This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4132 Views
  • 0 replies
  • 0 Likes

Traffic Question

I have a customer who is unable to access a site over port_873. When searching the traffic I see that the Source IP to Destination IP are being allowed over port 873 but the application is showing as incomplete. Now, I understand that this indicates that the handshake is not being completed most likely due to the distant end, but there are still...

syslog format 2 servers

Hi,How can we configure to send syslog with CEF format and log format to seperate syslog serversDoes paloalto support that ?There is only one custom log on the server profile.Regards

PanIst by L3 Networker
  • 2452 Views
  • 2 replies
  • 0 Likes

How to install VMware Tools for PA-VM 6.0.0

Hi, I downloaded PA-VM 6.0.0 and spun it up on a VMware server. I am trying to install VMware tools on it. Does anyone know how to do it? I have searched out that the VMware Tools is not compatible with PA-VM. Is it true tho? I cannot find any info from PaloAlto knowledge base. Thank you very much.

Xu by L0 Member
  • 2984 Views
  • 1 replies
  • 0 Likes

Resolved! MIB and OID for Panorama and M-100.

HelloI want to have a SNMP MIB and OID for panorama and M-100.Could PAN provide me above things? or already?Please let me know where SNMP MIB and OID for panorama and M-100.Thanks in advance.Regards,

Roh1 by Not applicable
  • 8933 Views
  • 6 replies
  • 0 Likes

Wrong SNMP Values after Upgrading to 6.0.2

Hi,after Upgrading from 5.0.7 to 6.0.2 I got wrong values for active sessions information in my monitoring tool. The device it selfs shows a much lower value then my SNMP-network Monitoring tool. E:G. on the device: At the same time via SNMPIs this How can I solve these problem?Greetings from the old continentRobert

CVE-2014-0198 - Anyone have a signature?

Curious if anyone else is working on or looking for a signature for this vuln: NVD - DetailDoS vulnerability brought about by a bug in OpenSSL. Is PAN working on a signature by chance?Details: The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer ...

Cap by L0 Member
  • 2817 Views
  • 1 replies
  • 0 Likes

Resolved! Active/Active HA3 Link Bandwith

Looking for advice on bandwidth for a A/A pair of 5050s running a 10G vwire. Should I burn another 10G port on the HA3 link or can I get away with 3 to 5G agg? Or is this really just one of those things I need to set up and monitor?

AlexZu by L1 Bithead
  • 6050 Views
  • 4 replies
  • 0 Likes

Monitoring Attacks in real time

Hi,I'm wondering if there is another way instead monitor tab to monitor attacks in real time.Does anyone else thinking about it?Leonardo Dias

ldias by L0 Member
  • 4538 Views
  • 6 replies
  • 1 Likes

SSL Decryption and Cisco Jabber client

We currently use Cisco Webex for desktop sharing, video conferencing and IM. Our environment has mostly people using the old Webex connect client and a few 'pilot' users of the Cisco Jabber client.Recently we implemented SSL Decryption and everything in the webex environment worked fine for the Webex connect client but people using the jabber cl...

Howto track a Public IP outside to failover in case of lose of connection ?

Hi,I have a cluster of PaloAlto 3050, I want to monitor a Public IP (by example Google.com) and in case of the PaloAlto lose the connection I want to failover to the second PaloAlto.I already monitor the Interface, but if the Interface is UP, but the after the Gateway the link is DOWN I lose the Internet Connectivity but I didn't failover to the...

GroupeE by L0 Member
  • 3111 Views
  • 2 replies
  • 0 Likes

Proxy ID's question

Can someone clarify Proxy ID's for me? From what I see they're the same thing as encryption domains? What is the syntax, does it have to be one to one: ie SIP 1.1.1.1 DIP 2.2.2.2 ...

dvlacic by Not applicable
  • 4572 Views
  • 2 replies
  • 0 Likes

Bulk Apply Profiles

Hi All,Is there any way to easily bulk-apply a threat prevention profile to a large list of Security Policies? Maybe through the CLI? We have about 600 security policies that do not have threat prevention turned on. I'd like to do so, and have the profile created, I just don't know how to apply to all of the policies.Thanks in advance,-Mike

wocomike by L1 Bithead
  • 3927 Views
  • 4 replies
  • 0 Likes

Problem with incomplete application

Hi all,I have the same problem with incomplete application.!Public zone! <====> PAN Firewall <====> INSIDE Firewall <-----> Server IP.I have nated Server IP to Public ip, and configure rule like the below.Name: (Ping) ; Src zone: (public); Src: (any); Dst zone: (any) ; Dst (any); Appliccation: (icmp, ping) ; Action: (ALLOW);I m...

  • 24337 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks