General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Unable to Export CSR from Panorama?

Hi,

I just generated two CSRs on Panorama, and I am unable to export them. When I try, I get an errors.txt file that says "Failed to prepare CSR <CertName> for export". I've worked around this by committing the configuration to the devices, and then e

...

Abs by L3 Networker
  • 1045 Views
  • 2 replies
  • 0 Likes

SIGN CSR against what server type?

For some users they get their CSR signed through an automatic portal, in most cases it asks you what type of server to sign it as, Microsoft IIS or Apache.  If you're lucky enough to find Palo Alto Networks in that list this post isn't for you.   How

...

amansour by L4 Transporter
  • 583 Views
  • 0 replies
  • 1 Likes

Resolved! Tracking application change in a session

Does anyone know if it's somehow possible to track application changes in a session?

Let's say an application in a session first is identified as web-browsing, then facebook, and finally facebook-chat. Maybe not a realistic example, but you get the po

...

torm by L4 Transporter
  • 1578 Views
  • 3 replies
  • 0 Likes

Resolved! PA-2020 Software Upgrade

Does anyone have experience when upgrading from version 4.1.6 to version 5.0.0? I am wondering (outside of the release notes) if anyone has seen bugs.

Thanks

c0d3w12 by Not applicable
  • 1708 Views
  • 3 replies
  • 0 Likes

Resolved! Palo Alto Support Contracts

I recently purchased a firewall with a 1 year support contract. I received it three months ago and haven't had time to deal with it. When is the official start date of my support contract? Do I have a certain amount of time to register the box before

...

das by Not applicable
  • 1718 Views
  • 2 replies
  • 0 Likes

Resolved! User ID Agent Ignore

I have user id agent 4.1.6-5 on PAN OS 5.0.1.

Is it possible to tell the agent to ignore certain IP addresses, I know how to do with the users by using the ignore list text file.

Clearing snmpd.log due to log overflow

I recently upgraded to PAN 5.0.1.  I am now receiving the following alert - Clearing snmpd.log due to log overflow.  I have been trying to get more information on this alert but have been unsuccessful. I am concerned with what the log overflow is ref

...

Resolved! MAC address spoofing

Does someone know if it is possible to spoof/change the mac-addresses from a VM PAN 100? Our ESXI Vendor won't enable Promiscuous Mode, so we don't have data through our Ethernet ports. I guess maybe, when I can spoof the MAC address, it might be wor

...

VSA by L0 Member
  • 949 Views
  • 1 replies
  • 0 Likes

PA Work With Juniper DAC

Have a client that is interested in using 10G with the 5050 but wants to connect it with a Juniper DAC.  Anybody have any experience with this or if it even works at all?  Know it would probably not be supported by PA but just curious if it works.

SFP

...

shp555 by L2 Linker
  • 1082 Views
  • 0 replies
  • 0 Likes

UDP Packet size

Does anyone know if the maximum permitted UDP packet size follow the MTU setting? or is there a specific setting for this?

I need to understand if the PA automatically allows UDP packet sizes over 512 bytes

Thanks

Rod

djrodb by L3 Networker
  • 4406 Views
  • 5 replies
  • 0 Likes

Resolved! GlobalProtect portal corrupt.

Running an 2050 Active Passive HA pair.

Yesterday I noticed that I couldn't login with the Globalprotect client. After some investigation I noticed that I could log in on the Globalprotect Portal web page, but after the login the page which offers the

...

OSPF

Hi,

Can anyone please help me with ospf issue iam facing.

I have attached the OSPF config of Palo Alto and downstream SRX 100 devices.

Iam unable to get the OSPF routes in Palo alto device.

Thanks

Raju

Top Liked Authors