General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 480 Views
  • 0 replies
  • 0 Likes

Dataplane is down: path monitoring failed.

One of our passvie firewalls encountered the problem "Dataplane is down: path monitoring failed". The reason may be that we replaced the fan. At present, I found the following link to the official documentation of Palo Alto. Because we have no plans

...

BuzzLin2 by L0 Member
  • 4203 Views
  • 1 replies
  • 0 Likes

prisma free trail using AWS PAYG

Hi Team,

 

 

I have subscribed to prisma cloud PAYG 15 days free trail in AWS. I exceeded 15 days today. I don't want to continue using it and get charged. How do I unsubscribe it?

csekhar by L0 Member
  • 860 Views
  • 1 replies
  • 0 Likes

API set up with global protect and infoblox

Hello Community,

I hope i am in the right place to ask this question. I am working on building an API set up that will pull Global protect user information such as hostname, IP, etc... That data will then be fed into infoblox as our central dns sourc

...

ADefeo by L0 Member
  • 892 Views
  • 1 replies
  • 0 Likes

Authentication Fallback

Hello,

So, we currently authenticate administrators to our PA's via Radius (TACACS).  Is there a way to configure the PA's that it will only use the local DB / Administrators if Radius isn't available? 

Thanks!

mrsold by Not applicable
  • 10481 Views
  • 10 replies
  • 0 Likes

Rule hit count or unused rule in custom reports or CLI

There are no fields related to rule hit count or any way to identify unused rules in Panorama custom reports. Is there a way to get a consolidated view of unused rules across all device groups at once and not just through the policy page per device g

...

x2aembre by L0 Member
  • 1515 Views
  • 2 replies
  • 0 Likes

PA5410 Version 10.2.4 not allow to set offload to true

Hello
We are detecting sporadic CPU spikes on a FW 5410 version 10.2.4 , the average is fine however, we observe sporadic spikes of 95% 96% ...100%. Before with the old FW model we did not have this problem and we have not changed any configuration.

W

...

Alpalo by L4 Transporter
  • 1506 Views
  • 2 replies
  • 0 Likes

TCP-RST-FROM-CLIENT and TCS-RST-FROM-SERVER

Hi All, 

 

As captioned in subject, would like to get some clarity on the tcp-rst-from-client and tcp-rst-from-server session end reasons on monitor traffic.

 

Even with successful communication between User's source IP and Dst IP, we are seeing tcp-rst-

...

Jimmy20 by L2 Linker
  • 264162 Views
  • 6 replies
  • 2 Likes

Support account with personal email?

Purchased a 440 lab unit for my personal lab through my previous employer who is no longer in business (and inaccessible email) so I need to now register it with my own personal email but am having trouble. Trying to study for PCNSE after getting my

...

VK9H13 by L2 Linker
  • 1094 Views
  • 1 replies
  • 1 Likes

Upgrade VM-Series model - VM100 to VM300

Hello.

I have as a goal to upgrade the palo alto firewall from VM100 to VM300.

 

I am in a process of understanding the process, so I am wondering if I could get some assistance from this forum.

Thank you in advance.

 

Going through the guide

Upgrade

...

alwi by L0 Member
  • 1268 Views
  • 1 replies
  • 0 Likes

Cloud Identity Engine

While attempting to synchronize an on-premises server with Cloud Identity Engine, we encountered the following error

 

Confirm the domain name configured on the agent matches the Canonical Name of the domain controller to ensure Cloud Identity Engine

...

Screenshot 2023-05-24 221725.png
Screenshot 2023-05-24 221635.png

VPN Site-to-Site Private IP and Public IP

VPN Site-to-Site Private IP and Public IP

Good afternoon everyone, is it possible to set up a Site-to-Site VPN between a site with a Palo Alto Private IP and a Palo Alto Public IP.


Site Privado: PaloAlto---IpWan-192.168.1.254---Router/Modem--------Inte

...

Metgatz by L4 Transporter
  • 6869 Views
  • 7 replies
  • 0 Likes
  • 24087 Posts
  • 116 Subscriptions
Labels