This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4116 Views
  • 0 replies
  • 0 Likes

Resolved! HSBI and HA

Folks, I would like understand the difference between HSBI and HA1, HA1B, HA2, HA2B As per my understanding HA1 for control & HA1B for backup link HA2 for data & HA2B for backup link control carries heartbeats and communication Dara traffic carries Ip table, arp table, session table? Is that correct? For state full session sync up ...

Resolved! Panorama SDWAN commit "Failed plugin validation"

I've gone through the full beacon modules and went through instructions here on how to setup SDWAN in my lab (so I think I'm configuring it correctly): https://docs.paloaltonetworks.com/sd-wan/2-2/sd-wan-admin/configure-sd-wan When I get to the part where I add SDWAN devices I get the error at the bottom. I am at a loss, I've tried too many di...

Will-78 by L1 Bithead
  • 5880 Views
  • 1 replies
  • 0 Likes

Resolved! Commit failed - failed to send phase 1 to client logrcvr

Hello,Since this morning I'm not able to commit any change from my panorama to my firewallsHere is the message error that I receive:Details:. Management server failed to send phase 1 to client logrcvr. Management server failed to send phase 1 abort to client logrcvr. Commit failedI tried some debug command like "debug software restart log-receiv...

baloise by Not applicable
  • 18112 Views
  • 9 replies
  • 0 Likes

Failing to download GlobalProtect Client

I can run Dynamic Updates, but am unable to perform a GP download. "Getting Failed to download due to server error. Please try again later."This is for a passive node in an HA setup. It is a new PAN and this is keeping me from having it go live. Is there a way to download the GP package from the running PAN and upload it to the passive one?PA...

Global protect Always On - External connections

Global protect Always On - External connections Hello LIVE community! I hope you are well. I have had to configure Global Protect on several occasions but I have a question that I am being asked in this case: Is it possible in S.O windows to use the Always On, filtering that only connects to GP when it detects the connection i...

Metgatz by L4 Transporter
  • 3279 Views
  • 4 replies
  • 0 Likes

Resolved! Blocking Google Drive

Hey guys,I'm trying to block Google Drive. I've tried a variety of things: URL Filtering for online-storage (which works for Dropbox, icloud etc). But Google Drive still works...I researched and found quite a few forum posts on the topic and see that decryption is most likely required in order to see the traffic in order to block it. Is there a ...

Public Web Server, Secondary IP Address, and Loopback Interface

We have a VM-100 running 9.0.3.xfr to do some testing. This is currently setup on AWS, and we are trying to support traffic for multiple public web server's being sent through the firewall. There are the three standard zones and network interfaces (Untrusted, Trusted, and Management). The Untrusted has a public IP (Elastic IP) and internal su...

cdpeek by L0 Member
  • 6191 Views
  • 2 replies
  • 0 Likes

Can't See Firewalls when scheduling a config push in Panorama

Hello all, I can't see any firewalls or device groups to choose from when setting up a scheduled config push in Panorama. I have attached a screenshot and also a screenshot of my device groups! Yes I know the screenshot is of templates, they are both empty! Very odd - Thanks - Geoff

GWynn_0-1702604784755.png
GWynn_1-1702604807524.png
GWynn by L3 Networker
  • 2705 Views
  • 3 replies
  • 0 Likes

CSP Groups and Roles Assignment question

We have two account numbers. For some reason, AIOps wouldn't activate in the "old" account number where all my firewalls are. Cortex XDR is on the other "newer" account number. The SE suggested we move everything from the old to the new account number. Problem is, we have different teams and need to limite some asset access. So, according to...

mtafur_0-1704511524725.png
mtafur by L1 Bithead
  • 2260 Views
  • 3 replies
  • 0 Likes

User ID Agent all DCs in connecting (Access is denied) status after migrating from Win 2012 to Win 2019 Server

Hi all We have installed 10.2 version of UIA in new win 2019 server as our 2012 server would be shutdown soon. The problem is after configuring all the required permissions the agent status overall is connected, but on all our ADs listed in UIA, the status is stuck at connecting and after sometimes we get Access is Denied status as well. The s...

JamshedDayar_1-1704692360221.png

Resolved! How to compare configuration btw PA firewall.

Dear Team, I recently backed up and restored the configuration of the existing Palo Alto firewall to a new model. My question is: how do I compare the configuration on a new firewall and my existing device, or does PA have any useful tools for the comparison? Thanks!

Resolved! No AV updates, 'Virus updates are available but you must first update threat content'

New 1410 appliance running v11.0 -> 11.0.2-h2. Fully licensed, latest content update installed yet no AV updates are available and the following message appears in system logs (in both .0 and h2): Retrieving Content 'Antivirus' info failed with error 'Virus updates are available but you must first update threat content'. We suspect this w...

mb_equate_0-1704874707896.png
mb_equate_1-1704874792720.png
mb_equate_2-1704874854746.png
mb_equate by L3 Networker
  • 7086 Views
  • 1 replies
  • 0 Likes

Resolved! PA-440 with partial working GUI (PAN-OS 11.1

Hey all, I've got 2 PA-440s at a customer in an Active-Passive HA Cluster. These firewalls have replaced the older PA-220s that were previously present. Traffic and everything flows as intended and all of the firewall rules are also working as intended. The issue that I'm running into is that part of the GUI works. The first 3 tabs (Dashboar...

Resolved! HIP Objects - matching multiple OS versions in one object

Hi All, Within PAN-OS (10.1.x) Using GP, I want to setup one HIP object to match for multiple OS versions for instance Windows 10 and upwards. But does not seem to be doable instead i can only select each version within a specific OS range. I want to avoid having to create an object for each version of Windows10 and 11 and wondering if there is ...

PA_nts by L4 Transporter
  • 4771 Views
  • 3 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks