This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4353 Views
  • 0 replies
  • 0 Likes

PA-3020 AutoCommit fails - commit force fails

Hey all!I have a problem with my second passive PA-3020. (7.1.7)We had a loss of power so the firewall was shutdown hard.When it's booting now, the autocommit fails.When I do a commit force, it says: "Threat database handler failed".Then I stumbled over this link: https://live.paloaltonetworks.com/t5/Featured-Articles/Threat-Database-Handler-Com...

MPI-AE by L4 Transporter
  • 24071 Views
  • 11 replies
  • 0 Likes

VPN Traffic to Internet

Hi Team, We have a requirement. Our PA Firewall has internet connectivity and VPN set to one of the peer end Forcepoint device. VPN is up and running. Traffic from Forcepoint LAN to MPLS connected to PA is all working over the VPN. Now the requirement is ANY traffic from Forcepoint site will reach PA firewall for both its internet and MPLS acces...

NTP Best practices

Hello, I have a PA firewall without panorama, at present I have public ntp servers in sync with pool.ntp.org which are default from PA. Is this good to use public NTP server or local NTP server ? Please let me know the best practices on this.

High Availability on ESXi for Panorama VM

Hi, we will deploy panorama VM on esxi server, but only bought 1 panorama license. So our users want to use high availability from the hypervisor Esxi. Im not familiar with esxi/vsphere. The question is, if we trigger high avilability from Esxi/vsphere, is the UUID and CPUID will change? Is any out there have deploy the panorama with th...

dns-signature cloud service connection refused.

Greetings:I am seeing in the System Log the following message "dns-signature cloud service connection refused" Checking the traffic logs the management IP address is not being blocked. Where do I look to resolve this error message? Thank you.

Resolved! Rename Device Group via CLI

Hello, As part of a large migration process we're maximizing the use of CLI to create configuration within NW, FW, HA dedicated templates, + template stacks + device groups. One area that I'm having difficulty with is the renaming of existing device-groups (containing existing member devices) via CLI. I'm aware of commands such as 'set device-gr...

Session Expire Time one month

The session expiration time is more than a month apart. I'm using the 10.1.8 version and my search says it's a firmware bug. However, the same symptoms appear in version 10.2.1. Is there a solution in relation to it?

qmso475_0-1694656400580.png
qmso475 by L3 Networker
  • 2866 Views
  • 2 replies
  • 0 Likes

Commit Error

Hello. After adding the allowed IP band, I pressed Save, but it is failing.

qmso475_0-1694679455987.png
qmso475_1-1694679479302.png
qmso475_2-1694679505579.png
qmso475 by L3 Networker
  • 932 Views
  • 1 replies
  • 0 Likes

URL Logging - only custom allowed domains are showing up

Hi there, I'm trying to get URL logging to work. At first: I don't have the advanced url filtering license, maybe that's why.... I have got a custom url category with some domains which I want to allow, those urls in this list are logged fine. Everything else should be blocked and logged but for those situations the logging doesn't show ...

url-list.png
Netzer by L3 Networker
  • 2116 Views
  • 3 replies
  • 0 Likes

Resolved! Global Protect message is CN name mismatch.

Hello everyone.Global Protect message is "The certificate CN name mismatch, The certificate is not issued to x.x.x.x" when I connect GP.I configure to import certificate that issurer is Go Daddy Secure CA.Why does CN name mismatch???

How to configure VPN and Certificates to cut VPN access when the Certificate is revoked.

Hello team, I need to know How to configure VPN and Certificates to cut VPN access when the Certificate is revoked. I have revoked a certificate into the Firewall but I can connect anyway from VPN.... I am using on my GlobalProtect connection and the connections are working fine, I need to cut this connection when the certificate is revoked,...

Alpalo by L4 Transporter
  • 1609 Views
  • 1 replies
  • 0 Likes

Resolved! Reports

Hi everybody. When I got the report from palo alto the following problem occurs ( b' ' ). This report is in PDF format and cannot be edited. There was an extract of the report before, but there was no such problem. b'Risk' b'Application' b'App Category' b'App Sub Category' b'App Technology' b'Sessions' b'Bytesb'windows-...

Fagani by L2 Linker
  • 1498 Views
  • 1 replies
  • 0 Likes

Session count can't break 1025

Hi all, I am running a VM-series on aws and it has a issue with session, it's cannot break 1025. I'm new to Palo Alto so there are many term i really don't understand. Some body please tell me what is Active Session? Is it Session count on UI? Why can't it break 1025?

ahcogn1_0-1689301370235.png
ahcogn1 by L0 Member
  • 3524 Views
  • 5 replies
  • 0 Likes
  • 24365 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks