This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4468 Views
  • 0 replies
  • 0 Likes

Palo Alto Firewall Lab

Hello I just finished a Palo Alto Firewall course and I want to practice what I learned. I have a PA firewall as a virtual machine. Where can I find some free practice labs with questions and objectives, for hands-on work? And what software do I need to use? Such as GNS3... Thank you

Device Telemetry to Cortex Data Lake

Hello, just finished to setup Cortex Data Lake on my PA-220 (without Panorama, using the Hub). After enabling Telemetry (as asked by 10.0.1) and setting up the Telemetry Region as my Cortex Data Lake region (Europe) the status for Device, Product and Threat is always "Failed" with message "CDL Receiver Destination URL Empty". On "device...

Schermata 2020-09-29 alle 22.37.32.png
duccio by L0 Member
  • 16712 Views
  • 7 replies
  • 1 Likes

DNS Server Profile on a vsys

I set up an additional vsys for a different network with it's own DNS servers, which send the integrated user-id to the relevant domain controllers. A DNS Server Profile and proxy have been setup in the additional vsys. But the user-id DNS requests are still routing to the DNS route in the Global settings. Is there something I'm missing in the c...

s0lselcia by L4 Transporter
  • 1841 Views
  • 2 replies
  • 0 Likes

Resolved! error message after Panorama boot

Hi Anyone can help to take a look at the below error message after Panorama started to boot? Thanks [<ffffffff8114bb1d>] ext3_writeback_writepage+0xc4/0x159[<ffffffff810b80bd>] __writepage+0xe/0x26[<ffffffff810b8561>] write_cache_pages+0x25d/0x36a[<ffffffff810b80af>] ? mapping_tagged+0xf/0xf[<ffffffff810b86a7>] ...

kevinospf by L3 Networker
  • 1564 Views
  • 1 replies
  • 0 Likes

Application and Threat update failing

hi, I am trying to update my content (Application and Threat) under Dynamic update, however it is continuosly failing with the below error,Enqueued Dequeued ID Type Status Result Completed------------------------------------------------------------------------------------------------------------------------------2019/02/07 19:43:17 19:43:17 1256...

Resolved! Arp Cache out time- Can be changed need to confirm

I was able to change the default arp cache timeout from 1800 to 3600. as shown below set system setting arp-cache-timeout<value> <60-65535> ARP cache timeout interval, in seconds> set system setting arp-cache-timeout 3600ARP cache timeout:3600mparmar2@BMS> show arp allmaximum of entries supported : 1500default timeout: 3600 se...

MP18 by Cyber Elite
  • 12982 Views
  • 5 replies
  • 0 Likes

Resolved! no internet when connected to vpn

just setup GlobalProtect, when anyone connects to the vpn, they are able to access my company resources (file shares, remote server connections, etc) but they lose their internet connection. i have noticed that we are not getting a gateway assigned once we connect, i feel like that's the issue but i I can't figure out how to resolve this. I j...

branedge by L2 Linker
  • 4385 Views
  • 4 replies
  • 0 Likes

Resolved! Precedence of Routing\NAT\Policy

Dear All, Dear All, I want to know what is correct precedence among Routing\NAT\Security Policy So If a packet hits on the outside zone of the Firewall then whether below process is correct? 1. Whether FW has route for the destination\5.5.5.5 ( If YES) 2. Whether there is any NAT policy (If YES) ( Assume -> After NAT, 5.5.5.5 translate...

Terminal Service Agent on Win2022- TDI filter (\Driver\PANTAD) was detected.

Hello together,we are using TS-Agent for User-ID on our Win 2016 servers.However, we are in process of replacing them with 2022 servers. Now, in our server eventlogs I see the following: "A TDI filter (\Driver\PANTAD) was detected. This filter has not been certified by Microsoft and may cause system instability."I have only found one knowledgbas...

Mr-Rolf by L1 Bithead
  • 3147 Views
  • 2 replies
  • 0 Likes

Migrate from PA-3050 to PA-3410

Hi, I've been tasked with migrating from PA-3050 to PA-3410. The 3050 is on a customers premises running PAN-OS 8.1.11 and the 3410 we have in our lab running 10.2 at the moment. I note I cannot downgrade the 3410 to anywhere near 8.1. Does that mean I will need to upgrade the 3050 to suitable 10.2 version before I can export the config? Can a ...

Resolved! LACP on Passive Palo Alto

I am planning a new site and want to make sure my detailed design will not be a problem. I will have two PA-440s in Active/Passive High Availability mode. These will connect to a stack of Cisco C9300s. I will have an LACP port-channel connecting one port of each Cisco switch (ports g1/0/1 and g2/0/1 in the stack to PAN Eth 1 on act and PAN Eth 2...

setting up an email alert for license renewal in VM-100

How do i set up an email alert for expiring licenses in VM-100. i followed the steps to create an email profile and assigning it under log settings, under system but when i do the test, it always fails with timeout has reached error message. any help would be appreciated

systemd-resolved support for GlobalProtect Linux

My system is using systemd-resolved to manage name resolution.my /etc/resolv.conf is a symlink to /run/systemd/resolve/stub-resolv.conf When I connect to GP, my systemd is not aware that new DNS server and search domains are available. Is there a way to support this ? (like a post connection hook script)(note that /opt/paloaltonetworks/globalpro...

mickael by L0 Member
  • 15076 Views
  • 3 replies
  • 1 Likes
  • 24379 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks