General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 868 Views
  • 1 replies
  • 8 Likes

Resolved! S2S VPN between PA-3020 and Cisco ASA 5525

Hi All,

 

1st Post so hopefully i'm doing this correctly.

 

I am trying to setup a VPN tunnel to a 3rd Party. We have a PA-3020 and they have a Cisco ASA. They do have another Cisco in-between both our devices which is performing NAT. Hence we have enabl

...

CPS doesn't work

Documentation says we should measure CPS for creating baseline. I have done this for last 20 days collecting CLI output every 3 seconds and have Panorama data to back it up. Below is last 7 days data, CPS never peaked beyond 20K and on average is bel

...

image.png
raji_toor by L4 Transporter
  • 2859 Views
  • 5 replies
  • 0 Likes

Resolved! Scripting offline updates.

I would REALLY like to find a way to automate offline dynamic updates.  I’ve been trying to script the process with a bat file and plink.  I can get it to login with SSH but nothing after that.   I found a post, link below, on here from about 5 years

...

Bad_Goat by L1 Bithead
  • 3684 Views
  • 7 replies
  • 0 Likes

ha2 keep alive

Hi,

I am getting the below message  ,there is no specific interval (around  30 min) 

it  countinously happens from three days .

What is the action need to be taken 

 

HA Group 1: Local HA2 keep-alive up
04/15 14:57:47

HA Group 1: All HA2 keep-alives are dow

...

simsim by L4 Transporter
  • 11111 Views
  • 16 replies
  • 0 Likes

Resolved! PAN-OS for the PA3020

Hi All,

 

We have a range of PAN models and try to upgrade them all to 10.0.7 but find out the PAN 3020 does not have 10.0.7 available yet.

Either in CSP web site or software update on the firewall.

 

Do i miss a step somewhere ?

Please help.

Thanks

LeQ

Qui by L1 Bithead
  • 3289 Views
  • 4 replies
  • 0 Likes

Suspicious TLS Evasion Found(14978)

Dear Team,

 

I have configured the web service behind PA. and attached the security profile . i can see in the thread logs the thread is generating "Suspicious TLS Evasion Found(14978)".

i have gone through the below KB but didn't understand

 

https://kno

...

Jafar_Hussain_0-1631539667011.png

RDP with another account deleting the local mapping

Hi,

 

We use GP to connect to our company. So when i open a RDP to internal server using administrator user, my local mapping change also to administrator. We are using agentless for userid. 

 

What option do we have in order to keep the local mapping? i

...

BigPalo by L4 Transporter
  • 1353 Views
  • 1 replies
  • 0 Likes

WildFire EU connection timeouts

Some of the customers are experiencing following errors with PAN devices (updates OS 8.x) that use WildFire EU (about 5-10 per day at random times):

 

Event: 'wildfire-conn-failed'

Severity: 'medium'

Description: 'Failed to perform task multiple times re

...

VVlada by L0 Member
  • 7145 Views
  • 6 replies
  • 0 Likes

IP for Cluster HA Active Pasive

Hello,

We have a 3200 series HA cluster active/passive version 9.1.10.

The requirement is to access through a single ip always to the active node.

That is, I have an IP for the active node and another for the passive node but I want to configure a singl

...

Alpalo by L3 Networker
  • 1752 Views
  • 2 replies
  • 0 Likes

GOOGLE MAPS WHILE BLOCKING OTHER GOOGLE SERVICES

Does anyone have any ideas on how to permit access to Google Maps but block access to all other Google services? I have tried using a rule matching the Google-Maps application however it requires google-base which allows many other Google services. I

...

j.moore by L2 Linker
  • 7024 Views
  • 12 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors