This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4112 Views
  • 0 replies
  • 0 Likes

Resolved! adding a default route in the CLI

trying to set a default route and getting error message set network virtual-router default routing-table ip static-route default next-hop ip-address 10.1.5.9 any ideas on how to set a default route point to next hop 10.1.5.9? Thanks

cisc_forum_2.png
hfakoor2 by L2 Linker
  • 6436 Views
  • 2 replies
  • 0 Likes

Error message: "Internal error during commit process" on Panorama and PA firewall

Hi there, I am able to add a PA firewall into Panorama (both using PAN OS 10.1.4-h4). I successfully imported device config into Panorama and also pushed "the device config bundle" to firewall. so far all good as commit to Panorama is successful. However push to device failed with error message "Internal error during commit process" on both Pan...

Screen Shot 2023-09-21 at 2.31.52 pm.png
Screen Shot 2023-09-21 at 2.32.14 pm.png

Resolved! Allow wildcard DNS in a Network Address

Hello all, We have setup a Hybrid Connection Wizard between our on-prem Exchange server and Office 365, Microsoft has provided the following link for reference in regards to firewall considerations (https://bit.ly/3dpfiZs) under SMTP port 25 - the documents lists *.mail.protection.outlook.com as a required under ID#10. Can anyone advise on the e...

C4c-1942 by L1 Bithead
  • 47660 Views
  • 10 replies
  • 0 Likes

Incorrect PANORAMA health MonitorStatus

Hi there, Could you help me understanding of my device status correctly : I was looking at my device status in PANORAMA's beautiful featrure called "Deviating devices" list. I couldn't quite understand why it is reporting some of my PA devices as deviating from Baseline though it's not even close to the threshold values. for example it's reporti...

Making a dataplane interface behaves as a management interface

I am finding some way to convert a dataplane interface sends it traffic like a management interface. We created a dedicated interface l3 subninterface for netflow traffic to export. we would like to understand if the traffic from this interface can be routed through management plane? The reason behind the ask is there are two routers in the ...

CLI commands to create a SSH profile, via the CLI?

I'm working on a Python script to change permitted-ip addresses on interfaces, uploading it to my resumé to send out. I'm fairly new to paloalto, however I'm familiar to some extent with firewalls, and familiar with routers/switches. I want to create a ssh profile via the CLI to have Python login and modify interface management profiles and...

hfakoor2 by L2 Linker
  • 3592 Views
  • 1 replies
  • 0 Likes

Resolved! Global Protect ( VPN client ) - does not allow print jobs

Hi everyone, I need some assistance, please, if anyone else has encountered a similar issue before. I have Global Connect installed on our corporate laptops, and it successfully authenticates and provides access to our Intranet, Internet, and printing services without any issues. The problem arises when I am at our vendor's external site. I a...

LIVELIFE by L1 Bithead
  • 7092 Views
  • 4 replies
  • 0 Likes

What is object auth_vpn?

Set up email alert. Login When login fails. A related email has arrived. I looked at the logs, but I can't find auth_vpn. What is object AUTH_VPN?

qmso475_0-1695364928615.png
qmso475_1-1695365018011.png
qmso475 by L3 Networker
  • 1531 Views
  • 3 replies
  • 0 Likes

Resolved! Warning: No Valid DNS Security License

Hi Team, I am using PA-3220 . We have only Thread Prevention & Wildfire License. Before Anti-Spyware -DNS Signature was using DNS-Snikhole. Now we change to block we start getting Warning No Vaild DNS Security License . Do we had to buy a license as it is working?

NavidAlam by L3 Networker
  • 32616 Views
  • 6 replies
  • 1 Likes

Resolved! PaloAlto Wont Login after turning off and on again in EVE-NG environment

Hi, Creating a lab to write some python scripts. I set a new username/pass under superuser, and updated amin/Admin123 all under CLI, committed, and set device ip/mask without a default gateway. Turned the machine off. Turned it back on. None of my usernam/pass works, just gives me "Login incorrect" while attempting to login via the CLI....

hfakoor2 by L2 Linker
  • 3904 Views
  • 2 replies
  • 0 Likes

Downloading software upgrade on very slow link

I have some pa-220's located at remote places connected to slow uplinks. When trying to download upgrade base image 10.0.0 and its latest minor, the connection terminates by tcp-rst-from-client after 1800 seconds. Then the pa-220 starts downloading again, but only to be terminated after 1800 seconds again. show jobs all - shows this fail after 1...

Anbjorn by L1 Bithead
  • 2229 Views
  • 2 replies
  • 0 Likes

Migrate to PA firewall cause WIFI roaming issue

Hi Support,We just recently migrate the PA Firewall from cisco firewall. PA Firewall will act as gateway and provide DHCP.however we counter issue with roaming WIFI where client connected to AP A and change location to AP B without disconnect causing loss internet connection. We don't see any drop at all in firewall logs. so we not sure how to t...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks