This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4244 Views
  • 0 replies
  • 0 Likes

Resolved! User-ID redistribution SSL error

Hello, I am trying to configure to 2 PA to share their user-id data. I used the following guide: https://www.paloaltonetworks.com/documentation/60/pan-os/pan-os/user-id/configure-a-firewall-to-share-user-mapping-data-with-other-firewalls.html#61291 Version is 6.0.10 - Communication is done through mgt interface - Both User-Id and HTTPS are...

Marck.To by L1 Bithead
  • 4553 Views
  • 2 replies
  • 0 Likes

User Activity Reports on Panorama

When we generate a UAR (Using Monitor/PDF Reports/User Activity Report) on Panorama for a particular managed firewall, we do not get any broswing summary sections in the report. If the same report is run on the firewall itself, we do get that information. What do we need to do get that information showing up in the Panorama reports? We do run ...

Nig by L1 Bithead
  • 2612 Views
  • 2 replies
  • 0 Likes

Resolved! Site which should be blocked URLF not being blocked after SSL decryption

We are blocking a particular category of URLs (say gambling). When we access the unecrypted site it is blocked as expected. When we add https to the URL and browse we are not blocked. I can see in the logs that access is allowed by the FW, even though it hits a rule with a URLF profile that should block the category. The category for the SSL c...

ISP failover in PanOS 7.0.4

Hi, We are moving from Juniper ScreenOS SSG firewalls to PanOS 7.0.4, 3020 clustered firewalls. On our Junipers we make use of a feature called track-ip for Interface failover between ISP's...This basically works by pinging a far device on the primary link, and after the PING failure limits being exceeded, the default route changes to that...

Resolved! Dynamic Block List Question.

Hello Community, Blacklist (such as IP Void or SpamHaus) with a suggestion that we should block that IP. I'm hoping there's a way that we can leverage such a blacklist - for example, to have a rule in the FW that references an existing Blacklist (such as IP Void) and is able to dynamically update based upon the published list. I know that t...

Apadilla by L3 Networker
  • 8205 Views
  • 8 replies
  • 0 Likes

Resolved! Agentless USER-ID - no matched record

Good Day I have a PAN-5050 configure for agentless USER-ID to a W2K8 AD. We were getting user ids/ips in the logs but now we're not. The server-monitor is connect and now errors or failures to connect. When I do the cli commands (show user userids, show user ip-user-mapping all) we see the user ids/ip list, but is I do a (show user ip-user-map...

burtond by L2 Linker
  • 3873 Views
  • 4 replies
  • 0 Likes

Resolved! Botnet report full of cloud.typography.com entries

My weekly botnet report is full of entries like: "Repeatedly visited (32) the same malicious URL cloud.typography.com/" I've checked this URL in the database and using the CLI, and it shows as computer-and-internet-info Several tools I've used to check the site show nothing malicous. I'm thinking maybe categorization is the wrong place to loo...

holtcg by L1 Bithead
  • 6375 Views
  • 2 replies
  • 0 Likes

Resolved! Deny & Allow

I have a rule that allows the administrators remote desktop access to our physical domain controller. While reviewing the traffic logs I can see that the PA is show allows and denies for the exact same traffic from my PC to the domain controller using remote desk top through the exact same rule - how can that be?

jdprovine by L4 Transporter
  • 2497 Views
  • 2 replies
  • 0 Likes

Resolved! Renew digicert certificate

Hi, The certificate we use for GlobalProtect needs to be renewed and I have just paid the renewal and received the file from digicert.. In my PA500's Device Certificates the expired certificate has two lines: The second line's certificate name has 'PEM' as suffix. I got a .P7B file from digicert.com with the renewed certificate. How do I...

Palo Alto daily admin tasks

Hi, I am a somewhat newbie to PaloAlto firewall. I was wondering if someone could give some good guidance into what "Daily" tasks look for a PaloAlto Admin? What should they be monitoring on daily basis? Is there a nice checklist of things that should be looked into on Daily and/or weekly basis? Thanks. P

Chintan by L0 Member
  • 4375 Views
  • 2 replies
  • 2 Likes

System stats

Is there a way to run a report to see if CPU is getting spiked over a 24 hour period of time

jdprovine by L4 Transporter
  • 2201 Views
  • 1 replies
  • 0 Likes

Resolved! VWIRE Physical Connecivity to Current Virtual Firewall

Hi, I am trying to get my head around VWIRE and how it supposed to work. We have the following scenario SWITCH -> VIRTUAL FIREWALL (ON SHARED HOST) -> INTERNET We are now looking to do SWITCH -> PALO ALTO -> VIRTUAL FIREWALL (ON SHARED HOST) -> INTERNET I am thinking how this would work physically. The virtual firewall...

indysogi by L2 Linker
  • 3169 Views
  • 2 replies
  • 0 Likes

Logging query - Missing logs from implicit deny rule

Hi all, Doing some testing with a PAN-OS v6.0.0 VM-100. The command ‘set system setting logging default-policy-logging 300’ is configured so I am seeing log entries for traffic that is being blocked by the implicit deny rule for inter-zone traffic. If I enable a security policy that permits any application I’m able to play a video on webpage...

Downloads stuck at 0%

Hi All, Firewall is connecting to update server. it retrieves all the recent PAN-OS versions and all dynamic updates(app ver). But when i start to download the software/dynamic updates, its connecting to update server and exchanging some packets but download stuck at 0% device is registered, restarted managment plane, cleared job id, stil...

Javith by L3 Networker
  • 4023 Views
  • 1 replies
  • 0 Likes

Resolved! Action Configured in Security Rules and Seen in Traffic Log is Inconsistent 7.04

Since upgrading to 7.0.4 our traffic logs now show the action of 'reset-both' and 'deny' when the rule explicitly has been set to 'deny'. This is occuring on multiple rules since upgrading from 6.1.8. Example: we have a rule to block specific applications like bittorent, http-proxy, hola-unblocker, etc and the action is set to 'deny'. But now ...

lewis by L4 Transporter
  • 8476 Views
  • 6 replies
  • 0 Likes
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks