This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4115 Views
  • 0 replies
  • 0 Likes

Global Protect Azure SAML authentication

PAN OS 8.1.6 currentlyGP Client 4.1.13-2 and 5.0.7-2 (testing) Attempting to use Azure SAML authenticationwent through standard procedures..import fed metadata xml from azure.validate IDP cert unchecked.Azure cert imports automatically and is valid.auth profile with saml created (no message signing) when Browsing to GP portal URL, redirection ...

Global Protect Connection Issues

Since upgrading to Pan OS 11.0.2 - been having issues connecting. Seems to be a cookie issue where cookies are not be regenerated after expiration. - I will see cookiie expired in the Palo monitor. If you wait 5 minutes and try again - you normally get in - but not always. Did not have this problem on version 10.0.x, 10.1.x, 10.2.x... Only whe...

Rollback Multi Virtual System Capability tick box on the Firewall.

Hi team, Can you help me with an issue that has occurred. We were on the process of adding an extra vsys on our firewall when we realized that this model of firewall requires a license for it to be activated. Since there was no license, we have reversed all the changes except the Multi Virtual System Capability tick box on the firewall. ...

Resolved! user-id-agent unexpected here

Hello, i just update pan os from 9.1.6 to 10. And on one of the firewall i get error:..........Validation Error:user-id-agent unexpected herevsys is invalid[edit] Could you please advice were can be the problem.Thank you!

stef by L2 Linker
  • 11050 Views
  • 5 replies
  • 0 Likes

Resolved! PA SUPPORT - OR THERE LACK OF - Changing the SNM on an interface

I would like to state that I tried 6x to create a support ticket - was redirected to LIVE Community EVERY TIME - when I called for support was told I needed to open a case online – which I was NOT able to. I need assistance changing the subnet mask on an ISP interface. Then I attempt to validate the changes – it fails because of dependencies....

Resolved! PBF for incoming traffic

Hello everyone, I've a setup on a PA-820 cluster with 3 ISP connections. Every connection has its own zone (for clarity WAN-1, WAN-2 and WAN-3) and the default route in the virtual router is for WAN-2. I need to publish some services from my DMZ subnet on the WAN-1 but if I try to configure the nat and security policy i can't see any sort of tra...

vulnerability block-ip inoperative

I put anti-spyware vulnerability protection critical, high The action is set to block-ip 1800 From the threat log, we can see that spware is effective, but vulnerability is not effective, it is drop, not block-ip I also checked flahs like client to server I'm not sure if this is a bug

Palo Alto Firewall Lab

Hello I just finished a Palo Alto Firewall course and I want to practice what I learned. I have a PA firewall as a virtual machine. Where can I find some free practice labs with questions and objectives, for hands-on work? And what software do I need to use? Such as GNS3... Thank you

Device Telemetry to Cortex Data Lake

Hello, just finished to setup Cortex Data Lake on my PA-220 (without Panorama, using the Hub). After enabling Telemetry (as asked by 10.0.1) and setting up the Telemetry Region as my Cortex Data Lake region (Europe) the status for Device, Product and Threat is always "Failed" with message "CDL Receiver Destination URL Empty". On "device...

Schermata 2020-09-29 alle 22.37.32.png
duccio by L0 Member
  • 16416 Views
  • 7 replies
  • 1 Likes

DNS Server Profile on a vsys

I set up an additional vsys for a different network with it's own DNS servers, which send the integrated user-id to the relevant domain controllers. A DNS Server Profile and proxy have been setup in the additional vsys. But the user-id DNS requests are still routing to the DNS route in the Global settings. Is there something I'm missing in the c...

s0lselcia by L4 Transporter
  • 1736 Views
  • 2 replies
  • 0 Likes

Resolved! error message after Panorama boot

Hi Anyone can help to take a look at the below error message after Panorama started to boot? Thanks [<ffffffff8114bb1d>] ext3_writeback_writepage+0xc4/0x159[<ffffffff810b80bd>] __writepage+0xe/0x26[<ffffffff810b8561>] write_cache_pages+0x25d/0x36a[<ffffffff810b80af>] ? mapping_tagged+0xf/0xf[<ffffffff810b86a7>] ...

kevinospf by L3 Networker
  • 1510 Views
  • 1 replies
  • 0 Likes

Application and Threat update failing

hi, I am trying to update my content (Application and Threat) under Dynamic update, however it is continuosly failing with the below error,Enqueued Dequeued ID Type Status Result Completed------------------------------------------------------------------------------------------------------------------------------2019/02/07 19:43:17 19:43:17 1256...

  • 24335 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks