTP with STARTTLS. We have a requirement from the business to try and decrypt/inspect the traffic. I configured decryption policy the same way as we do for our SSL web servers, but it doesn't seem to be working. The firewall App-ID will identiry the traffic as SMTP, but the decrypted flag is not set in th...

Strange SNMP Trap from PA500

Hello During last 7 days I got twice trap like this:Otrzymano pułapkę SNMP (notyfikacja: 1.3.6.1.4.1.25461.2.1.3.2.0.1) 1.3.6.1.2.1.1.3.0 = 473590626 1.3.6.1.6.3.1.1.4.1.0 = 1.3.6.1.4.1.25461.2.1.3.2.0.1 1.3.6.1.4.1.25461.2.1.3.2.0.1 = 1,2016/10/10 14:00:11,009401028532,SYSTEM,general,0,2016/10/10 14:00:11,,general,,0,0,general,high,l3svc: exiti...

_slv_ by L4 Transporter
  • 2108 Views
  • 2 replies
  • 0 Likes

Firewall policy for a web server with two websites

Hi Community,I am new to this forum and also not an exprienced person on firewall policies. So I thought to put my question on the forum. This is what I try to achieve, I have a group of web servers with one virtual IP serving two websites (HTTPS). Externally, these two websites have different public IPs. I need to apply ACL for one website and ...

Resolved! Add locally managed FW to Panorama

Hello everyone, I want to add clusters of locally managed FW to Panorama without modifying any local policies and objects. Can I do so and add them to a device group in the future? Thanks,

SSL Interception and CDNs

Looking for your guy's feedback on potential issues you've seen with SSL Interception and CDNs? I know there's a potential for thick clients like Dropbox to break if you crack SSL for the domains used there. Are there any other concerns to keep in mind or in general is breaking SSL on CDNs w/o major impact? Thanks,Brandon

Withdraw mesage source

Hi everyone, I am currently working on connecting MineMeld with our SIEM solution. I however ran into a question. When receiving an update message it states which sources the IOC originated from, also if there are multiple. example: (binarydefense and badips) {"message":"{\"@indicator\":\"120.69.220.5-120.69.220.5\",\"direction\":\"inbound\",\"@...

Forseti by L1 Bithead
  • 3930 Views
  • 2 replies
  • 0 Likes

Resolved! Globalprotect 3.1.1 compatibility with PAN-OS 6.1.12

From the release notes for Globalprotect agent 3.1.1: Minimum supported versionPAN‐OS 6.1 and later releases for GlobalProtect gatewaysPAN‐OS 7.1 for GlobalProtect portals We're on PAN-OS 6.1.12 and have portal and gateway on the same device. Does that mean we can not upgrade to Globalprotect agent 3.1.1 ?

dieter_b by L4 Transporter
  • 4651 Views
  • 3 replies
  • 0 Likes

Resolved! Vulnerabilities detected during scan

Hi all, I ran a vulnerability scan on my Palo Alto this afternoon, and I am receiving the following vulnerability: I am a little confused as to why I am receiving it since I have one TLS/SSL Service Profile (using TLSv1.2 strictly) that is setup to use a signed certificate from 3rd party CA. Moreover, I cannot find that certificate listed in...

Screen Shot 2016-10-11 at 6.56.17 PM.png
mmclimans by L3 Networker
  • 2903 Views
  • 1 replies
  • 0 Likes

PA-200 and ARP

I have a duplicate arp entry in a PA-200 I cannot get rid of. I have no clue where it is coming from. Its not HA just a standalone 200 on a single /24. I have looked at every device on the network and I cant figure it out. Any suggestions?

Replacement PA-500

Does anyone know where I can buy a replacement PA-500? I have one that failed on Saturday (won't power on) and PA Support is dragging its feet on approving a replacement. They said: I have submitted the RMA request and you are entitled to next business day delivery, which means a Tuesday morning delivery.I have noted the extreme urgency of this ...

Cramer by L1 Bithead
  • 5049 Views
  • 6 replies
  • 0 Likes

Resolved! ECMP link monitor 7.1.4

We had an issue with our secondary ISP last night that ECMP didn't handle passing all traffic to the promary ISP as the interface was still up.Does anyone have a suggestion on how to monitor the ISPs and down the link that is having issues? Current configuration is using 1 vRouter on a PA500.

nwetech by L1 Bithead
  • 3876 Views
  • 3 replies
  • 0 Likes

Panorama ISP redundancy

Hey I have a situation that my main site has 2 ISPs i configured the remote PA to talk with panorama thought the External Interface in order to maintain connectivity even if i have problems with the internal network on the remote site. I would like to have Panorama available from both of the ISPs. i had an idea to configure NAT on my main site f...

minow by L4 Transporter
  • 2233 Views
  • 1 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks