This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 195 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 878 Views
  • 0 replies
  • 0 Likes

Ikev2 site to site VPN between Arista ETM and Palo Alto

Hello Mams and Sirs,

 

I need your advice here.

 

I have configured an ikev2 policy based site to site VPN between our Palo Alto and client Arista ETM. I manage the Palo Alto.

 

The status of the VPN shows up. But, communication between the subnets(l

...

msdphi by L1 Bithead
  • 551 Views
  • 4 replies
  • 0 Likes

Unable to download updates

When I download the Palo Alto upgrade software(11.1.4-h1),the following error message is displayed:

"Failed to download due to Empty file returned by update server."

I have click “check now” and Synchronize to the peer

 

Disable TLS 1.0 and 1.1 and also weak cipher

How to disable TLS version 1.0 and 1.1, also to disable weak cipher for WildFire

 

Configure Authentication with Custom Certificates on the WildFire Appliance

 

I went through this KB it shows how to disable the 1.0 and 1.1 but how to disable weak ci

...

Resolved! Recommended PAN-OS version

Hi community

 

Today I was informed by @pshanubhog that there now is an article available in the live community about the recommended/preferred software versions by PaloAlto Networks support. The article contains the preferred versions by support for P

...

Remo by L7 Applicator
  • 563876 Views
  • 15 replies
  • 17 Likes

In Wildfire how do we disable weak TLS ciphers?

Nessus scanning is picking up TCP/443 TLS v1.0 and v1.1 on our WildFire (WF-500) appliances.

 

Is there a way to turn off TLS v1.0 and v1.1 on the WildFire ?

 

Below is the Nessus scanner notification.

-------------------------------------------------

...

Resolved! Request for Upgrade Advice on Palo Alto Firewall PA-1410

Dear Palo alto network Team,
I hope this message finds you well.
We are currently running a Palo Alto Firewall PA-1410 with software version 11.2.3 and are planning to upgrade to a newer version. After checking the available software versions, we have

...

Software list.PNG
Ploalto_Version.png

preferred PAN-OS software versions table

HI, dear PaloAlto team,

 

Why has the preferred PAN-OS software version table been changed? The previous view was much better, because it allowed to select the preferred software version and schedule changes....
Now there is only one preferred version

...

Resolved! Geo Location A1 disapeared

We've been using source region A1 (anonymous IPs) as source in a block rule for over an year. Today, while validating an unrelated change, we came across a validation error stating "Source 'A1' is not an allowed keyword."

Panorala and Firewalls are a

...

Dynamic ports to Static

Hi Team,

 

I'm trying to configure the Dynamic ports (49152-655355) to static 37001 . We have destined server which is sending dynamic ports to establish the link and data exchange.

what is best option to have this hardening.?

Resolved! Error during Commit operation

Hello,

 

if you encounter this while performing a commit:

Error: Certificate 'XXX' failed to load: parse tbs certificate dn failed
Error preparing global objects
failed to handle CONFIG_UPDATE_START

 try these commands in the CLI:

debug dataplane reset...

Resolved! WEBUI Session Timing Out

Hello,

On my PA-820 I started getting the idle timeout message below:

"Your login session has expired and you have been logged out for security reasons. Please log in again if you wish to continue."

Normally this was never an issue and I simply logge

...

RH747 by L2 Linker
  • 10505 Views
  • 19 replies
  • 0 Likes

Resolved! Palo Alto Software Visio files

Hi all,

 

I am looking for the Visio stencils for PAN Azure deployments. There was one floating around that contained all the Azure deployments etc which was really useful. I think it was for Cyberforce members only but I can't seem to find it.

 

htt

...

  • 24011 Posts
  • 115 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks