General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 14503 Views
  • 1 replies
  • 4 Likes

Decryption Exlusions

As you all know, Palo Alto gives you two ways to exclude sites from decryption.  Are there any scenarios where excluding from SSL Decryption Exclusions works but setting the same url in a decryption policy doesn't?

 

I ask because I've had the scenario

...

ce1028 by L4 Transporter
  • 729 Views
  • 1 replies
  • 0 Likes

Monitor aux ports through SNMP

Is it possible to see the aux ports on a PA-5200 series firewall through the SNMP interface mib?  These are currently the interfaces that show up, the aux ports are not there.  This is on 9.1.11, PA-5250 to be specific.

 

ifName.1 = STRING: ha1-a
ifName

...

Research

Hi community. I am a student and I would like to know which product/feature of Palo Alto brought it to the center of the map as in, gave them the recognition. 

 

P.S. This is for my coursework and it's a 3000-word assignment. So, I want to focus on the

...

Sm0001 by L0 Member
  • 763 Views
  • 2 replies
  • 0 Likes

bgp troubleshooting

Hi I'm having issues with bgp routes not propagating I know that I can click on view routes under the virtual router section, but was wondering if I could see the bgp errors in syslog, doesn't seem like I know the search string if that is possible, o

...

mpugina by L0 Member
  • 1475 Views
  • 1 replies
  • 0 Likes

PA default interface state

Hello community 

I've been searching but couldn't find an answer so:

What is the default interface state (out of the box firewall)? Is it forwarding L2 packets? Can I create a L2 loop by connecting two interfaces between FW & a switch?

 

PANOS 10.x - share interface in Multi-vSYS mode

Hello All,

 

We are working on a design to move Cisco ASAs firewalls into PA 5260 with Multi-vSys mode enabled, so each Cisco ASA is a separate vSys. 

 

While everything else looks like nice and easy-to-convert, we have problems with shared interface. In

...

Problem reaching MGMT by vpn

Hello

A few days ago we upgraded from version 9.0.10 to 9.0.14, after that we lost the management from the VPN S2S, everything is fine , however, in the connections we see that there is no response from the Firewall to our queries. In the monitor we o

...

Resolved! Palo Alto Apps / Hub unreachable for days

I've been trying to access the Apps hub (https://apps.paloaltonetworks.com/) for days now and I keep getting this error:

{"statusCode":500,"error":"Internal Server Error","message":"An internal server error occurred"}

Is there any ETA when this issue w

...

Replace firewall order

I have a question about upgrading a firewall to new model.  I've done it in the past but always seem to forget the order.

 

I have a firewall that is managed by Panorama, with some local policies also.  I have downloaded the device state from the exist

...

ce1028 by L4 Transporter
  • 893 Views
  • 4 replies
  • 0 Likes

Disk-Space issue

Hi Team,

We are using PA-3020 and the disk space is usually used upto 95% and we have enabled agressive cleaning as well as we do manual cleaning once a week where the disk-space utilisation is below 95% and in a week it gets utilised upto 95%.we need

...

HTTP2 allowed without strip alpn enable

Dear Team One of my customers wants  HTTP2 benefits with decryption enable.

The customer don't want to enable the strip ALPN because it Downgrades to HTTP1.1 

Can we do decryption with HTTP2 Downgrade with decryption? 

Logged in Admins _cliuser normal?

Hi there,

 

Today I accidentally discovered the user _cliuser in the widget Logged in Admins on the dashboard of our Palo Alto Firewall.

 

After a few seconds it was gone.
Unfortunately, I didn't find anything through the search, and seeing this for the f

...

kenanuenal_0-1633340167871.png

Layer 2 tunnel on a Palo alto

Can you create a layer 2 tunnel on a palo alto 3050? Is a layer 3 tunnel better than a layer 2 tunnel? Is a layer 2 tunnel more of a private or direction connection than a layer 3?

jdprovine by L4 Transporter
  • 1369 Views
  • 3 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors