This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4464 Views
  • 0 replies
  • 0 Likes

Traffic log source user different from User-ID log

Hi everyone, Greetings!PA-141011.0.4-h1I have a bit odd issue, the traffic log (ip address) is showing a local firewall account as the source user but when checking the user-mapping (show user ip-user-mapping ip) or User-ID log was mapped to an AD-user. Is it possible for the local firewall account to show as a source user?is it possible that th...

Assistance with URL Filtering

Having some issues getting URL filtering to work as I would expect. Have a valid license, created a URL filter profile blocking some categories. Created and SSL decryption policy as well and applied it to a test users. Games is one of the categories that should be blocked, but for some reason it's allowed and when you go to the log it shows a...

DJ_1924 by L2 Linker
  • 935 Views
  • 1 replies
  • 0 Likes

Query regarding counters and debug data-plane pow performance output

Hi Folks, One of our customer is facing CPU utilization of around 50 to 65 percent during the production hours. The firewall model is PA-3220 and the PAN-OS version is 10.1.5. Checked the session utilization, Packet buffer and descriptor all is below 10 percent. When the CPU utilization started to increase the packet rate, throughput and ...

Unable to see IPSEC tunnel IP in trace

Unable to see IPSEC tunnel IP in trace. IPsec tunnels have tunnel interface where the IP is configured. Peer1 - PA Host 1 - behind PA Peer2 - Other vendor Host 2 - behind Peer2 Host 2 trace to HOst1 , can see Ipsec tunnel IPs in trace, when we have Host 1 to host 2 trace, tunnel IPs are missing in trace. Kindly help me know what can ...

Resolved! Wildfire Analysis Reports - Cannot View from Panorama or NGFW (detailed log view) but available in Wildfire Dashboard wildfire.paloaltonetworks.com

Monitor > Wildfire Submissions - Detailed Log View Fetching WildFire server wildfire.paloaltonetworks.com:443 report failed!Please examine service route, proxy setting, and secure connection client setting. The reporting firewalls are registered to wildfire and shows files being sent to the cloud. The file reports show up in the Wi...

NSutfin_1-1722451735476.png
NSutfin by L2 Linker
  • 1733 Views
  • 1 replies
  • 0 Likes

Single vpc with Igw, alb, gwlb and Apache servers. Not working

I followed the directions to a T. Ingress route on Igw, pointing towards the subnets defined in alb. Gwlbe subnet with default route to igw, default route on alb subnet to gwlbe, app subnet with default route to gwlbe. end points defined, gwlb with healthy monitors. I cannot get the traffic to come back. The only way it works is if I remove ingr...

Cloud NGFW vs VM series FW

Hi I need to replace the current Azure firewall with Palo Alto firewall in Azure cloud. Which type of firewall I need to consider between cloud NGFW and VM Series FW? What are the differences between these two? Thanks

Increase disk space on Panorama VM in Azure

Hi All, We have a Panorama VM in Azure running pan-os 10.1.10-h2 the Root partition sitting at close to 100% and tried all the recommendations to clear space but not much luck thusfar. partition is 7.5GB size. PAN-212530 addressed this issue on 10.1.10 but still happening. apart from the pan-os running, what else is kept on the root partiti...

PA_nts by L4 Transporter
  • 3609 Views
  • 3 replies
  • 0 Likes

OOM crash and HA swapping with 10.2.10

Has anyone experienced out-of-memory freeze and repeated swapping between primary and secondary HA pairs? We just had our PA-3420 freeze and stop passing traffic, followed by multiple HA swaps, followed by the same again 30min later. There was a hotfix 10.2.10-h3 released last night which includes a note about a OOM bug and a all_tasks lockup ...

STUN Application

Howdy Folks, Trying to learn more about the STUN application. Wondering if any other enterprises are allowing this application. I know the applipedia says its not high risk but it also seems like it uses a variety of ports. Don't know much about it but in this case I can make a rule based on destination and Application/protocol. Thanks, ...

Automation / API - Register and de-register devices to log-collector group

I am looking for a way to automatically register and de-register a newly created firewall to a specific log-collector group. I had hoped to achieve this with https://github.com/PaloAltoNetworks/pan-os-python but I struggle translating the xml path to work with the op() method. While running "set log-collector-group collector-group logfwd-setting...

Findus by L0 Member
  • 1349 Views
  • 2 replies
  • 0 Likes

Resolved! Local Logging configuration

Hi Team, By default i see the logging configuration it is pointing to Panorama. But we are not managing the firewall using Panorama, we are managing it locally. Can we configure the logging to be logged locally only like live logs max of 100mb should be stored for troubleshooting purpose and then auto delete. Regards, Sanjay S

can't export BPA file

Hi every one, I need export BPA file, so I follow guide link https://docs.paloaltonetworks.com/strata-cloud-manager/getting-started/dashboards/on-demand-bpa-report But when I access this page, the option to upload the tech-support file does not appear.

KhoiVu by L0 Member
  • 1621 Views
  • 3 replies
  • 0 Likes
  • 24379 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks