This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Software upgrades hotfixes

1) I am planning to upgrade to 11.0.1 but I also see a 11.0.1-h2 - which one should I upgrade to (I'm on currently on 10.2.3) ? 2) On the support pages under software updates I'm filtered on 'PAN-OS for VM-Series'. Will this give me correct installation files for AWS EC2 ?

daz12 by L1 Bithead
  • 2894 Views
  • 3 replies
  • 0 Likes

Best way to aggregate multiple internet lines

I have 5 internet lines in my company, and currently I am aggregating them using the Firewall, using ECMP technique. the 5 internet lines have a different bandwidth (different speeds). the weighted round robing seems be the best way to go as I have an internet lines with different speed and I want to assign more traffic to the higher bandwidt...

Vencola by L0 Member
  • 2067 Views
  • 1 replies
  • 0 Likes

show system logdb-quota missing globalprotect stats

I wanted to use the "show system logdb-quota" CLI command on our Panorama VM to determine the retention days for GlobalProtect and it appears to be missing in this command. Is there another that can give you the number of days properly? I only get system, config, hip-reports and appstat returned when I issue that command. I seem to be running...

files are occupying under traps.

files are occupying under traps. [root@xyz opt]# du -sh * |grep G5.9G traps[root@xyz opt]# pwd/opt[root@xyz opt]# cd traps[root@xyz traps]# du -sh * |grep G4.7G ecl[root@xyz traps]# du -sh * |grep M80M bin479M download25M glibc67M lib11M lib3216M local_analysis256M ltee23M persist74M python230M shared_packages[root@xyz traps]# pwd/opt/traps[root...

Resolved! Migration from HA pair PA-3220 running PanOS 9.1.16 to HA pair of PA-1420 running 11.0.2

Hello, as the Subject' saying, i'm facing this issue - what is the recommended procedure? While I'm considering upgrading my 3220 pair to 10.1.10 prior to migration (I'm not that keen to go all the way to 10.2.4) and i'd prefer to avoid the upgrade process entirely if possible - so the Subject still stands. As it is now, my setup is running 5...

Manu_P by L2 Linker
  • 3337 Views
  • 2 replies
  • 0 Likes

HTTP/1.1 404 object not found

Hi Team, HTTP/1.1 404 object not found We are seeing this error when the traffic is passing through the Palo. When we bypass palo it works absolutely fine. May i know what could be causing this? Regards, Sanjay S

How to export the certificate

Hello, I am trying to export a self-sign certificate via CLI as I am getting an error related to the certificate. to give you the background, I am trying to access a remote firewall (PA) via GP whihc terminates on the local PA. when I do that I come across "Certificate Error There is an issue with the SSL certificate of the server you are trying...

Shadow by L2 Linker
  • 3716 Views
  • 2 replies
  • 0 Likes

"Failed to upload image. Device not connected." updating dedicated logger content.

I have dedicated loggers running 10.1.5 and need to upgrade them to 10.1.10. Before I do that, I need to update the content versions. However, when I try to install via dynamic updates from the Panorama to the Log Collectors, I get the subject error. ms.log 2023-07-22 11:20:18.745 +0000 Error: pan_evtmgr_client_check_action(evtmgr_client_actio...

PA-220 OID CPU Data Plane Usage

I´m working with PRTG to monitor our network devices specially Firewalls, for PA-220 I want to monitor and set notifications for the Data Plane CPU usage I can get the OID for the CPU usage, but it´s not the same as the one I want. Does someone know about this? Thanks.

Resolved! Microsoft updates getting blocked by Firewall

I have follow below link to allow these URL in my security policy but today I perform Windows update still very slow and from the log I still able to see some aged-out in my log for update. Any configuration change can help me to solve this issue ? https://docs.microsoft.com/en-us/windows-server/administration/windows-server-update-services/depl...

JiaXiang by L4 Transporter
  • 22108 Views
  • 8 replies
  • 1 Likes

Resolved! Device on L2 interface trying to reach L3 interface on same subnet

Are you able to have a device connected on a layer 2 interface be able to reach a layer 3 gateway on the same subnet? We are able to get this working with a vlan interface when its on a different subnet. Scenario: Sub interface ethernet1/1.100 with IP address 10.10.100.1/24 and tag 100 Ethernet 1/2: Layer 2 interface Device with IP address 10....

Claw4609_0-1689782300039.png
Claw4609 by L5 Sessionator
  • 2270 Views
  • 4 replies
  • 0 Likes

Migration from Checkpoint R81.10 to PaloAlto

Hi Team, We need to migrate a cluster Checkpoint firewall to PaloAlto. We do not have any Zones configured in Checkpoint, but Palo should have Zones as it is zone based firewalls. May i know what is the best way to migrate? Any KB or guide that can give detailed info on migration from Checkpoint to Palo? Regards, Sanjay S

Ignite On Tour Stockholm, Sept 19th 2023

Wish to participate as an interested cyber security network technician but in private. How to do? Reason is that I am still on aprroval my new work and do not want to affect my approval. Best regards, Erik

Using Loopback interfaces for a site-to-site IPSEC VPN

Does anybody have experience configuring site-to-site IPSEC VPNs using loopback interfaces instead of phsical ones? If you are going to respond with a sassy comment (e.g. Why are you doing that? or That's dumb!) then please don't respond. I have a specific need. I have the VPN setup. I can send traffic to the remote end, but it appears that...

merrick by L1 Bithead
  • 31143 Views
  • 13 replies
  • 1 Likes
  • 24381 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks