This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4449 Views
  • 0 replies
  • 0 Likes

Resolved! Different Temperature Sensors

I need to know what is the difference between those three sensors please,S1 CPU Die temperature sensor S1 U9 temperature sensorS1 U66 temperature sensor After adding the temperature reading of PA device to PRTG the above indicators were shown and I need to know the indication of each one.

Waly by L1 Bithead
  • 2452 Views
  • 1 replies
  • 0 Likes

Resolved! Unable to Authenticate to GP using SMAL

On PA 8.1.19 we have configured GP portal and Gateway for SAML authentic in Azure.We have imported the SAML Metadata XML into SAML identity provider in PA.Authentication FailedPlease contact the administrator for further assistanceError code: -1When I go to GP. url. I get authentic on my phone and I approve it then I get this error on browser. P...

MP18 by Cyber Elite
  • 25690 Views
  • 14 replies
  • 0 Likes

Resolved! Cluster config question

Hi to all, I have a question regarding the cluster config tab (i have attached a picture). There we are adding the peers only, or we have to add also the same device I am a configuring. For example I have 3 devices, That table of devices should be three (3) or only the peers which are two(2) at every cluster member.

kvagenas by L1 Bithead
  • 2290 Views
  • 2 replies
  • 0 Likes

Resolved! Unable to Upgrade from 11.1.3 to 11.1.13

Hi, I am having a problem to upgrde, with the objective of upgrading my PA-460 standalone from 10.1.13 to 11.2.0. I performed the following: Download 10.2.0 install and reboot; then maintenance release then the last 10.29 -h? release and reboot. Download 11.0.0 install and reboot then maintenance release 11.0.x (last ) and reboot. ...

Resolved! PAN OS 10, Two devices on different subnets in the same zone

We are running a Palo 5220. If we setup two different virtual interfaces with two different IP subnets in the same zone. Will I need to setup security policies to allow the two different subnets in a single zone to communicate. or will the Palo route traffic between subnets in the same zone with out any additional security policies?

MantaIT by L0 Member
  • 2859 Views
  • 3 replies
  • 0 Likes

Add OSPF Route Tags

Hi, I need to amend my routemap redistribution filter to set a tag to the routes in my referenced prefix list. My question is, when doing this on a live firewall, will this require OSPF to re-converge? Thanks

AndyFox by L0 Member
  • 1872 Views
  • 1 replies
  • 0 Likes

Defining patch management in HIP objects.

Hi All,We are configuring global protect with HIP enabled.Our requirement is, If the patch defined in the HIP object is missing in client machine then access should be denied. Below screen shows the patches (windows updates) for windows 7 machine.From above snap i want to use the highlighted update as match in HIP object (If this update is missi...

Gururaj by L4 Transporter
  • 11841 Views
  • 11 replies
  • 0 Likes

Out of memory: Kill process xxxx (mgmtsrvr) score xx or sacrifice child

This is a recurring issue, a reboot helps for time being. When attempting to update to the latest antivirus version, we see that the commit fails. System resources look normal. And looking at the techsupport file in /var/log/messages, we see that during various attempts: mgmtsrvr, devsrvr, logrcvr were the killed processes due to out of memory...

Screenshot_286.png

Palo alto PA3060 high memory usage over 60%

Hi everyone, In our performance report, it is find some Palo Alto PA3060 firewall memory usage keep high than > 60%, which trigger resource alarm refer our monitoring standard. I tried action like reboot device but memory level remain more or less the same. May advise way that can lower memory usage, say, <60% I also try to following the...

WilsonWu by L1 Bithead
  • 4430 Views
  • 3 replies
  • 0 Likes

Global Protect - SAML Authentication Complete Page

We're testing upgrading to version 2.5.x and have run into a few changes with the new features. We enabled "Use Default Browser for SAML Authentication", because you know ie, is going away. After doing this, each time our end user authenticates, they receive an "Authentication Complete" Page, with a cryptic message about opening Global Protect ...

Source NAT Dynamic Pool mapping for inbound traffic

I have configured Dynamic NAT on PA- 3260 where source address is a VLAN with a certain IP range mapped to a NAT pool (Many-to-Many NAT Policy according to PA documentation). NAT policy is working fine according to the session logs. I can see the packet IP translation taking place for the outbound traffic. The concept I wish to understand here i...

Ajay358 by L2 Linker
  • 1177 Views
  • 1 replies
  • 0 Likes

Resolved! VPN certificate is not within its validity period - but dates match

Hello, I let the self-signed root and server certificate expire on my GP portal/GW so I regenerated both the root and server certificate (again, self-signed). I am still getting the error even though the computer time falls between the start and end date for the cert. Screenshots: Error message and certificate details with computer clock. ...

  • 24376 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks