General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 658 Views
  • 0 replies
  • 0 Likes

HA deployment with IPsec tunnel

Hello Guys ,

I have two PaloAltos' deployed in HA ( active - passive mode ) and have an IPSec tunnel configured. I have noticed that when the primary PAN ( active ) fail-over to the Secondary PAN, the IPsec tunnel does come up and need to manually sta

...

About custom vulnerability signature

Hello,

My customer made vulnerability signature in FW. But FW doesn't detect this signature.

Customer Vulnerability Signature

context : http-req-message-body

pattern : eval\(gzinflate\(str_rot13\(base64_decode

I am searching this but I don't know.

So I nee

...

Check Point R77 URL policy migration

Hello,

I was trying to search for examples or good documentation for migrating check point URL policy to PAN. Does anyone have any suggestions?

One of the specific examples I'm having issues with: CP has an option to select Internet as a destination (

...

dvlacic by Not applicable
  • 2624 Views
  • 3 replies
  • 0 Likes

PAN-OS 5.0.12 vs PAN-OS 6.0.2

Hello All,

  I wanted to ask the community and the support engineers about the recommendation for PAN-OS for a new installation.

Given PAN-OS 6.0.2 came out about a month ago, can anybody comment on the stability of this version?   Anybody upgraded

to i

...

apetrov by L0 Member
  • 4043 Views
  • 7 replies
  • 0 Likes

Resolved! User-id-agent Upgrade to 6.0.3

Hi,

We are planing on upgrading from 5.0.8 to 6.0.2, and we are currently user user-id agents on our DCs;

do we need to also upgrade the user-id agent to 6.0 or the old one would still work?

Thank you

MMCiobanu by L3 Networker
  • 3471 Views
  • 4 replies
  • 0 Likes

About DNS amplification attack issue

Dear Sir,

We have a customer for education envirument and they suffered a lot of DNS amplification attacks.Last 7 days session count is 688 Million and 220G Bytes for DNS traffic.

We try to drop the "Threat ID 36027 DNS Amplication Attack Query " and "

...

Factory default on PA-3020

Hi,

  I am trying to factory default a PA-3020 series firewall but the terminal is not responding after getting into the maint section. I sits in the "continue" section there and I cant manuver. What is to be done to go to "factory reset" section in t

...

pranoy by Not applicable
  • 1884 Views
  • 1 replies
  • 0 Likes

Resolved! How can I configure newline mark in custom log format?

I'm trying to configure newline in custom log format.

For example, if I configure "aaa<newline>bbb", and set it as mail alert.

I receive email with "aaabbb".

Does anyone know how to configure it? or is it impossible?

Two picture shows configuration scree

...

emr_1 by L5 Sessionator
  • 6760 Views
  • 5 replies
  • 0 Likes

Resolved! Classification Risk

I have been working on getting our ACC threat risk down to a respectable level...currently ~4.0. I noticed that if I navigate to the Objects>Applications menu, and click on an application, the screen displays a section called "Classification". Under

...

TDS_NOC by L0 Member
  • 2507 Views
  • 1 replies
  • 0 Likes

Resolved! WAN Failover NAT issue

Hello all,

I am trying to set up WAN failover on a Palo Alto PA-3020.  I used the document at the bottom of this post.  When I unplug the interface that is set up in the PBR, it switches over to the secondary ISP like it is supposed to.  The problem i

...

ClintL by L2 Linker
  • 3438 Views
  • 4 replies
  • 0 Likes

Not able to Login to Firewall GUI

Hello Team,

I was working on the firewall for report generation and suddenly the GUI stop working , after that i am not able to login to the firewall for 10 min . I saw the below error in the system warning:

"websrvr: exiting because service missed too

...

tiwara by L3 Networker
  • 5008 Views
  • 3 replies
  • 0 Likes

Wan interface on PA-3020 to ISP disconnected frequently

Hi All,

Wan interface on PA-3020 with static IP connected to ISP router.

Since two days, we're facing continue ping drop of WAN interface 3 to 4 times a day, doesn't reestablish the connectivity until reboot the firewall.

Then, We had checked with the a

...

Javith by L3 Networker
  • 2133 Views
  • 1 replies
  • 1 Likes
  • 24112 Posts
  • 117 Subscriptions
Top Solution Authors
Top Liked Authors
Labels