This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4244 Views
  • 0 replies
  • 0 Likes

LACP LAG

Does anybody know how to setup LACP lag on PA 5000 ver 5.04. SInce I am configuring active passive configuration and I have two core switches. I want core 1 to be my primary link and my secondary core as my secondary link from single firewall. Thank you

knesan by Not applicable
  • 3276 Views
  • 2 replies
  • 2 Likes

Faild Starting Phase1

Hi Group I am really ready to pull the hair out of my head. 🙂For 3 months or so, I have had a VPN between my PA-200 to a PA-500 at my remote office. All was working fine.Last night I come back into the office to find the VPN down, and not sure why. I am looking at my PA-200 which has exact configuration.I can see via my pcaps that I am attempt...

scantwell by L4 Transporter
  • 2617 Views
  • 2 replies
  • 0 Likes

Variable for hostname on responsepage

Hi,I´m looking for a varible which resolves in the hostname of the responding Palo Alto. We are currently having an MPLS network with multiple subsidaries connect, each has it´s own lokal PA and one centrale internet breakout with a PA Cluster. I would like to include the name of the PA which "showed" the response page so in case of troubleshoot...

u18195 by Not applicable
  • 4136 Views
  • 3 replies
  • 0 Likes

Resolved! Failure Upgrade 4.0.5 to 4.1.12 with Auto Commit Failed

Hello, My device is a PA-2020 in version 4.0.5.I upgraded the device in 4.1.12 (I have downloaded the basic version 4.1.0) The installation went well and also reboot. But when the device performs its AUTOCOMMIT, there is an error. At each failure a AUTOCOMMIT, but every time there is an error. I noticed two errors: "Error: failed to handle TDB_U...

Need an advice

Hello team..I need the best or a good advice to do the correct sizing for a PAN device, yo know I don't know if there is some sizing tool that can help me, or some document to read it and understand what is the best way to do the right sizning...thank you..

Resolved! Do I know when some vulnerability ID update??

HelloI know vulnerability 30844 signature when date update last.And I know it what version is last.I can find AV signature from threat vault page in support site.But I don't find to check it in CLI , GUI , Threat Vault etc.Thanks

Resolved! List of available protocol decoders?

Anyone know where I can find a list of available protocol decoders in the PA's? Is the "context" area of custom app/vuln sigs the only place where this is listed? If so, that's not a very easy place to extract the list from.

mgentile by L2 Linker
  • 5385 Views
  • 4 replies
  • 0 Likes

Resolved! o session

Hi,Have a installation with a PA-200 firewall.It's a standard vwire-setup with policyes from untrust to trust. It is places between the ISPs router and another firewall.The traffic is forwarding between the interfaces, but the PA-200 is counting 0 sessions.Log monitor e.g state null traffic. Have created a case at Palo Alto, but have no solutio...

klumpen by L1 Bithead
  • 4466 Views
  • 5 replies
  • 0 Likes

What am I gonna do? (delete language.txt)

Hi,,,for the first time in long timeI write question,,since I use pan os 5.0I am used to use upload file to scp~!I always try to upload language custom file,,and so There are many dirty files in paloaltoI would like to delete language file to arrangesomebody help meCLI Command Please~~~ ^0^Thank you

Resolved! Does SSL decryption work on the Forward Proxy in tap mode?

Hello, This is Heejun from Uquest.I'm testing SSL decryption, and read some document saying that SSL decryption won't working with Forward Proxy in tap mode.But I heard that someone did this during previous POC. There's no way to check this right now.So I want to hear that whether this is possible or not.I've seen this contents in 'TechConnect -...

JTR by Not applicable
  • 4529 Views
  • 4 replies
  • 0 Likes

SSL Decryption Certifcate GPO Distribution

When exporting a certificate used for inbound ssl decryption which is to be deployed throughout a company through GPO to Internet Explorer, do you have to select Export Private Key or is it okay to just export the certificate?What is the difference between File Formats PEM and PKCS12?If a company created their own CA, does this also require the ...

kalluga by L0 Member
  • 3934 Views
  • 3 replies
  • 0 Likes

Resolved! Wildcards in address objects

Instead of creating several address objects for the many MS update servers available, and then creating a group to plug into a security policy that allows my WSUS server to get updates, is there a way to use wildcards in the address objects? MS updates lists multiple locations available for updates: http://windowsupdate.microsoft.com http://*....

Dynamic DNS Support

Does anyone know if/when Palo Alto will integrate dynamic dns into its devices? This would be a tremendous help for devices that are using DHCP from service providers.

TRCAdmin by L0 Member
  • 2704 Views
  • 1 replies
  • 0 Likes

Resolved! Email scheduler and Report names

Does anyone know if you can change the email scheduler to allow a report recurrence to run monthly? The options in 5.0.1 allow daily but there is no option for monthly? Also why is the reporting name restricted to 31 characters? When creating a large number of reports it is very limiting to only be able to use 31 characters as it doesn't allo...

RSToyota by Not applicable
  • 4973 Views
  • 3 replies
  • 0 Likes

Problem with Knowledgepoint and Internet Explorer 10

Just discovered that knowledgepoint (Jive engine) do not support ie10.I have also discovered that the reason is in Jive and is currently patched (The issue was that IE10 is being recognized as IE1, which does not pass the browser check)My walkaround is : I hit F12 and select Browser Mode:IE8 then I can work around it. (for some reason IE9 did no...

stig by L1 Bithead
  • 2533 Views
  • 1 replies
  • 0 Likes
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks