General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 538 Views
  • 0 replies
  • 0 Likes

dns-signature cloud service connection refused.

Greetings:

I am seeing in the System Log the following message "dns-signature cloud service connection refused"  Checking the traffic logs the management IP address is not being blocked.  Where do I look to resolve this error message?   Thank you.

Resolved! Rename Device Group via CLI

Hello,

As part of a large migration process we're maximizing the use of CLI to create configuration within NW, FW, HA dedicated templates, + template stacks + device groups.

One area that I'm having difficulty with is the renaming of existing device-

...

Session Expire Time one month

 

The session expiration time is more than a month apart.

 

I'm using the 10.1.8 version and my search says it's a firmware bug.

 

However, the same symptoms appear in version 10.2.1.

 

Is there a solution in relation to it?

qmso475_0-1694656400580.png
qmso475 by L3 Networker
  • 1635 Views
  • 2 replies
  • 0 Likes

Commit Error

Hello.

 

After adding the allowed IP band, I pressed Save, but it is failing.

 

 

 

 

qmso475_0-1694679455987.png
qmso475_1-1694679479302.png
qmso475_2-1694679505579.png
qmso475 by L3 Networker
  • 603 Views
  • 1 replies
  • 0 Likes

URL Logging - only custom allowed domains are showing up

Hi there,

 

I'm trying to get URL logging to work.

 

At first: I don't have the advanced url filtering license, maybe that's why....

 

I have got a custom url category with some domains which I want to allow, those urls in this list are logged fine.

...

url-list.png
Netzer by L3 Networker
  • 1204 Views
  • 3 replies
  • 0 Likes

Resolved! Global Protect message is CN name mismatch.

Hello everyone.

Global Protect message is "The certificate CN name mismatch, The certificate is not issued to x.x.x.x" when I connect GP.

I configure to import certificate that issurer is Go Daddy Secure CA.

Why does CN name mismatch???

Resolved! Reports

Hi everybody.

 

When I got the report from palo alto the following problem occurs ( b'    ' ).

This report is in PDF format and cannot be edited. There was an extract of the report before, but there was no such problem.


b'Risk'    b'Application'    b

...

Fagani by L2 Linker
  • 941 Views
  • 1 replies
  • 0 Likes

Session count can't break 1025

Hi all, I am running a VM-series on aws and it has a issue with session, it's cannot break 1025. I'm new to Palo Alto so there are many term i really don't understand. Some body please tell me what is Active Session? Is it Session count on UI? Why ca

...

ahcogn1_0-1689301370235.png
ahcogn1 by L0 Member
  • 1939 Views
  • 5 replies
  • 0 Likes

Resolved! Dual IPSEC tunnels load balanced between two endpoints

Is there a way to setup TWO IPsec tunnels using different paths (for instance, two different ISP's) and have them share the traffic load between the two vs having a primary and backup?

 

I'm aware we can setup two tunnels and use path monitoring to f

...

Resolved! Cortex XDR Cloud Identity Engine Integration

We have planned the configuration of the Cortex XDR Cloud Identity Engine for our on-premises service. Could you please tell me whether the Cloud Identity Engine agent should be installed on the AD server or on a separate (NEW) server? What is the be

...

Resolved! Custom App-ID iMessage

Hi,

We have recently installed a PA-2020 at our college and am very happy with the device. The only issue we are having is that students are still able to use iMessage on their iPads. I can't find an existing app-id for that and am wondering if anyone

...

Rowan_C by Not applicable
  • 5412 Views
  • 6 replies
  • 0 Likes

Resolved! UserID/Group mapping

I have created a LDAP profile, group mapping and user mapping from Panorama, and it seems to be working.

Im able to do "test authentication username xxxxxxx.test@xxxxxxxxx.com authentication-profile xxxxxx-LDAP password and this works fine.

 

My prob

...

  • 23905 Posts
  • 113 Subscriptions
Labels