This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4105 Views
  • 0 replies
  • 0 Likes

About Category

Hello I have a palo alto firewall at my work and i manage to block all sites and allow some , but some of allowed sites in the blocked category that came from palo alto .. my question is there any way to edit there pre installed category to remove some site from it ? Thank you

syslog send rate

Working with two PA-5260 to forward syslog to a remote servers on different networks. Set with default max logging rate is 50k. For PA-A log-receiver stats show log incoming and written rates around 2k and under External Forwarding stats the syslog send rate(last 1 min) is 100. For PA-B log-receiver stats show log incoming and written rates ...

ACW606 by L0 Member
  • 2108 Views
  • 2 replies
  • 0 Likes

Palo Alto 440 not booting. PWR led is Amber.

After making some modifications in the DHCP and doing a commit the FW got stuck, I tried to do a hard reboot without success, also when starting by console cable does not allow me to log in. The led of power sources 1 and 2 are green when connected and turned on, but the PWR led on the front panel appears amber, as if it was doing a reboot all t...

EDL access using sharepoint as source

Hello guys, I'm having a problem when using our SharePoint (https) as a source URL of my EDL. I cannot access it even if I tried adding a certificate profile and client authentication. But when using another source URL, I can manage to access the same EDL.I did follow this video tutorial from youtube: https://www.youtube.com/watch?v=Vpy677VOV20S...

RVizcarra by L4 Transporter
  • 4539 Views
  • 4 replies
  • 0 Likes

Resolved! EDL - How to find out if its updated automatically

Hi, We are using predefined EDL Palo Alto Networks - Known malicious IP address in deny rules . I would like to know how we can check if this EDL is updated and when was the last time it was updated successfully etc. Thanks.

Ismailsh by L1 Bithead
  • 5949 Views
  • 1 replies
  • 0 Likes

split tunnel issue

These two snapshots are from two different VMs, which have installed GlobalProtect VPN. However, I saw different log messages printed out (check the marked part). I am just wondering why bindEntry is different on them? Thanks

xingyun_0-1693228603537.png
xingyun_1-1693228649083.png
xingyun by L0 Member
  • 1235 Views
  • 2 replies
  • 0 Likes

OSPF stuck in EX-START after PAN-OS upgrade

We ran into a situation where the OSPF was stuck into EX-START after upgrading the PAN_OS software from 9.1.10 to 9.1.16 (Preferred release). We have a deny-all rule above the Intrazone-default allow, but it was working fine previously. We checked that MTU was not an issue. We understand from this article - OSPF Neighborship Stuck in Extstart St...

Resolved! Threat Intelligence shows malicious traffic coming from Palo Alto subnets

Hello All, Recently, we started seeing threat events from different Palo Alto IPs (example subnet 198.235.x.x). When we check them in AbuseIPDB, they show up as 100% malicious: https://www.abuseipdb.com/check/198.235.24.146 Microsoft TI also categorizes them as malicious, but not the PA FWs. Does anyone know what these subnets are used for or ...

Non-RFC Compliant DNS Traffic on Port 53/5353

HI, Continuously receiving vulnerability threat events (Non-RFC Compliant DNS Traffic on Port 53/5353(56538)) form the same source IP towards our PA public IP addresses. The source is also clean and belongs to Vodafone ISP. I could not find any other trace to resolve the issue. Please assist how I can proceed to resolve it. What action I ...

The 2034-24 Cyber Elite Program Is Here!

LIVEcommunity is pleased to announce the 2023-24 Cyber Elite Program! Cyber Elite members are LIVEcommunity super-users and cybersecurity experts who are generous in sharing their insights and expertise to help others in LIVEcommunity. Want to know how to tell who is a Cyber Elite expert? Look for the Cyber Elite trophy icon next to a user...

jforsythe_0-1692904865177.png
jforsythe by Community Team Member
  • 1968 Views
  • 1 replies
  • 3 Likes

SSL Decryption Certificate Self-Signed vs Public Trusted CA

Hi, I searched and read a lot about it, but the more I read the more I get confused. I would appreciate, if someone explain me the difference between self-signed and public trusted certificates for SSL Decryption. As I understand, I need to import it into endpoints machines anyway to make decryption work. Then what is the point of public trust...

Shahlar by L1 Bithead
  • 22514 Views
  • 12 replies
  • 0 Likes

Resolved! Panorama vm running slower and slower until stuck

Hi The issue on panorama is there for long time. Anyone can help to resolve it? When panorama vm is created on eve-ng on ESXi, its speed is very slow and even stop or stuck there. I found the slowness is related with memory and storage size available. because i can see the panorama vm storage utilization become more and more until the storage is...

kevinospf_0-1693017474861.png
kevinospf by L3 Networker
  • 3217 Views
  • 2 replies
  • 0 Likes

How to know the process in a Firewall that generate Traffic

I have seen unusual traffic in the Firewall. A lot of sessions are generated from an interface (inside) to the IP Address 5.5.5.5 to the outside interface. I would like to know what process or the reason to the Firewall generated this traffic. I check the NAT Route and I don't have to configure something like that. I am a little bit worr...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks