This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 314 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3660 Views
  • 2 replies
  • 14 Likes

Resolved! Virtual Wire deployment: vlan not crossing firewall

Greetings,

Soon I need to get our firewall off from tap mode into a virtual wire deployment. We'll be placing it between our router and core network switch, with no local secondary production subnets to worry about so virtual wire seems to be the tick

...

Netwerx by L2 Linker
  • 4840 Views
  • 5 replies
  • 0 Likes

Resolved! DoS Protection Logs

If you have a DoS policy setup with both an aggregate and a classified DoS profile to protect a webserver and you see flood logs in the Threat Tab.. is it possible to tell whether or not the flood matched on the aggregate or the classifed DoS profile

...

SDorsey by L4 Transporter
  • 5733 Views
  • 1 replies
  • 0 Likes

Resolved! PAN VM series throughput

Is the throughput on the PAN VM series an arbitrary cap set by the PAN software?

It seems that it certainly shouldn't be on the hardware side as one could do 10gb netorking, put it on SSD and throw as much ram/cpu at is as they desired. And I would t

...

SDorsey by L4 Transporter
  • 2638 Views
  • 2 replies
  • 0 Likes

mgmt appweb3[4591]: appweb3 error: : appweb3 ?

Hi,

My PA-2050 recently management cpu always high to 70%, and 100% when commit.

check the log as below,

appweb3 error: : appweb3: Error: Ignoring unknown directive "Action" At line 121 in /etc/appweb3/appweb.pan.conf  Make sure the required modules ar

...

ArcherY by L0 Member
  • 2063 Views
  • 1 replies
  • 0 Likes

SSL decryption feature

Hi All,

I wish to ask do i have to have my own Certificate in order to use SSL decryption feature, in order to decryption my users SSL traffic ?

OR i can just go and setup this feature and use it right away ?

I use PA-VM-100, PAN OS 6.0.4

Difficulties creating a secondary VPN tunnel

I'm having trouble authenticating with a second VPN tunnel that I've created.

I've created a new Portal and Gateway, almost identical to the previous ones. Obviously with it's own external IP, certificate that fits the given domain.
Created a new Zone

...

Disable SSLv3/TLSv1

Is it possible to disable SSLv3 and TLSv1 for Global Protect?

Vulnerability scanners flag the interface of the PAN where Global Protect portal/gateway are hosted as it allows these deprecated versions.

SDorsey by L4 Transporter
  • 2173 Views
  • 2 replies
  • 1 Likes

Resolved! Not able to Push the policy to a device

Hello ,

Can any one please explain me the error i am getting while pushing the policies to a device of a device group.

I want to push the policies only to the particular device ,member of device group.

Thanks

tiwara by L3 Networker
  • 2469 Views
  • 2 replies
  • 0 Likes

Resolved! How to Configure HA on PAN-OS 5.0.6

Hi,

Any advise configuring HA on mentioned PAN-OS as documentation seems not very detailed..

Have configured HA for control plane with ip addresses /30 , enabled HA, group 1 and Peer HA ip address; after commit am getting generic failure error

Cheers

paul_w by L2 Linker
  • 3313 Views
  • 3 replies
  • 0 Likes

Resolved! PA blocking returned traffic!!!

Hi,

I've deployed PA-500 recently, and I'm experiencing an interesting situation.

PA-500 is deployed in virtual-wire, and I'm filtering only my main ISP connection (ISP 1). The connection for ISP 2 goes directly to the router.

We have a web server, whic

...

Besfort by L2 Linker
  • 2925 Views
  • 2 replies
  • 0 Likes

HA broken after upgrading to 6.0.3

Hi,

We have just upgraded our 5020s and 3020s to 6.0.3 and encountered an issue, where the secondary device became the Active one and the primary displays this error, only on the 5020:

does anybody else had this issue or knows how to solve it?

Thank you

...

MMCiobanu by L3 Networker
  • 11073 Views
  • 28 replies
  • 0 Likes

Resolved! 'enable-user-identification' turned on!

Hi everyone,

I wanted to do user based filtering on PA-500, but after I've successfully connected PA with active directory, and applied a security policy on user based I get this warning:

Warning: Rulebase 'security'

Rule 'LAN-r2'; Zone 'LAN' does not h

...

Besfort by L2 Linker
  • 2341 Views
  • 2 replies
  • 0 Likes

HA queue full

Hi, im receiving this snmp trap in my Palo Alto (PA-3020 PANOS 6.0.3). Checking the system logs i see each 15 mins this log message "HA-queue-full". Why is this happening?

SOC_CSG by L4 Transporter
  • 4349 Views
  • 13 replies
  • 0 Likes
  • 24189 Posts
  • 100 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks