This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! Upgrade cluste A/P and panorama

Hi, we have to upgrade a cluster active/passive and a panorama of this cluster. which are the steps to do these upgrades???

1)upgrade the cluster like usual and then upgrade Panorama???

2) first update the Panorama and then the cluster????

advices...

tha

...

SOC_CSG by L4 Transporter
  • 2270 Views
  • 1 replies
  • 0 Likes

Resolved! PaloAlto firewall is sending system alert

Dear All,

PaloAlto firewall is sending system alert saying "PAN-DB url filtering has expired" . But the i am using only "Bright cloud" url filtering license.

Please suggest.

Regards

Satish

Satish by L4 Transporter
  • 2761 Views
  • 2 replies
  • 0 Likes

Upgrade 5.0 to 6.1

Firewall device has two disk partitions:

Partition 1 => 5.0.X

Partition 2 => 5.0.Y (current active version)

When you install now 6.0.X, it will overwrite 5.0.X

So after reboot Partition 1 will be active. Then you install the next update to 6.1.X, this wi

...

Anon1 by L4 Transporter
  • 1415 Views
  • 1 replies
  • 0 Likes

Configuring Prelogon for GlobalProtect

I'm having a heck of a time getting prelogon working for global protect.  I have spoke with both Palo Alto support, as well as a vendor that is a Palo Alto partner.  Neither were really able to answer my questions.

Here is what I have today.  Two Palo

...

TheHuth by Not applicable
  • 5222 Views
  • 11 replies
  • 0 Likes

Resolved! User-ID for DNS

We have a server that has no body logged into it and all the DNS traffic from that server is showing as a certain user sending the traffic. Is there anyway to exclude this server from User-ID or another way to remove the user from this traffic?

Resolved! GlobalProtect User Information

Hi,

Is there a way to see Global Protect tunnel statistics in either Panorama or the firewall itself?  I'm looking for bytes in, bytes out, packet in, packet out statistics.  The statistics are viewable from the client side if you open up the Global P

...

stevena by L0 Member
  • 2502 Views
  • 1 replies
  • 0 Likes

beta 7.0 tacacs

hi guys,

I'm trying to config TACACS+ on panOS for admin logins, I'm using tac_plus on Debian

when i configure i get this error

Wed Apr 15 07:19:36 2015 [14676]: chap-login query for '*****' unknown-port from X.X.X.X rejected

Wed Apr 15 07:19:36 2015 [14

...

Purepeak by L0 Member
  • 1520 Views
  • 0 replies
  • 0 Likes

Resolved! Cleaning up rules

So, I, like a number of people, converted from Cisco to PAN.  We had a consultant in to help with the conversion, and he was assisting with the rule cleanup.  However, a) a lot of rules came straight across as it was time-critical, so they are servic

...

rivkin by L1 Bithead
  • 3058 Views
  • 4 replies
  • 0 Likes

Resolved! Restart daemons/services

Is there a way to manually restart daemons and services in the CLI?

I have a box with sslvpn configured. The sslvpn suddenly stopped working and the portal page doesn't load. I double checked the config and the traffic logs show the traffic as being a

...

SDorsey by L4 Transporter
  • 12988 Views
  • 8 replies
  • 0 Likes

Error: Certificate failed to load: invalid certificate chain

Hi there,

I generated a CSR with PAN-OS 6.1.3 and submitted it to our Microsoft AD CA with subordinate CA template. After uploading the certificate it shows up under the root CA certificate of our domain. But when commiting the changes I get an "Error

...

cale by L1 Bithead
  • 9317 Views
  • 4 replies
  • 0 Likes

How to forward traffic (URL) to a syslog server?

The $misc variable can only be used for Threats?

How to register the URL in syslog server?

CEF Key Name: request

Full Name: requestURL

Data Type: string

Length: 1024

Meaning: URL or filename for threat logs

Palo Alto Networks Value Field: $misc

from PANOS_6

...

UNIVALI by L0 Member
  • 2066 Views
  • 1 replies
  • 0 Likes

preemption loop detected

Hi,

I have two PAN 500 in HA A/P configuration with PAN OS 6.1.3 and virtual wire configured with link detection failure ANY. I tested link failure detection in way to disconnect one side of Vwire and passive device takes over and became active. After

...

Tician by L3 Networker
  • 3925 Views
  • 1 replies
  • 0 Likes

HA A/A or A/P

Hello All,

I have such situation where considering in which mode to put HA PA configuration. As you can see on drawing, customer consider to put PAN in sandwich of VRRP cluster and vLAG virtual switch. VRRP has one virtual IP and MAC, and all destined

...

Tician by L3 Networker
  • 2630 Views
  • 3 replies
  • 0 Likes
  • 24195 Posts
  • 100 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks