This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4104 Views
  • 0 replies
  • 0 Likes

Static route path monitor for dual IPSec tunnels not recovering

We have two ISP's and created redundant IPSec tunnels to our datacenter (one per ISP). We followed this doc on how to setup tunnel failover even though it did not mention that the tunnel IP's needed to be added to allowed tunnel traffic via tunnel Proxy ID setting: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000POO0CA...

Issue with QRadar API 19.0 - Unable to Retrieve Event Data

I'm using QRadar API version 19.0 to fetch event data from our QRadar instance. I'm making GET requests to the appropriate endpoint, providing the necessary parameters like time range and filters. However, the responses I'm getting seem to be empty, even though I'm certain that there are matching events in the specified time frame. Has anyone el...

Panorama 10.1.5-h2 - Adding a PA-220 and serial number already in use?

Adding new firewall PA-220 to Panorama >Managed Devices> Summary. Every time I try to add serieal number it fails to import <serial> already in use.I close the error and search for the serial number in managed devices and it can't be found. I also tried to search using the IP address and it doesn't see it either.Global search on <...

Whatsapp traffic not recognize by palo alto firewall

Hi, In one of the Palo alto firewall Whatsapp traffic is detected as “unknown-tcp” for destination port 5222. Only mobile phone users Whatsapp traffic is detected as “unknown-tcp” & Whatsapp web traffic is allowed for destination port 443 & 80. On the other PA firewall Whatsapp traffic is detected as “whatsapp-base” for destination port ...

Swapping HA connections from Dedicated HA ports to data ports

I have a pair of 3200 firewalls in HA Active/Passive, connected via the dedicated HA1-A / HA1-B copper ports. I need to swap these over to use a pair of fibre ports on the data plane, configured as HA ports. The fibre data ports are pre-cabled together in readiness. In terms of steps to implement this, I was thinking ; 1) Configure data ...

Cortex XDR New Broker VM query

We have received mail from Palo Alto. This mail informs about the new broker VM deployment, which does not update the old broker VM. Therefore, it is mandatory to apply this process ? Dear Valued Customer, We are happy to announce that we have released a new image for the Broker VM. The new image is available to download from your Cor...

Resolved! Not showing interfaces in service route configuration

I'm using PAN-OS 11.0.2-h1 (on GCP) and I am not able to change the service route configuration for different services, when I choose a service i see only one choice: Any I tried to do this via CLI but same result. If i selected interface= Any and Address of the ethernet interface i get server address error. admin@PA-VM# set deviceconfig sy...

Add Palo alto VM into Panorama

Hi, Looks like palo alto VM has no serial number. so this palo alto can be added into Panorama in home lab? Do we have to use serial number to add PA into Panoram? Why it dont use ip address for this purpose?

kevinospf_0-1692132102980.png
kevinospf by L3 Networker
  • 2620 Views
  • 5 replies
  • 0 Likes

Resolved! External DHCP Server Configuration

I am running a Microsoft DHCP server on my domain and this is serving IP's over my Paloalto LAN interface 3 so my DHCP server and LAN are on the same interface.I am trying to migrate my DHCP server on a separate port and in this case ethernet 8.I made all the neccessary Policy configuration so my migrated DHCP server and my clients on LAN had no...

mstf_ymn by L0 Member
  • 4329 Views
  • 2 replies
  • 0 Likes

New created Local admin fail

I have issue when create local admin password, it is not working. It show below error “2023-08-07 09:55:43.566 +0700 debug: pan_auth_request_process(pan_auth_state_engine.c:3612): Receive request: msg type PAN_AUTH_REQ_GET_PW_CHANGE_REQUIRED, conv id 310, body length 642023-08-07 09:55:43.566 +0700 debug: pan_db_funcs_request_process(pan_auth_...

Resolved! WinRM-HTTP Connection Refused

Hello, I'm using agentless user-id with a Windows Server 2012 AD through WMI, we recently updated the server, and it started throwing Authentication Error 10036 flooding our Windows logs. We've searched and troubleshooted the problem for a long time and nothing worked, the only workaround that we think might work is to change the authentication ...

echahine by L2 Linker
  • 30236 Views
  • 8 replies
  • 0 Likes

DHCP issue

We are currently experiencing an issue with our network setup that involves the DHCP server, Palo Alto firewall, core switch, and access switches. Our DHCP server is connected to the Palo Alto firewall, followed by our core switch and access switches. The problem arises with VLAN-503, where the gateway is located in the firewall. However, in the...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks