General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 193 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 875 Views
  • 0 replies
  • 0 Likes

SCEP for firewall device cert?

We do not currently have SCEP set up in our environment nor are we familiar with it. But if we did have it set up would our PA firewalls be able to request a cert that we could then use in a SSL/TLS service profile to have a secure connection between

...

Claw4609 by Cyber Elite
  • 1880 Views
  • 1 replies
  • 0 Likes

Resolved! URL Blank in Traffic Logs

The traffic logs for our PAs almost never actually show a URL, despite the URL category getting properly assigned. The only time I ever see a URL show up in the logs is if it is specifically denied because of the URL category, which is fairly rare. I

...

Resolved! Accessing A New Palo Alto Firewall In The GCP

Experts.,

 

We have a virtual Palo Alto firewall (BYOL) in the GCP and were able to change password using the initial access and the ppk file.

We provisioned one more VM firewall in same GCP setup, however this time we are unable to recreate the steps w

...

kgsd2019 by L1 Bithead
  • 6325 Views
  • 7 replies
  • 0 Likes

Resolved! About User-ID Agent

Hello,

 

I've been practicing Palo Alto lately, I'm having trouble setting up "User-ID Agent"...
This is my simple structure :

I set up "AD server" and "User-ID Agent" on the same Winserver

I also added Win10 to domain, and gave it an account (michae

...

young19918_1-1681749791819.png
young19918_2-1681750176934.png

Connect same VLAN to multiple V-SYS

Hi All,

 

We have a PA-5220 firewall cluster which has running multiple V-SYS itself. The firewall is connected to the up stream router thru a port channel. On the up-stream router VLAN 10 is allocated to the WAN-IP range. I need to extend that VLAN

...

PBF not working with DNAT policy for server

Dear Team,

 

We have 5 ISPs and we have configured PBF for a group of IPs/networks.

 

We observed while routing the server from X ISP to Y ISP, the server which is published on X ISP becomes inaccessible.

 

Request you please help to resolve the issu

...

VINAYAKJ by L0 Member
  • 878 Views
  • 1 replies
  • 0 Likes

Resolved! USER-ID mapping by firewall

Hi All,

 

Consider there is an user (xyz@example.com) is accessing some network for which communication is allowed in firewall based on USER-ID rules.

 

If the User(xyz@example.com) at the same times access the allowed sites by using two different IP

...

Sujanya by L3 Networker
  • 1330 Views
  • 1 replies
  • 0 Likes

SNMP Counter issue

Hello everyone

I am having a problem with SNMP requests on my palo-alto.

My issue is the following

I don't see any traffic on the physical interfaces of the palo alto, the traffic remains at 0

I can clearly see the traffic on the virtual interface (V

...

LCutman by L1 Bithead
  • 1030 Views
  • 1 replies
  • 0 Likes

Panorama config export fail. Host key verification fails

When I try and configure a scheduled config export the connection fails.  I get a message the RSA host key differs and asked to confirm adding the key.  This is a loop and always asks to add the key.  If I try to remove all the known host keys the co

...

Rawilson by L0 Member
  • 1968 Views
  • 1 replies
  • 1 Likes

comments in cli

Hi

 

I have a text file with PANOS command line arguments (set) what character defines a comment line ?

 

is there one ?

Alex_Samad by L4 Transporter
  • 13152 Views
  • 11 replies
  • 1 Likes

Resolved! PA is connected to a router

Hi PA(non-management interface) is connected to a router via a cable .  What is minimus condition for the two device to ping each other?

1. ip address in interface are in same subnet,

2.  interface associated with management profile to allow ping 

3.

...

Resolved! CLI configuration of adding interface to virtual router

Hi,

When add a interface into virtual router using cli, do I need to copied all the interfaces in the virtual router currently, then add this new interface into the list? 

For example, current default virtual router has two interface ethernet1/1 and

...

nowayout by L1 Bithead
  • 3325 Views
  • 2 replies
  • 0 Likes

Encrypted-DNS False Positive Heads Up

Presently 20230406.20033 and earlier updates are presenting a large number of false positive categorizations for encrypted-dns. This includes several domains from Bitwarden, YouTube, Google, Microsoft, Spotify, and many many others. If you have encry

...

BPry by Cyber Elite
  • 3816 Views
  • 6 replies
  • 3 Likes
  • 24009 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Posts
Top Liked Authors
Labels