This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4112 Views
  • 0 replies
  • 0 Likes

PaloAlto and Cisco Scansafe Proxy

I have a PaloAlto PA-200 with very simple configuration. I configure the PA-200 Management interface to get update the Antivirus, Threats, WildFire and URL Filtering. The proxy server is Cisco scansafe. I can update software, dynamic updates, license everything through the proxy server from the PAN-200 with the Exception of of the PAN-DB for ...

dtran by L4 Transporter
  • 2674 Views
  • 2 replies
  • 0 Likes

Resolved! Apps and Threats 578-3263 *URGENT* *SOLVED*

We have had a few issues with customers and their network when upgrading to the latest Apps and Threats update. Can anyone comment on this at all? A few examples of issues are that decryption is not working, and communication to the LDAP server was lost. Sessions are closed with the error message "resources unavailable". Regards Jack

What's new in MineMeld 0.9.7

Release Date: 2016-03-24 How to update: Updating MineMeld Nodes - Miner for ProofPoint ET Pro feeds - Miner for PAN-OS syslog messages, let you extract indicators from PAN-OS logs according to a set of rules UI - now you can add a new static indicator directly from the NODES page or using the log-links feature of PAN-OS

Screen Shot 2016-03-29 at 10.55.39.png
Screen Shot 2016-03-29 at 10.54.55.png
lmori by L7 Applicator
  • 8118 Views
  • 7 replies
  • 0 Likes

Monitor hits against captive portal?

When using user ID and captive portal, when an Auth attempt fails because of the captive portal, how can you get notified? We have spent hours troubleshooting broken apps because the captive portal was preventing access but we have no indication of the reason.

btrotter by L1 Bithead
  • 4409 Views
  • 5 replies
  • 0 Likes

ISE syslog for UserID

I am trying to parse ISE RADIUS logs to help map wireless users to IP addresses. I have the Palo configured as follows but I am not getting any info from ISE. I am not that familiar with ISE and did not set up that end but have been told that ISE is sending the RADIUS Accounting logs to the management interface of the firewall. I I have User...

ISE settings.PNG

Resolved! Captive Portal with Vwire.

Why does below document advise we need a L3 interface for captive portal? We are running solely vwire and I still get on form when testing. I do have repsonse pages setup as well https://live.paloaltonetworks.com/t5/Configuration-Articles/Configuring-Captive-Portal-in-V-Wire-with-RADIUS-Authentication/ta-p/58143

Resolved! Two factor issues after upgrading to GlobalProtect 3.x

Hi, After doing an upgrade from GlobalProtect 2.3.4 to 3.0.1 we're having issues with users not being able to do two factor authentication in combination with SSO. The software we're running is SecurEnvoy, which has been working fine up to the client update. Firewalls are running PAN-OS 7.0.5-h2. SecurEnvoy responds as it should, and sends...

arvesynd by L3 Networker
  • 4596 Views
  • 2 replies
  • 0 Likes

External CA Certificate Options Greyed Out

Hi guys, I've followed the documentation on how to generate a CSR (https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Generate-a-CSR-Certificate-Signing-Request-and-Import-the/ta-p/53593) but when importing the certificate I'm only able to select one option, as shown below. Could you please help explain why they're greyed...

Resolved! Correlated Events Action

Hello, How Palo Alto choose action for correlated events? For example we have several medium severity events with summary Host visited known malware URL. In some events action is alert and some events action is block-url.

ToniE by L2 Linker
  • 4511 Views
  • 2 replies
  • 0 Likes

Resolved! Hardware refresh HA pair of 2050's to 3020's

I need to refresh some 2050's HA pairs for 3020 HA pairs. This shoud be a pretty simple prcedure but I cannot find any instructions on how to perform this upgrade. Beside the fact 2050's don't have dedicated HA interfaces, are there any other gotcha's that spring to mind? In a nutshell, my plan was to bring the new pair into Panorama with th...

WAN Interface Not Registering MAC Address With Upstream L2 Switch

Hello folks, need some help here. After upgrading from 6.0.8 --> 6.1.0 --> 6.1.2, the WAN interface of the upgraded device, part of an HA-Pair in active-passive mode, does not register its MAC address with an upstream directly connected L2 switch. If I fail back over to the non-upgraded device, passing of traffic resumes as normal and th...

Unused Rules

There is a feature to highlight unused rules. If a rule goes from used to unused does that feature show it as unused and if so how long does it take to show it as unused?

jdprovine by L4 Transporter
  • 7914 Views
  • 11 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks