General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 776 Views
  • 0 replies
  • 0 Likes

SSL Inbound decryption -Decryption error

One of my application is not  decrypted i have applied SSL inbound decryption policy  and got decryption-error.

On other hand another application with same intermediate certificate  having decrypted. As same intermediate only  child certificate is cha

...

Untitled.png

Stale SIP Sessions

Hello all,

 

We seem to have an issue with sip sessions being stuck in the session monitor for weeks and sometimes months.  There have been instances, albeit extremely rare, where it prevented new sessions from being formed on a sip trunk we were testi

...

stalesessions.png
stalesessionssip.png
ClintL by L2 Linker
  • 10344 Views
  • 4 replies
  • 0 Likes

Resolved! HA Failover Hold Timers?

Hi folks,

 

I will be configuing my first Active/Passive HA next weekend on two PA 3020 devices.

 

I am trying to understand the difference between Monitor Hold Time for HA1 link and Monitor Fail Hold Down Time for the Active/Passive settings.

 

Could anyo

...

HAtimer1.jpg
HAtimer2.jpg
OMatlock by L4 Transporter
  • 10267 Views
  • 4 replies
  • 1 Likes

Premium support contracts

I would like to open a case to verify our current support contracts. I need to know about premium supports if still covered for Hardware replacement and software maintenance? Here is my support account ID 23384

 

Thanks,

jgascon by L0 Member
  • 1108 Views
  • 1 replies
  • 0 Likes

Resolved! Device registration auth key is required for on-boarding firewall running PAN-OS 10.1 and above. All firewalls running PAN-OS 10.0 and lower do not re

Device registration auth key is required for on-boarding firewall running PAN-OS 10.1 and above. All firewalls running PAN-OS 10.0 and lower do not require or support device registration auth key. You can use the button below to create OR copy the de

...

ZhouYu by L2 Linker
  • 4111 Views
  • 1 replies
  • 0 Likes

SSO with macOS devices

Can anyone tell me if there is a supported method or a known workflow to have Global Protect automatically sign in sign in to the current user account with locally domain bound macOS devices? Similar to the way we are able to do this with Windows PC'

...

Connect automatically to Global Protect using OKTA cred

Hi,

Thought it might be worth asking here, maybe you can help me 

We're using Prisma Access and the Global Protect client to log in to VPN. We're also using OKTA to authenticate.

 

Is there any way to somehow automate the login to the client, and ma

...

nivhovav by L0 Member
  • 2172 Views
  • 2 replies
  • 0 Likes

Downgraded software

I downgraded 5220 from 10.1 to 9.1.14h4 and once rebooted fan wont stop starting and stopping. Also can’t commit says communication error happened during configuration to dataplane

mlindsey by L0 Member
  • 1522 Views
  • 2 replies
  • 0 Likes

The Cortex UX Research Lab Is Seeking Participants!

 

Hello LIVEcommunity!

 

 

The Cortex team is currently developing a significant UX research effort, the Cortex UX Research Lab, for all aspects of Cortex. As a part of that, we need you — the user — to help us best understand how people use our pro

...

Screen Shot 2023-01-17 at 9.59.01 AM.png
JayGolf by Community Team Member
  • 2346 Views
  • 2 replies
  • 1 Likes

Pre Logon then On Demand

Hi All,

 

I have a question regarding Pre-Logon and then on demand.

 

A client has reported they have setup pre-logon tunnel rename timeout to 90 secs. After the client logs in, the GP client goes into a disconnecting state and never times out. Client ha

...

Ben-Price by L4 Transporter
  • 4397 Views
  • 5 replies
  • 0 Likes

Resolved! Secuity Profile Question

I would like to test the virus file through the PA firewall.

 

But PA firewall is no configure any security profile.

 

May I know is it defected by Palo Alto? Such as found by threat log?

WingMak by L1 Bithead
  • 2384 Views
  • 5 replies
  • 0 Likes

Syslog within a Multiple Vsys environment

Hi All,

 

I have a pair of 5220's, running version 10.0.7 and we are running multiple vsys's on it.

 

We need to set up syslog on one particular vsys to send log data to a service within that environment.

 

I have configured this but the syslog data seems

...

a.jones by L3 Networker
  • 2900 Views
  • 2 replies
  • 1 Likes

PAN-OS dark mode

Hi guys, I work a lot at night and all portals and tools, from Azure Portal, Office 365 Admin Portal, Slack and even Gmail have a Dark Mode, and it really makes the experience a lot better for your eyes. I use dark mode for everything, but spending l

...

  • 23985 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Authors
Labels