This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4114 Views
  • 0 replies
  • 0 Likes

input logs firawall

Hi, is it possible to add information imported from another event log to the logs of a Palo Alto firewall?

axelfa by L2 Linker
  • 1621 Views
  • 2 replies
  • 0 Likes

HA upgrade oddness (no preempt)

Hello, just seeing if anyone has an explanation or has experienced this before. I followed the HA firewall upgrade guide and experienced this unexpected behavior. i suspended the primary, ( secondary went active), installed the new os, and rebooted. Upon reboot, it was no longer suspended, came up and went active and caused a split brain. After ...

VK9H13 by L2 Linker
  • 1626 Views
  • 2 replies
  • 1 Likes

Possible NAT issue on a PA-3260

Folks, I am trying to configure a NAT policy which should be bi-directional. Here the traffic can be initiated from outside or the inside. The policy is configured and I can see NAT hits. However, this policy does not work. The NAT IP is from a subnet which does not reside on the Untrust interface. This is where I see the possible challenge is...

Resolved! Panorama Software Upgrade

Hi All, Just wanted to confirm I have the process right. We're running Panorama, M-100 appliance (32GB RAM), managing 3 pairs (6 no) of PA-3220 firewalls. All currently running PAN-OS 8.1.5. Looking to upgrade to the next major stable release, currently listed as 9.0.6. From what I have read, upgrade path is, Panorama first, 8.1.5 > 9.0.0 &gt...

Captive portal authentication over TLS

Hi, I've enabled captive portal on our systems, following the PA docs (Configure Authentication Portal (paloaltonetworks.com)). I have an SSL/TLS profile created with a valid, trusted certificate signed by our own internal CA. When our machines try to authenticate to the captive portal, they do so over HTTP not HTTPS. Is there some way to force ...

Prisma Cloud: Azure Active Directory resources not being ingested

I have provided Prisma Cloud with all the necessary API Permissions and more, along with granting the necessary roles needed to view Azure Active Directory Security Settings. The issue lies in resources showing up in Prisma Cloud itself when queried, e.g Identity Protection related resources or Active Directory Roles and Administrators or even P...

AJohri by L1 Bithead
  • 2581 Views
  • 2 replies
  • 0 Likes

Add disk collector panorama (missing)

Hi, We are trying to add a new disk in collector (panorama). We follow the correct procedure and we can see the disk running: show system disk details. This is the disk: Name : sdhState : PresentSize : 2097152 MBStatus : AvailableReason : Admin enabled But if we go to "managed collector" the new disk is missing (Disk H): Whats happ...

disk.JPG
BigPalo by L4 Transporter
  • 3059 Views
  • 7 replies
  • 0 Likes

User-ID - Windows Server 2022 , not working

We are running a Windows server 2022 and PA-3220. I have the user-agent put on a seperate Win 2022 server. The firewall when communicating with server is getting dropped code 5986. Under my Server Monitoring it shows Connection refused(0).

tnewton by L0 Member
  • 4149 Views
  • 2 replies
  • 0 Likes

Resolved! CVE-2024-0010

Hi there everyone. Could please someone clarify for me what versions are affected regarding CVE-2024-0010 as seen here? https://security.paloaltonetworks.com/CVE-2024-0010 My inquiry goes for version 10.1.11-h5. Is it affected or not? Because I believe there is an error in the way this is written in the article. If 10.1.11-h5 is affected, then ...

Koulentis_0-1708063049201.png

Resolved! SSL/TLS Vulnerabilities

Dear Team , We have a customer, who found SSL/TLS Vulnerabilities on audit SSL/TLS configuration The firewall supports weak cipher mode CBC. kindly provide the solution to remediate the weakness. snip attached for Refr.

lsvpn problems with connecting to gateway

We have a lsvpn architecture and we are having problems with one of the satellites connecting with lsvpn gateway. We configured and maintaining this lsvpn for the past 1 year and dealt with most of the problems. Usual one being credential cookie expiration and we had to manually go in and put in the credentials. Other one is sometimes we have to...

Akhilb2728_1-1708033165796.png

device telemetry Failed to reload config files

Since the update from our firewalls to 10.1.10h2, i see in the system logs the event : Type: device telemetry Event: config-reload-failure Description: Failed to reload config files. The sent of the telemetry files is working. This happens every time after a commit from panorama to the firewalls. The firewalls are HA setup managed by panorama. I...

ManuDC by L0 Member
  • 7221 Views
  • 4 replies
  • 1 Likes

traffic log database exceeds alarm threshold value 100% of total allowed size

Hello community, On my paloalto 850 I get several alarms every day stating: "Current suz (xxxMB) of traffic log database exceeds alarm threshold value (100%) of total allowed size (xxxMB). On the CLI a "show system disk-space" shows the disk on not full: Filesystem Size Used Avail Use% Mounted on/dev/root 9.5G 3.4G 5.6G 38% ...

Zorgnet by L0 Member
  • 1267 Views
  • 1 replies
  • 0 Likes

PA 440 dynamic updates

I am installing a PA 440 v 10.1 I can ping IP Addresses on the Internet using my internet interface as source I can https inbound to the firewall after configuring a management profile under Device -> dynamic update or license check my attempt at the connection times out Q can anyone recommend tests for me to complete to troubleshoot ...

S.Byrne by L3 Networker
  • 2049 Views
  • 2 replies
  • 0 Likes
  • 24333 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks