This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4105 Views
  • 0 replies
  • 0 Likes

Upgrade to 5.0.11 = High Amount of Global Protect Failed Auths

We upgraded one of our 5020's from 4.1.13 to 5.0.11 about 2 weeks ago. Ever since then, we have been seeing an unusually high number of failed auths from Global Protect. Has anyone else experienced this?The attached graph was made in Excel. I used this filter in PA ( eventid eq globalprotectgateway-auth-fail ) and ( receive_time geq '2014/02/...

jambulo by L4 Transporter
  • 2977 Views
  • 3 replies
  • 0 Likes

Shared Policy Zone Check

The Shared Policy option in Panorama is most useful, however I have found an issue with it which I think could be resolved in one of two ways, what I need to know is do either of these two ways exist?ScenarioWhen using the Panorama Shared Policy to push single policy to three different FW layers I need to include the Source and Destination Zone ...

CHammock by L2 Linker
  • 4226 Views
  • 3 replies
  • 0 Likes

Causing change in ARP Table Entry (PAN-OS 5.0.8)

Hello Everyone, One of our Application Support Teams were trying to move from using servers being an ACE to servers behind a NetScaler last night... as part of the ensuing situation I was asked to check and if necessary clear the ARP Table on the PANs (PA-5060's running 5.0.8 in HA Failover)... So, I hop on the active PAN and do a 'show arp ...

Art by L3 Networker
  • 3830 Views
  • 3 replies
  • 0 Likes

What are the subscription licenses happened if the hardware license is expired?

Dear all,As the title, for an example, I had a box and it's hardware license (as 'Premium Partner Support" license) is expired now, but the "Threat Prevention" or "Wildfire" license are available, what the box will be?- We can also update the signatures and the functions work as before ?- We cannot update the signatures any more, but the functio...

known and UNknown BUGS

Hi All,Have You any information about known and unknown (if it possible of cos' 🙂 ) bugs that not published at the time?Alex

Oleksandr by L3 Networker
  • 2985 Views
  • 3 replies
  • 0 Likes

TCPDUMP shows syslog traffic going to a specific destination - How to figure out what is sending it there?

I am hoping this is an "easy" question that I am just missing having been on calls since 4:24 am this morning :smileyconfused:I have used tcpdump to confirm that one of our PAN firewalls are sending syslog traffic to a specific destination (w.x.y.z) which it is not supposed to. (we don't want it going to that 'collector' for band width reasons -...

Art by L3 Networker
  • 3013 Views
  • 2 replies
  • 0 Likes

What does "Count" column mean in the "User Activity Report"?

What specifically does "Count" column mean in the "User Activity Report" ?If the the number in the "sessions" column reads 4.8k, specifically what does that mean in a user activity report?See the example below.Application App Category App Sub Category App Technology Sessions Bytesweb-browsing general-i...

Response Pages Usable Parameters

Heydoes someone have the full list of the parameters i can insert into a custom response page?or i can only use the ones that are shown in the default response pagesfor example if i want to insert the IP address of the client into the response page for the URL filteringthanksdor

minow by L4 Transporter
  • 2142 Views
  • 1 replies
  • 0 Likes

After deploying PaloAlto in VWire mode the router getting hanged,..

Hi All,After deploying PaloAlto in VWire mode the router getting hanged,.. again after rebooting the router again works fine for hours and again gets hanged (Router have 1G interface).We have set the negotiation to "Auto" in both PaloAlto and router.. Can any one provide the troubleshooting steps or resolution for this issue.PANOS is 6.0.0Model ...

Gururaj by L4 Transporter
  • 3463 Views
  • 5 replies
  • 0 Likes

how to limit file size downloading and uploading

dears,good day , i tried to limit downloading and uploading based on file size by using reqex but i failed , i don`t know what is the right regex to use ( body.size or stringto numbers)..i wanna to make a limitation rule to limit downloading or uploading files greater than 10 MB...

Internal updater server

I have searched but can´t find any information if it´s possible to have your own "updates.paloaltonetworks.com"? We have an isolated PA fw which we want to update (firmware, threat db ...) is it possible set up your own update server who can get updates from updates.paloaltonetworks.com and the isolated fw get updates from it?

Resolved! Features Inquiry

Hello Guys,I would like to know if there is an alert feature in PAN where it will alert (via Email, Syslog,snmp or other Log forwarding) the administrators whenever someone is trying to login in the device.also, is there a plan in adding a Configuration Forwarding to PAN? basically PAN will just send the latest config to a FTP server or other fi...

Resolved! Updates via the management interface

Just doing the initial setup on a PA-200 and following along in the Getting Started Guide. Only the management interface is configured with an internal IP address and connected to the internal LAN at this point. No other interfaces are configured or connected at this point. Is there any way to get the updates to work through the management por...

spellm by L1 Bithead
  • 5770 Views
  • 1 replies
  • 0 Likes

Cisco Anyconnect

Hi all,I am trying to connect using Cisco Anyconnect VPN client on my iPAD to Palo Alto Global Protect VPN Gateway with different configurations without success. Do you have any suggestions whether they can inter-operate? If yes, what settings on both ends are required? By the way, I am using AD password and not certificate for user authenticati...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks