General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2883 Views
  • 2 replies
  • 14 Likes

Resolved! SSL Decryption Firefox issue

I am testing SSL Decryption and have setup the certs.

IE and Chrome work like expected. But firefox is having an issue with untrusted site error  (Error code: sec_error_untrusted_issuer)

Has anyone worked around this problem before?

markk96 by L3 Networker
  • 6824 Views
  • 11 replies
  • 0 Likes

Order to reboot devices in HA pair (passive)

We need to reboot our firewall due to some issues related to the traffic logging not working.  We have already attempted debug software restart log-receiver, syncing the devices etc and none of them have resolved the issue. We are pretty new to the d

...

bino150 by Not applicable
  • 5691 Views
  • 7 replies
  • 0 Likes

Resolved! Howto do a bulk URL category check in PANDB?

As we're migrating from proxy to direct internet access, we'd like to cross-check old URL black and white lists against PANDB. I did find the URL to check one site (with captcha) but that will not be very efficient as we have hundreds of entries.

  1. Is t
...

Tunnel times

I have a tunnel that is up 8 hours and down 16 hours almost consistently any one have any ideas what would cause that?

infotech by L4 Transporter
  • 5709 Views
  • 22 replies
  • 0 Likes

SSL Decryption

Want to enable this feature.. is there a guide I can follow to start configuring and testing?

rrau by L3 Networker
  • 1771 Views
  • 2 replies
  • 0 Likes

logdb export very slow then fails

Hi,

I have a PA-500 which is running PAN-OS 5.0.9 and a Panorama server running PAN-OS 5.1. The Panorama is new and I would like to get all the historic traffic logs from the 500 to the Panorama. I have used scp export logdb user@server:logdb to expor

...

Gareth by L1 Bithead
  • 3281 Views
  • 8 replies
  • 0 Likes

Active/Passive HA Sync Issues

I'm in the process of testing out two PAN-M-100's in the lab and more specifically testing the HA functionality at this point.

The issue that I am running into:

I have changed the Primary to Passive and the Secondary to Active, made a change to the Act

...

vwire unequal packet/bytes count

Hello!

So, we have a very simple lab topology with virtual-wire and a single "allow all" policy.

I think it is important to note that on the egress interface is a single host that should not be generating any traffic (or minimum traffic). The ingress p

...

Alternatives to Panorama for log collecting?

Hi.

After a recent failure HD on my normally active firewall, it appears I'm going to lose close on 12 months of logs because Palo Alto has no defined process to get the logs off a failed hard drive (where the log partition is still accessible) onto t

...

darren_g by L4 Transporter
  • 3574 Views
  • 5 replies
  • 0 Likes

export config through cli

Hey all,

Is there a way to export the (running) config through cli?

Output should be a config file we can IMPORT back into a new device.

- NOT using SCP (we have restrictions on this)

- NOT using the API (php/rest/browse.php/export::configuration) (we on

...

mr.linus by L4 Transporter
  • 13571 Views
  • 9 replies
  • 0 Likes

PAN as a DNS Forwarder to resolve External DNS Names

I'm looking on how to configure DNS proxy on PAN and found below link that provide great information.

https://live.paloaltonetworks.com/docs/DOC-3637

https://live.paloaltonetworks.com/docs/DOC-3522

https://live.paloaltonetworks.com/docs/DOC-4633

However,

...

  • 24016 Posts
  • 99 Subscriptions
Top Solution Authors