General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 415 Views
  • 0 replies
  • 2 Likes

Resolved! LACP interface ethernet1/24 moved out of AE-group ae1

Hi Guys,

We are getting "LACP interface ethernet1/24 moved out of AE-group ae1" through syslog (emailed) multiple times in a day on PA 3410 running on PAN OS 10.2.3 in HA active/passive. The switch in use is Aruba 8320

Interesting the same msg is rec

...

paragkarki143_0-1673237010186.png
paragkarki143_0-1673328417388.png
Pras by L4 Transporter
  • 11078 Views
  • 9 replies
  • 0 Likes

Resolved! Palo Alto Layer 2 bridging

Any idea on when or if PAN is going to produce the functionality to do layer 2 bridging (example, traffic on vlan 300 would be directed to vlan 3000...etc? Right now the function only seems to be possible when in conjunction with a physical interface

...

Resolved! Palo Alto BGP routes from Azure

Palo 5220 running at the edge, using VPN tunnel to Azure virtual WAN running eBGP. Palo iBGP peered to switches, switches peered eBGP to Azure Express Route. My issue is VPN route is always installed in route table rather than express route, I assume

...

Enable DNS Cloud Security

Dear All,

 

I generated  BPA Report for Panos 10.2.3  but I need to know how to enable it DNS Cloud Security ?

 

Best Practice Checks 
DNS Cloud Security (Fail)
Configure DNS cloud security and set the action to Sinkhole and packet capture to a si
...

Resolved! New Panorama deployment - templates question

We have a new Panorama deployment.  We are deploying the first pair of PA440 HA pair.  The question I have is around templates and template stacks.  Do we create individual template-stack for each and every site that we will deploy Palo Alto firewall

...

ismailsh by L1 Bithead
  • 1409 Views
  • 1 replies
  • 0 Likes

Resolved! Virtual router not getting attached

2 Azure VMs managed from same panorama template. Adding a loopback interface and IP but virtual router getting attached to only in 1 VM. They are not in HA and are separate firewalls.

 

It won't even let delete it on this firewall. getting message be

...

image.png
raji_toor by L4 Transporter
  • 1581 Views
  • 1 replies
  • 0 Likes

Newbie looking for some guidance

Hello everyone.  I am new to Palo Alto firewalls.  We have bought many new PA-440's and I am having trouble with my very first installation.

 

I have a site that is currently using a TP-Link AX1500 router.

Very simple setup.... ISPmodem----WANportOfA

...

Resolved! System logs view option missing

Hi,

We have recently upgraded all our PA firewalls from 4.1.7 to 4.1.9. I no more see the system logs option. It used to be available earlier. I see the recent system logs on the Dashboard. How do I see system logs?

Sly_Cooper by L4 Transporter
  • 11177 Views
  • 10 replies
  • 0 Likes

Resolved! Auto Commit Fails and prevents 10.2.0 Installation on ESXI 6.5

Hi Guys,

Auto Commit Fails and prevents 10.2.0 Installation (upgrade from 10.1.x) on ESXI 6.5 on Active-Active FW where as the peer (on Active-Passive) had no issue.

My question is, as per https://docs.paloaltonetworks.com/compatibility-matrix/vm-ser

...

Pras by L4 Transporter
  • 1719 Views
  • 2 replies
  • 0 Likes

Resolved! QoS cleartext match issue

We have setup similar to as below

 

I created/applied default QoS profiles on AE1 and AE5. However in order to be more granular I want to apply on individual subnets.

As in this example we want to use separate QoS profile for 10.129.0.0/16 subnet for

...

image.png
image.png
raji_toor by L4 Transporter
  • 1911 Views
  • 2 replies
  • 0 Likes

Resolved! Automate adding certificate to TS agent

Hello, I am trying to automate the configuration of the certificate part of the ts agent . My problem is to automate adding the certificate private key password in the ts agent.

I have the certificate part filled in with registry keys but i have thi

...

CHARRIER by L2 Linker
  • 2296 Views
  • 4 replies
  • 0 Likes
  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels