This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4120 Views
  • 0 replies
  • 0 Likes

Log forwarding profile for Correlated Events?

Hello all, It appears that we have had at least a single correlated event in the past seven days, but did not recieve any alert related (via any configured log forwarding profile). It appears the each match that was correlated did perform a log action, but the actual correlated event did not. How do I attach a log forwarding action for Correlate...

GlobalProtect: Port 4501 UDP

Hi all, I understand that GlobalProtect uses TCP 443 and UDP 4501... But what is there any more information available about GlobalProtects usage of port 4501? All I could find is the following: TCP/443 for the SSL communication UDP/4501 for tunnel communication to the GlobalProtect Gateway It doesn't really include much about it.. any ins...

mmclimans by L3 Networker
  • 48709 Views
  • 3 replies
  • 0 Likes

Resolved! Clarification on Web-browsing App

I just need to clarify whether if allowing Web-browsing on a policy would be enough to allow both http(80) and https(443) traffic, ( i.e I don't need to allow both web-browsing and ssl) as it has port 443 as secure port. Thanks

Web-browsing app.PNG
SDon by L0 Member
  • 5472 Views
  • 2 replies
  • 0 Likes

Unable to download new firmware for Lab PA-220

Hello, We are using a PA-220 on version 9.0, its unlicensed, had a real issue getting a new license because the PA-220 was previously purchased off Ebay so we use it now for basic configs now. How do i get the newest firmware for this? I went under devices and then software and hot check now but its not getting me a newer version, I'm stil...

OID of throughput value of each interface

I've seen several posts that asking the same question, but none of them have provided substantial suggestion. Many replies just suggest to use existing templates of Cacti or Zabbix. What if I'm not using those 2 monitoring tools?PA has published an OID list on https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClaSCASHowev...

jeremylo by L3 Networker
  • 8266 Views
  • 5 replies
  • 0 Likes

SNMP OID for session throughput

Hello does anyone know if there is an OID for the session throughput (show session info > throughput)?I would like to monitor that on my firewalls without offloading to get an idea of their load with respect to the max throughput from the tech specs Best regards

SQL and Terminal Services agent

Hi all,I'm seeing some odd behaviour with apps that use SQL where the app is on a terminal server. The terminal server has an app installed and works perfectly when the PAN TS agent is not running. When the agent is started, the application throws up lots of connection errors.This happens with multiple terminal servers, multiple app and multiple...

UKRB by L3 Networker
  • 7736 Views
  • 8 replies
  • 0 Likes

SSH traffic on one policy appears to be denied by a policy that is currently disabled. How is that even possible?

I created a policy (number 21) that allows several types of traffic outbound (ssh, https, tcp 8989, tcp 61000 - 65535, and UDP 1024-65535). All traffic seems to be passing except SSH, which is being blocked by policy number 25, which is supposed to be disabled. During troubleshooting, it looked like policy 25 was responsible for denying my SSH...

pehlmanj by L1 Bithead
  • 1807 Views
  • 4 replies
  • 0 Likes

How to download Panorama vm file

Hello. I want to download Panorama Base image. I go to support.paloaltonetworks.com->Updates->Software Updates but there are no Panorama Base Images. Why can't I find it at this address? Please help me. How do I download Panorama's legal .ova file from where? Thanks in advance

Fagani by L2 Linker
  • 1724 Views
  • 2 replies
  • 0 Likes

TCP SYN with data attack block by the firewall but increase the latency of data traffic

Hi Support, We recently notice have latency in our network , when we investigate found a lot threat logs from TCP SYN with data has been block by firewall as we have DDOS protection. My question is below: 1. does this attack affect the performance of the firewall resources? 2. Do we have a setting that can drop the threat without consume th...

Palo Alto Decryption "Out of firewall resources: memory"

Hello, Wondering if anyone has encountered the error on the subject line under Decryption logs? We seem to be experiencing an "outage" with outbound traffic (Web pages don't load, slow internet, etc) here are some recent changes: We migrate over from PA3220 to PA3420s We migrate from PA3220 10.1.x to 10.2.4-h3 on the PA3420s Both firewalls...

Source User missing users unless DC is rebooted--User Mapping

Hi all, I am having an issue that users are no longer communicating their IP and converting them into agent-ID's so they no longer get the correct web-filter rules. Currently nothing is now showing up in the "Source user" column but If the Domain Controller is rebooted, it works for a bit, then looses communication/or connection that is requir...

Winkmac by L0 Member
  • 853 Views
  • 1 replies
  • 0 Likes

PAN DB CLOUD DISCONNECTED | Cloud is not ready, there was no update from the cloud

Hi guys, Seeing an error message show up in the System logs: "Cloud is not ready, There was no update from the cloud in the last 630 minutes. 04/18 09:49:25" I have connectivity to updates.paloaltonetworks.com, as the Palo is able to retrieve licenses and any updates, such as dynamic updates, and I am able to 'Check now' in the Software up...

Live Community Access Denied

Hey all, When i attempt to access this link regarding a cert expiration, i get Access Denied; https://live.paloaltonetworks.com/t5/customer-advisories/emergency-update-required-pan-os-root-and-default-certificate/ta-p/564672

  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks