This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4148 Views
  • 0 replies
  • 0 Likes

Resolved! Panorama multiple interface

Hello,I would like to know if it's possible to configure multiple ip interface on the panorama server ?One interface to administer the server, and another one for communication with the PANs .Regards,

IPS - set up packet logging

Dears,I would like to know if there is a possibility to collect some packets before and after the packet that trigged the attack signatureit will be helpful in case of troubleshooting and confirm if this attack is a false positive or real attack( knowing that this option is available from other vendors )Thanks and regardsSamir.

Resolved! PA 2050 device cannot boot

Hidevice cannot boot and waiting below mode******************************************************Autoboot to default partition in 5 seconds. Enter 'maint' to boot to maint partition.size: 7208960, sector_size: 131072Scanning JFFS2 FS: . done.Full fpga programming SUCCESSUnknown command 'fsload' - try 'help'## No elf image at address 0x200...

lildeniz by L3 Networker
  • 3910 Views
  • 2 replies
  • 0 Likes

SNMP/QoS Questions

I had recently configured a Cacti server to monitor my bandwidth usage of my PA-500. All was working fine for a few weeks until I worked with support to configure and enable QoS to monitor bandwidth on the PA-500 without actually implementing QoS. Since then my Cacti server is not displaying the SNMP information it was receiving from the PA-50...

Configuring the firewall time-out values for HTTP(S) requests to the Exchange Server Microsoft-Server-ActiveSync virtual directory

I have getting 1040 event id on the Exchange 2010 CAS server. Event details as exampled below.Log Name: ApplicationSource: MSExchange ActiveSyncEvent ID: 1040Level: WarningUser: N/AKeywords: ClassicDescription:The average of the most recent heartbeat intervals [526] for request [Sync] used by clients is less than or equal to [540]. Make sure tha...

cbret by Not applicable
  • 7263 Views
  • 4 replies
  • 0 Likes

Resolved! loosing link between an user and is AD groups

I opened a case in this regard, but in the meantime I would like to know if anyone has the same problem as me.-I'm using version 4.1.8 of PA, the PA-2050 appliance.-User ID agent v.4.1.4.3 is use for authen users.- ad windows, on server 2008, for LDAP.I regularly lose the link between a user and the group associated with that user.Result: I have...

report top websites export to PDF: host name not resolv

When i doing a custom report, using template : Top WebSites, then I export report to PDF, hostname show IP instead of real host name.I use PA 4.1.9 .Any clue on that?There is a way to show real hostname ? Or maybe i can use URL filtering database instead of traffic?

Palo Alto and Duplicate Packets

How does Palo Alto handle Duplicate Packets? In our scenario, we have one interface running in TAP mode. We are using a port aggregator to shove spans/taps from multiple locations in our network to this one TAP mode interface. Doing this, the PA should be receiving duplicate packets when the stream of data flows past 2(or more) of the spans/ta...

jambulo by L4 Transporter
  • 4137 Views
  • 1 replies
  • 0 Likes

Resolved! Limit Shared Objects

I have 8 5060s that I manage with Panorama, I share objects between all of these devices. I want to add a new pair of devices to Panorama that are completely separate from the other 8 and I don't want the shared objects to be on the new pair. I also want to prevent admins of the new pair from creating shared objects that will become part of th...

rob_moore by Not applicable
  • 12777 Views
  • 18 replies
  • 0 Likes

Resolved! Global Protect 1.2.0

Hi,I was trying to find if GP 1.2.0 is supported on 4.1.x releases. I can't find it in the release notes from GP nor PANOS. The GP 1.2.0 is shown in the list on the 4.1.x device and you can download it but is it supported?Is it available in different languages?Regards,Kevin

OCDBE by L2 Linker
  • 2424 Views
  • 1 replies
  • 0 Likes

Control outgoing per user with 2 ISP

Hello all!Newbie here on PA-500 (just installed yesterday ), PAN-OS 5I have 2 Internet provider connected to my PA-500 (configured and initial set-up done by reseller), and I am looking in a way to control (by user or device IP) who could go out via ISP2/Untrust2, in other words, not everyone going out by the "default" ISP1/Untrust1 interface.T...

Resolved! Unable to access PA-500 via GUI/SSH on v4.1.7

Greetings,I have a pair of PA-500s running HA version 4.1.7. The web interface (GUI) and SSH access to active device was lost for some unknown reason. The only configuration change done was to set action for a security rule to deny which otherwise was allow. The changes were committed and firewall was good enough for the next 90mins. After 9...

Resolved! Captive Portal Session Timeout

You can set the Timeout value of captive portal. Default is 60 min. In my case it is 240 min.But this is the max TTL. There is a default TTL of 900 sec(15min)So when a logged on user does not create any traffic for 15 min then the user must logon again.IP dent. By User TTL (s...

u2343 by Not applicable
  • 9155 Views
  • 6 replies
  • 0 Likes

Resolved! M-100 appliance

Hi there,Who can tell me more about this appliance? By the look of things this is a server where you can run panorama, capture syslog file ect on. I would use it to run panorama on so do I still need to run the panorama on VMware?Please provide as much information as possible.Thanking youDendre Theunissen.

DendreT by L1 Bithead
  • 3406 Views
  • 2 replies
  • 0 Likes

Resolved! Certificate import issues

I'm having terrible problems importing a trusted certificate into my PA.I've followed the following guide - https://live.paloaltonetworks.com/docs/DOC-3502I can create the key okI can create the CSR okI then submit the CSR to Thawte which then gets authorised and releasedIf I then try and follow the last command from the URL link above (openssl ...

djrodb by L3 Networker
  • 17173 Views
  • 5 replies
  • 0 Likes
  • 24340 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks