This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4111 Views
  • 0 replies
  • 0 Likes

Palo Alto's preferred version 10.2 having significant issues

Hi All, 10.1 is going to be EOL in Dec-2024 and if we plan to upgrade on palo alto preferred ver 10.2 then There is a risk that the firewalls may experience significant issues ("popcorn effect"), potentially causing major disruptions to business operations like MFG, RDC, and RND. Anyone has any update or having the same problem? we are waiti...

ssingh by L0 Member
  • 5798 Views
  • 8 replies
  • 0 Likes

Resolved! GP - Connect with SSL Only

I am running panorama 11.1.3 and using prisma access (Mobile_User_Template). I have read that there is a Connect with SSL Only option but I can not find this. I'm looking in Portal->Agent->App. What am I missing? Here is every setting I have pasted directly from Panorama: Connect MethodPre-logon (Always On)GlobalProtect App Config Re...

THREAT ALERT : high : 169.254.254.238 -> 169.254.255.255 Microsoft Windows NAT Helper DNS Query Denial of Service(31339) alert

Hello Team,We got the below threat alert from the panorama and not able to understand the most of the part , like source and Destination . Both IP looks the outside my network but still its showing the rule: Outbound_Default_URL_IPS . One of my outbound policy with threat prevention rule. Can any one please explain me this .Wondering How can an ...

tiwara by L3 Networker
  • 12648 Views
  • 7 replies
  • 1 Likes

Resolved! Access limited to tenant

Hi,Is it possible to define user profiles or roles on Cortex XDR so that, for example, on the same tenant: - when a user/admin with role X logs in, he/she can only see Workstations- when a user/admin with role Y logs in, he/she can only see Servers.Is this possible? And if so, what's the procedure for setting it up?best regards,

S.Vilon by L1 Bithead
  • 1595 Views
  • 2 replies
  • 0 Likes

Traffic log source user different from User-ID log

Hi everyone, Greetings!PA-141011.0.4-h1I have a bit odd issue, the traffic log (ip address) is showing a local firewall account as the source user but when checking the user-mapping (show user ip-user-mapping ip) or User-ID log was mapped to an AD-user. Is it possible for the local firewall account to show as a source user?is it possible that th...

Assistance with URL Filtering

Having some issues getting URL filtering to work as I would expect. Have a valid license, created a URL filter profile blocking some categories. Created and SSL decryption policy as well and applied it to a test users. Games is one of the categories that should be blocked, but for some reason it's allowed and when you go to the log it shows a...

DJ_1924 by L2 Linker
  • 872 Views
  • 1 replies
  • 0 Likes

Query regarding counters and debug data-plane pow performance output

Hi Folks, One of our customer is facing CPU utilization of around 50 to 65 percent during the production hours. The firewall model is PA-3220 and the PAN-OS version is 10.1.5. Checked the session utilization, Packet buffer and descriptor all is below 10 percent. When the CPU utilization started to increase the packet rate, throughput and ...

Unable to see IPSEC tunnel IP in trace

Unable to see IPSEC tunnel IP in trace. IPsec tunnels have tunnel interface where the IP is configured. Peer1 - PA Host 1 - behind PA Peer2 - Other vendor Host 2 - behind Peer2 Host 2 trace to HOst1 , can see Ipsec tunnel IPs in trace, when we have Host 1 to host 2 trace, tunnel IPs are missing in trace. Kindly help me know what can ...

Resolved! Wildfire Analysis Reports - Cannot View from Panorama or NGFW (detailed log view) but available in Wildfire Dashboard wildfire.paloaltonetworks.com

Monitor > Wildfire Submissions - Detailed Log View Fetching WildFire server wildfire.paloaltonetworks.com:443 report failed!Please examine service route, proxy setting, and secure connection client setting. The reporting firewalls are registered to wildfire and shows files being sent to the cloud. The file reports show up in the Wi...

NSutfin_1-1722451735476.png
NSutfin by L2 Linker
  • 1643 Views
  • 1 replies
  • 0 Likes

Single vpc with Igw, alb, gwlb and Apache servers. Not working

I followed the directions to a T. Ingress route on Igw, pointing towards the subnets defined in alb. Gwlbe subnet with default route to igw, default route on alb subnet to gwlbe, app subnet with default route to gwlbe. end points defined, gwlb with healthy monitors. I cannot get the traffic to come back. The only way it works is if I remove ingr...

Cloud NGFW vs VM series FW

Hi I need to replace the current Azure firewall with Palo Alto firewall in Azure cloud. Which type of firewall I need to consider between cloud NGFW and VM Series FW? What are the differences between these two? Thanks

Increase disk space on Panorama VM in Azure

Hi All, We have a Panorama VM in Azure running pan-os 10.1.10-h2 the Root partition sitting at close to 100% and tried all the recommendations to clear space but not much luck thusfar. partition is 7.5GB size. PAN-212530 addressed this issue on 10.1.10 but still happening. apart from the pan-os running, what else is kept on the root partiti...

PA_nts by L4 Transporter
  • 3402 Views
  • 3 replies
  • 0 Likes

OOM crash and HA swapping with 10.2.10

Has anyone experienced out-of-memory freeze and repeated swapping between primary and secondary HA pairs? We just had our PA-3420 freeze and stop passing traffic, followed by multiple HA swaps, followed by the same again 30min later. There was a hotfix 10.2.10-h3 released last night which includes a note about a OOM bug and a all_tasks lockup ...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks