This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4453 Views
  • 0 replies
  • 0 Likes

PA-1420 11.0.2-h2 - Monitor - Logs - Traffic - Over 10 minute delay

Trying to look at specific traffic to troubleshoot a connectivity issue and noticed that all Monitor - Logs - Traffic results were 10 minutes or more behind the current time. 2 recently installed PA-1420's in HA. Previous PA-3220 did not have this issue. Is this expected behavior? System time was 15:12 when screen was grabbed. Thanks!

DeanKorfanty_0-1705699018718.png

Registering new PaloAlto firewall using ZTP Mode

Hi Team, We just now bought a new PaloAlto firewall. Now getting it registered using ZTP mode. The device registration succeeded but then I got an email saying "Palo Alto Networks Support Portal for the account Arrow U.S. has been rejected.". What does that mean? I'm stuck at the final page of device registration with the following message...

CDL rest api support ?

Hi, I am new to PANW products. I tried googling to find REST APIs to fetch logs from Cortex Datalake but with no success. Is there a way to fetch logs from Cortex Datalake via script ? (like REST API to fetch vales from Panorama) Thanks,

saswins by L1 Bithead
  • 5558 Views
  • 3 replies
  • 0 Likes

The device rebooted because of the ZTP settings.

While aging the firewall for delivery to a customer, the following message occurred and the firewall rebooted.<The system is shutting down due to System Reboot initiated to start ztp again.> 。There are no configuration settings. I simply left the firewall on to check the health of the machine.Does anyone know why this message is occurring?...

NTLM authentication 10.2 PANOS

Hello team, We need to know if in PanOS 10.2.x version the NTLM functionality is possible to have it configured. Is possible configure NTLM in version 10.2.x? If it is not possible to have it configured, we want to know in which official documentation it is indicated that it cannot be used and other alternative. Finally, we need to know how it w...

Alpalo by L4 Transporter
  • 2675 Views
  • 1 replies
  • 0 Likes

Resolved! Autocommit fails after upgrade 10.0.4 10.1.11-h1 (PA-410)

Hi team, I upgrated from version 10.0.4 to version 10.1.11-h1 model PA-410 and now autocommit is fails "" Client logrcvr registered in the middle of a commit/validate. Aborting current commit/validate.Management server failed to send phase 1 to client logrcvrCommit failedFailed to commit policy to device "" I tried to restart process logrc...

Alpalo by L4 Transporter
  • 2311 Views
  • 2 replies
  • 0 Likes

commit issues

Anyone else getting: Error: Error reading tom datafailed to handle CONFIG_UPDATE_START(Module: device)Commit failed Issue been logged with Palo for a month now and still not solved I was running 8.0.3 when it happen and rolled back to 8.0.1 and still have the issue

Verify CA root certificate

Hi, Related to the new Emergency Update Required - PAN-OS Root and Default Certificate Expiration After you do the workaround to renew the certificate. Is there any way to check the new validation date for this internal cetificates to check its now correct? thanks

BigPalo by L4 Transporter
  • 3617 Views
  • 4 replies
  • 0 Likes

Resolved! Difference between Summary database vs Detailed logs on Custom Report

Hi everyone, I have a question about what difference between Summary database vs Detailed logs on Custom Report - When we create a report, if we use the Summary database in many of the conditions that we created, We found that when we press Run Now, the data cannot be displayed. But if we use Detailed Logs, the results can be displayed normall...

HA dedicated port inop

I setup active-passive PA-5410 firewalls (brand new) and I can't get the HA ports to communicate. The secondary has activity lights when I plug into a switch, but the other one is completely death. Is it possible that I received a new PA-5410 with a bad HA port from Palo Alto, or how can I check its status (via browser or CLI)? I configured the ...

possible to know what triggered malicious website classification on my website?

I run a small website (www.milkywayidle.com) which is an online game ran directly in the browser. after a few recent updates around 2-3 weeks ago, I saw noticed that https://urlfiltering.paloaltonetworks.com/query/ classified my website as malicious. I requested reclassify and it quickly classified to "game". However around the same time many us...

DUAL ISP IPSEC TUNNEL ECMP

Hi, FirewallDUAL ISPISP1 ETH1/1 IPSEC TUNNEL 1ISP1 ETH1/2 IPSEC TUNNEL 2 ECMP Method HASH I have ECMP enabled with DUAL ISP with two IPSEC tunnels going to another firewall with one ISP. What I am seeing is sometimes is IPSEC tunnel from Eth1/1 to the other firewall going over Eth1/2. How do I prevent this?Thanks

junior_r by L3 Networker
  • 7013 Views
  • 3 replies
  • 0 Likes

Palo Alto device is wrongly directing the traffic . DUAL ISP IPSEC VPN issue

we have two dynamic ISP in single VR with ECMP and we have setup dual IPSEC VPN tunnels towards single public IP to other paloalto . our issue that PA wrongly forwarding traffic , ISP 2 is using MAC address of ISP1 when initiating VPN traffic to public ip address of second FW. Moreover check the source MAC address ! show interfa...

mhm_ameen_1-1662458236401.png
  • 24376 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks