This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4223 Views
  • 0 replies
  • 0 Likes

SNMP OID for session throughput

Hello does anyone know if there is an OID for the session throughput (show session info > throughput)?I would like to monitor that on my firewalls without offloading to get an idea of their load with respect to the max throughput from the tech specs Best regards

SQL and Terminal Services agent

Hi all,I'm seeing some odd behaviour with apps that use SQL where the app is on a terminal server. The terminal server has an app installed and works perfectly when the PAN TS agent is not running. When the agent is started, the application throws up lots of connection errors.This happens with multiple terminal servers, multiple app and multiple...

UKRB by L3 Networker
  • 7844 Views
  • 8 replies
  • 0 Likes

SSH traffic on one policy appears to be denied by a policy that is currently disabled. How is that even possible?

I created a policy (number 21) that allows several types of traffic outbound (ssh, https, tcp 8989, tcp 61000 - 65535, and UDP 1024-65535). All traffic seems to be passing except SSH, which is being blocked by policy number 25, which is supposed to be disabled. During troubleshooting, it looked like policy 25 was responsible for denying my SSH...

pehlmanj by L1 Bithead
  • 1850 Views
  • 4 replies
  • 0 Likes

How to download Panorama vm file

Hello. I want to download Panorama Base image. I go to support.paloaltonetworks.com->Updates->Software Updates but there are no Panorama Base Images. Why can't I find it at this address? Please help me. How do I download Panorama's legal .ova file from where? Thanks in advance

Fagani by L2 Linker
  • 1780 Views
  • 2 replies
  • 0 Likes

TCP SYN with data attack block by the firewall but increase the latency of data traffic

Hi Support, We recently notice have latency in our network , when we investigate found a lot threat logs from TCP SYN with data has been block by firewall as we have DDOS protection. My question is below: 1. does this attack affect the performance of the firewall resources? 2. Do we have a setting that can drop the threat without consume th...

Palo Alto Decryption "Out of firewall resources: memory"

Hello, Wondering if anyone has encountered the error on the subject line under Decryption logs? We seem to be experiencing an "outage" with outbound traffic (Web pages don't load, slow internet, etc) here are some recent changes: We migrate over from PA3220 to PA3420s We migrate from PA3220 10.1.x to 10.2.4-h3 on the PA3420s Both firewalls...

Source User missing users unless DC is rebooted--User Mapping

Hi all, I am having an issue that users are no longer communicating their IP and converting them into agent-ID's so they no longer get the correct web-filter rules. Currently nothing is now showing up in the "Source user" column but If the Domain Controller is rebooted, it works for a bit, then looses communication/or connection that is requir...

Winkmac by L0 Member
  • 872 Views
  • 1 replies
  • 0 Likes

PAN DB CLOUD DISCONNECTED | Cloud is not ready, there was no update from the cloud

Hi guys, Seeing an error message show up in the System logs: "Cloud is not ready, There was no update from the cloud in the last 630 minutes. 04/18 09:49:25" I have connectivity to updates.paloaltonetworks.com, as the Palo is able to retrieve licenses and any updates, such as dynamic updates, and I am able to 'Check now' in the Software up...

Live Community Access Denied

Hey all, When i attempt to access this link regarding a cert expiration, i get Access Denied; https://live.paloaltonetworks.com/t5/customer-advisories/emergency-update-required-pan-os-root-and-default-certificate/ta-p/564672

Dataplane is down: path monitoring failed.

One of our passvie firewalls encountered the problem "Dataplane is down: path monitoring failed". The reason may be that we replaced the fan. At present, I found the following link to the official documentation of Palo Alto. Because we have no plans to upgrade for the time being, can anyone tell me in what state my device is restarted in the thi...

BuzzLin2 by L0 Member
  • 5364 Views
  • 1 replies
  • 0 Likes

prisma free trail using AWS PAYG

Hi Team, I have subscribed to prisma cloud PAYG 15 days free trail in AWS. I exceeded 15 days today. I don't want to continue using it and get charged. How do I unsubscribe it?

csekhar by L0 Member
  • 1179 Views
  • 1 replies
  • 0 Likes

API set up with global protect and infoblox

Hello Community, I hope i am in the right place to ask this question. I am working on building an API set up that will pull Global protect user information such as hostname, IP, etc... That data will then be fed into infoblox as our central dns source. Our previous rep had suggested: You can use two API requests to view and then disconnect a Gl...

ADefeo by L0 Member
  • 1246 Views
  • 1 replies
  • 0 Likes

Authentication Fallback

Hello,So, we currently authenticate administrators to our PA's via Radius (TACACS). Is there a way to configure the PA's that it will only use the local DB / Administrators if Radius isn't available? Thanks!

mrsold by Not applicable
  • 12911 Views
  • 10 replies
  • 0 Likes

Rule hit count or unused rule in custom reports or CLI

There are no fields related to rule hit count or any way to identify unused rules in Panorama custom reports. Is there a way to get a consolidated view of unused rules across all device groups at once and not just through the policy page per device group?

x2aembre by L0 Member
  • 2024 Views
  • 2 replies
  • 0 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks