This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! LDAP profile broken after upgrading to 5.0.10

Hi,I upgraded my firewalls to PANOS 5.0.10 yesterday, and after the upgrade the LDAP profile fails with "invalid credentials". I have tried resetting the password for the account used, but the error still persists.Have anyone else encountered this issue? Experiencing the same issue both on PA-3020 and PA-200, and the error started occuring immed...

arvesynd by L3 Networker
  • 10261 Views
  • 13 replies
  • 0 Likes

Palo Alto Virtual Firewall Platform

Is anyone using one of these but as an internet facing firewall vs. firewalling the VM's on the host the firewall is running on?From the pricing and specs and the amount of HA that vSphere can provide, I'm trying to understand what the "catch" is vs. a physical Palo Alto?

Resolved! Captive Portal SSL Certificate Error

We're running 5.0.10 with Captive Portal.We have an SSL certificate installed for *.domain.com and have several internal DNS entries that point something.domain.com to various physical interfaces on the Palo Alto.We recently revoked and rekeyed our wildcard cert and since importing and replacing all instances with the new certificate, on some ma...

Bi-Directional NAT using DMZ instead of Outside interface

The reason for this post is I'm collapsing 2 ASA that are configured one in front of the other into a single PANW firewall. The DMZ interface on the inside ASA is technically treated as the "outside" interface. All NAT is performed on this DMZ interface. After the collapse, the DMZ interface will still exist but a true Outside interface will ...

attacking site and PAN

HelloFew days ago I discovered site with some information about VMware Update Manager. I had a problem with it and I was searching for solution.This site is www.bourgelat.net/cannot-patch-definitions-vmware-19988I have PA with all licences but PAN software doesnt detect any bad traffic I asked PAN to change categorization to malware site, but to...

_slv_ by L4 Transporter
  • 6691 Views
  • 13 replies
  • 0 Likes

Opt-out page for HTTP ?

We would like to have a web response page that is presented to the user when the user launches their browser for the first time that asks them if they abide by the AUP rules. Basically same concept as the https opt-out page. Is this possible? If so, can someone please advise how.Thanks in advance for your response

Resolved! Can't clear session from CLI

Running PANOS 6.0.1. I can't seem to clear a session from the CLI. Just tested on a PA-500 running 6.0.0-b42 and I have the same problem.Anyone knows if this is a bug?admin@PA-vm> show session all filter destination 212.x.x.x--------------------------------------------------------------------------------ID Application State Type...

Disable an IPSec Tunnel

I want to disable an IPSec VPN. I have currently blocked traffic both directions to the tunnel by using a Security Policies, but there should be a way to disable the tunnel in the IPSec configuration (or alternatively, disable the tunnel interface). I don't want to delete it, but I don't want it taking up processor speed for a tunnel that I don'...

blandis by Not applicable
  • 9064 Views
  • 5 replies
  • 0 Likes

Resolved! PA-5020 reboots to maintnance mode. No hardware problems... svc: failed to register lockdv1 RPC service (errno 97)

Hello, All!After unpacking and installing PA5020 in HA Active/Active we could not set up a basic nat - in dataplane packet dump there was an error smth like "Cant create session" after nat and sec.policy applied. NAT and security rules were fine.After rebooting one node it went to countinuos rebooting: after exit maint mode it starts, prompts fo...

MZRF by L1 Bithead
  • 6162 Views
  • 5 replies
  • 0 Likes

Decryption: sec_error_reused_issuer_and_serial

Hey all,I am having problems with decryption. The PA decrypts https websites, but when I surf to that website a few hours later, I receive the following error in firefox:I haven't tried yet in IE or Chrome. I have this problem for various websites, not just gmail (I already had the problem with paloaltonetworks.com)The issue is resolved when res...

Threats alert

Hello Team,I have configured the panorama threat alert for one of our firewall and its working fine. Alerts has been configured for High and Critical .we are getting so many alert from one IP (10.32.100.238) , one of vulnerabilities management device . I want to create a rule so that we can exclude the alerts from the source IP 10.32.100.238 and...

tiwara by L3 Networker
  • 3048 Views
  • 2 replies
  • 0 Likes

EU - European Union

Is it possible to view the countries that are included in the "EU" object? When new countries are added to the EU, will this object be updated via dynamic updates or by upgrading?Does anyone have experience with the accuracy of geo ip on palo alto?Kind regards

Intermittent SSL decryption issues for some, not all.

My Palo Alto Firewall 2050 running 4.1.16. I am having a lot of intermittent SSL decryption issues. I'm not sure what to do with some of these. An example is https://app.plangrid.com. I can this site when I have made this change and restart my browser:> set system setting ssl-decrypt skip-ssl-decrypt yesSetting this back to the no re...

EdwinD by L3 Networker
  • 5054 Views
  • 2 replies
  • 0 Likes
  • 24381 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks