This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4135 Views
  • 0 replies
  • 0 Likes

Issues with geolocation IP addresses

Hello,We have policies (geolocation) which only allow connection from Spain and Andorra.In many cases the IP addresses identified by geolocation, is not properly updated and sometimes Palo Alto identifies an IP like another country rather than as Spain or vice versa.How does a query to get that information Palo Alto?What are the files that query...

SOC_CSG by L4 Transporter
  • 16667 Views
  • 10 replies
  • 0 Likes

Resolved! How can I export my Applications list in a given profile.

I have a rather long list of allowed applications in a profile and want to export them for various reasons. I need to document them, and as I consolidate policies to a single on I don't want to add each one if I cam import them. Is there a CLI to just get the applications names in a given profile?

Resolved! Problems with configuring Palo Alto PA-500 Firewall

Hi Guys,I can connect via serial and console port from CLI to Firewall. But when i am trying to set ip for management interface i'm getting the following errorServer error : system -> authentication-profile 'LDAP Authentication Profile' is not a valid referenceCan anybody help me?ThanksTigran

Active/Active HA on 7050

I'm getting ready to implement an Active/Active setup on a 7050. What is the best practice for bandwidth over the HA links? I'm more curious about the HA2 and HA3 links.

Preempt Loop Detected

Hi All,I've implemented Active-Passive firewall with preempt options enabled as below :I use Path monitoring to IP B to detect failure. When I shutdown the bridge (device between A and B), the Active device switch to X and A status became non-functional (Path Down).But after A became passive, immediately he request preempt to become active altho...

About Microsoft Vulnerability

Hello all,My customers PA-3020 detected a few Microsoft Vulnerability Threat coming from Inside ( Web server ) to Outside ( Internet ) . We investigated the cause of this , but could not replicate the issue and finding the cause of it. We scanned web server for malware , corrupt jpeg files but it was clean. Detected Vulnerabilities are :Micro...

DNS attack? False positive: urussynonumsantonums.com

Hello,I am new to this realm so please note if I ask alot of questions, you all have the answers. I have a PA device that has been spitting out multiple, multiple, and multiple Threat notices for the above domain: urussynonumsantonums.com. I have seen some threads where PA updated their threat database to 80,000 new entries. Plus there was an e...

Friewall does not send ms-files to wildfire

Hello,i setup wildfire to forward any application, any files so wildfire could test files against malware.I discovered that ms-office files are not sent to wildfire.File blocking rule is set to any/any/both/forwardAntivirus rule is set to block on wildfire for http/smtp/ftpAntivirus rule is set to policy rule.Despite of this i can upload/downloa...

CRA by L1 Bithead
  • 4616 Views
  • 6 replies
  • 0 Likes

Differences between "panHAConfigFailureTrap" and "panHAConfigNotSynchTrap"

HelloI'm working with the trap MIB and I doesn't understand the differences between these one. The descriptions in the MIB file arepanHAConfigFailureTrap: HA configuration push to peer has failedpanHAConfigNotSynchTrap: HA config not automatically synchedCould someone explain me the difference.Best RegardsGonzalo ArroyoAcuntia COS

SOC_CSG by L4 Transporter
  • 3242 Views
  • 2 replies
  • 0 Likes

Filtering or Suppressing OSPF Type-5 LSA's?

Hello,I am working on a network design and have a palo alto firewall that has two areas, 0 inside and 1 outside on the same virtual router. Area 1 has the outside interface of firewall, two routers and then the edge router. OSPF runs on the inside of the internet edge router and BGP with the internet provider. We receive a default route from ...

Panorama Templates best practice?

Currently we are moving our stand alone firewalls to Panorama. We build device groups to manage policies and objects.Now we try to create Templates but we don't know exactly how to use them. We read the following article but it didn't really help: Panorama TemplatesThe main problem is that one device can only be assigned to one Template. So we c...

User-ID Agent Network Sentry

Has anyone had any experience using the User-ID Agent to capture login information from a Bradford Networks Network Sentry NAC? Right now just using a trial PA3050 box but would love to map user ID information if it's a quick setup.

  • 24340 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks