General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Firewallupdates via Panorama - huge delay in download and install

Hello,

I'm managing several PA firewalls (10.2.2, 10.2.3, 10.2.4-h2) via Panorama (10.2.4-h2), I noticed a delay in AV, Content and App update deployment, sometimes it's days or even weeks.

For example, the App update is planned to check and inst

...

Firewall processes sometimes are in suspended state

Dear community,

I have observed that processes "log_index" and "stats_gen" appear in "suspended" state sometimes.

We didn´t notice any issue though.

Do you know if that´s a normal behavior?

Kind Regards!

Resolved! ECMP Virtual Router Inquiry

Good day, I have an inquiry regarding virtual router. We are transferring our ISP from vsys2 to vsys1. So, we encountered a message while in the ECMP configuration that requires for the Virtual Router to be restarted. So, here's my questions, what se

...

Problms with VPN Global Protect

Good morning, I currently use a reduced version of Global Protect VPN, every time I start the program it asks me to update, but for company reasons I shouldn't. The version I'm using doesn't have as many menus and there's no part to remove the update

...

Resolved! verify data traffic

I suspect my pair of pa3020s stopped passing data for a couple of minutes. How do i check? They're running panos 9.1.13-h3

MOST COMMON ERROR MESSAGES

In your experience, what are the most common mistakes you have had when implementing Cortex XDR in a company?, enable ports, basic configuration, etc.

Cortex XDR

Resolved! Understanding Static NAT

Hi All,

When it comes to Static NAT it will be one to one NAT in vendors like Checkpoint and Cisco ASA. I am bit confused with the NAT configuration in Palo Alto. Went through config guide and examples of NAT as well but still confused.

We have a sce

...

Resolved! Can log in PAN OS VM

I get this error when i try and log in

OZ3-06-05 06 : 11.0Z5 -0700 Error :
sysd_construct_sync_importer(sysd_sync .c : 360): sysd_sync_register() failed: (111) Unknown

file blocking profile not working for SFTP

Hii

we are trying to access our internal storage using SFTP from internet. after applying file blocking profile we are able to access mentioned files but firewall not restrict the file. we found that file blocking is not happening.

Please advise ho

...

Resolved! unknown command during SSH script

by testing a ssh skript i get an "unknown command" error from the CLI

user@host:~/> cat reset.sh 
ssh -t -t fw.domain.de << EOF
set cli pager off
show user ip-user-mapping all type CP
debug user-id reset captive-portal ip-address 1.2.3.4 
quit
EOF

...

Resolved! Running Security LifeCycle Review SLR for a NGFW

Hi All,

I have access to the PA HUB and want to run a SLR review for a client's NGFW (i have a statsdump file)

however it is asking me to activate this service and requires a cortex data lake instance of which i don't have one, is this still doable?

...

Certificates not appearing in XML running configuration

Dear colleagues,

I am having trouble with the custom Nagios plugin check_paloalto, specifically with the "certificates" check.

The rest of the checks are working fine.

Basically, the "certificates" check leverages the API calls and parse the XML

...

Resolved! Panorama M-100 is not showing in my customer support portal software list.

Hi everyone,

I'm trying to download the software for Panorama M-100 software from the Paloalto customer support portal but it's not in the list.

appreciate if anyone can help me why M-100 is disappear from the software list ? Is base on users Id lev

...

Resolved! Unable to access bing copilot (Bing AI Chat) from Prisma Access Remote Network

Recently Microsoft launched the new AI powered Bing search engine with the integration of chatGPT and Edge browser. There is some issue with the Prisma Access and chatGPT and users are unable to access it from the RN and as well as from the Prisma Ac

...

Resolved! Best practice for Active/Passive HA and OSPF

I configured Active/Passive HA in an environment where the firewalls connect to a core switch. There is an OSPF adjacency exists between the active Palo and the core switch. I'm curious what the best practice is for OSPF and HA. When tweaking the OSP

...

General Topics

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free