This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4124 Views
  • 0 replies
  • 0 Likes

Content 596 Update - Seeking more details on customer reported problems

Can anyone provide details on some of the problems that were experienced after applying content update 596?We spent all night troubleshooting a problem where our PA3020 was impacting TCP\9100 traffic. The problem started soon after the update. We would see the TCP handshake between a print server and printer occur, some data would be sent, then ...

btrotter by L1 Bithead
  • 3963 Views
  • 5 replies
  • 0 Likes

Resolved! Help setting up PA200 with a 4g modem running in bridge mode

Hi Have tested few different modems and i cannot seem to get then to work propely.heres my setup and i hope someone can point me to the right direction1.Dovado router with a usb 4g usb dongle ( running in bridge mode, providing a external ip when usin a computer )2.PA200 setted up as a firewall acting as a dchp server. (works perfectly when plug...

File Blocking Cant recognize .txt files

Hello to all, I am trying to find a way for Palo Alto to recognize some how *.txt files so I can be alert when it pass my Firewall. Any ideas how I can make this happen? I have search on the extension list but the .txt is not included some where. Thank you.

Resolved! Unable to see traffic in the Monitor tab-->Traffic section under 'Logs'

Hi, We have setup Palo Alto Firewall version 7.0 virtual appliance. we have configured two networks ehernet1/1 (10.10.2.x/24) and ethernet1/2(10.10.3.x/24). We have created a policy to allow traffic between these two networks and are able to ping across the firewall and do data transfer between two machines however we do not see any trafffic und...

Panorama 7.1.2 > template validation error -> TEMPLATE1 is missing 'settings'

Even trying to do it via CLI it does the same. Originally it didn't even show that vsys1 was an available vsys after the settings default-vsys command until I tried to enter it once (which it didn't complain about). Compare to running config does not show any change to 'settings'. You cannot force commit the change either. admin@M100-01(primary-...

bspilde by L4 Transporter
  • 3464 Views
  • 2 replies
  • 0 Likes

Agg Interface Subinterfaces over multiple vsys

Hi, I am working on multi-vsys (4) design with PA-7050 chassis. I would like to know if I can use aggregate interface over multiple vsys. I am thinking of using aggregate interface so that i can get link redundancy. The agg interface will have multiple sub-interfaces part of different vsys. Is it possible?

VPN users getting "password expires in 0 days" after upgrading to 7.0

Hi all,Today I upgraded our PA-500 from 6.1.4 to 7.0.0.After the reboot, when I log in with the GlobalProtect client, I receive the following message in red in the warnings/errors section:"Password expires in 0 days."We authenticate our VPN users to an AD domain using LDAP. The AD accounts are set to "password never expires".I looked at the LDAP...

Custom System Event ID Severity

I would like to set the severity of the vpn tunnel-status-up event to critical so that it triggers an email without having to get emails for all informational notifications. Does anyone know if this is a possibilty as it currently sits?

BPry by Cyber Elite
  • 2653 Views
  • 1 replies
  • 0 Likes

Resolved! Aggregate two physical ports and share amongst multiple VSYS?

We have an old fashioned flat network layout. We are looking at a significant network redesign and part of that is doing a proper security architecture and separating our servers from our userbase and separating server tiers (e.g. web, application, database) from each other. We also are a government that has several different verticals (e.g. h...

Content Update 592 False Positive

I've noticed that since the 592 content update I've been recieving a large amount of Microsoft SMB Client Response Parsing Vulnerability alerts from Threat-ID 35427. I've checked the servers and the workstations and everything is up-to-date or not running an operating system that would have even included this particular CVE (2010-0476). Particul...

BPry by Cyber Elite
  • 2470 Views
  • 1 replies
  • 0 Likes

Resolved! PA-3020 L2/VW Config Help

Hello, I just recently purchased a pair of PA-3020’s and I am having some trouble with Layer 2 / Virtual Wire interfaces. I am trying to create a network with multiple segments for both servers and workstations. I will have several “standard” segments using layer 3 interfaces and virtual routers with private addressing and NAT but I also wanted ...

EM-NewNetwork-SanitizedOverview.jpg
rdlenk by L1 Bithead
  • 7510 Views
  • 7 replies
  • 0 Likes

show interface logs status by date

Hello, How do I verify if an interface status changed by date and time? Example: I would like to know if Ethernet1/10 went down last week or 2 days ago at a 10:00 am. Thanks for any help.

alexadao by L0 Member
  • 29272 Views
  • 2 replies
  • 0 Likes

Resolved! Palo Alto high latency on the external interface

Hi All, What could be the reason fro high latency on the Palo interface and why do l have the same hop multiple times, in fact, 4 times? C:\Users\admim>tracert 1x3.2x0.x5.x4 Tracing route to 1x3.2x0.x5.x4 over a maximum of 30 hops1 1 ms <1 ms <1 ms vpn_firewall [192.168.1.200]2 1 ms <1 ms <1 ms 1x5.11x.1x1.1x13 4 ms 4 ms 4 ms 1x4....

Resolved! Anyconnect to Palo VPN

I am beginning a Cisco Anyconnect to GlobalProtect migration. Has anyone tried to connect AnyConnect to Palo. I can't find any docs on it and have been able to find a good link on how it is done. It would help our migration if we could connect the Cisco client to our new Palo firewalls. Thanks

Resolved! Palo Alto PA-3050 100 % CPU

These were upgraded from 7.0.6 to 7.1.2 on 31 May. Since then we are suffering from the data plane very frequently using 100% CPU. For example: admin@PA-3050-5(active)> show running resource-monitor hour Resource monitoring sampling data (per hour): CPU load (%) during last 24 hours: core 0 1 2 3 4 5 ...

  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks