1. Most of the palo alto well known deamons have their own logs that can be reviewed:
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PLUeCAO
2. It is interesting that in the higher end Palo Alto platforms like PA-5000
...
Hi All,
What is the difference between last 24 hours and last calendar day time frame option that is being used in custom report settings.
Also last 24 hours time frame means past 24 hours data will be added to the report the minute report is run.
B
...
Apologies if this is a basic question but first time I do this maybe in a real production environment and I have no prior experience. Does anyone have an example of restoring Palo Alto in AWS (from a snapshot)? Where could things go wrong in the rest
...
Hello :),
I have a problem with VPN from PA-220 to Azure. The logs show this information : "IKEv2 IKE SA negotiation is started as initiator, non-rekey. Initiated SA "
Every change I made it always is this same error. Is there any way to resolve this
...
Hi,
Do we have any list of critical and high severity system logs? Like what are the examples of hardware failures, serious issues etc...
Hi Team,
I'm seeing configuration invalid when I remove user-id agent from palo alto firewall and not able to commit.
PA-220 PANOS version 8.0.3. Same model firewall I have removed I can able to commit.
Only in this firewall, I'm seeing this issue.
...
Hi,
We have the problem with the total number of security profiles.
As you can see in attached screenshot the maximum number of profiles is 100, for now we have 84, but when I tried to add new one I get the capacity error.
Maybe someone had the same p
...
Hi Everyone,
I've been madly studying the Packet Flow Diagram that outlines the different checks/stages that a Packet goes through via a PA FW and I had a question with the 3rd check in the Ingress phase called 'FW Inspection applicable'. If Inspecti
...
Hello, we have an existing opened case PA case (01865541) but having trouble and delays in getting connected with PA engr. Hence, am trying my luck here in Live community.
My customer is preparing to implement the PA External Dynamic List (EDL) IP/
...
Hi,
I am trying to configure User ID with Active Directory. But stuck with some errors, listed below :
1) Unable to retrieve the Userid IP mapping information from Active Directory (win 2003 Sp2).
2) After installing the User ID Agent and configuring...
...
Hello, I have a problem.
I just inherited a palo alto firewall.
I noticed that given a specific certificate and given the global protect client, every user of the ldap server can connect to the vpn.
I would like that only users in specific ldap groups c
...
After the .NET/User ID agent issue last week we upgraded the agents and managed to get our UserID mapping back so our firewall policies would work again.
At this point I have user > IP mapping, all of my agents are connected and my user based firewal
...
I'm wondering if anyone can help. We have global protect setup and i want to use the same IP Pool for pre-logon user's, and once authenticated have that same IP pool used for the user. So when i am setting this up in the client settings area of the G
...
Hello Group,
I have done migration from Cisco ASA Firewalls to Palo Alto Firewalls.
In Cisco ASA Firewalls, I was using multi-context (there were two contexts, Context-A and Context-B). Context A was active on Firewall-1 and Context-B was active on F
...
OtakarKlier
on:
Is PA capable to scan for malware in Activesync/Outlook365 traffic?
BPry
on:
security policy in monitor mode only
BPry
on:
The machine on which Cortex XDR agent is installed is not showing the Windows key (Start Menu) option.
BPry
on:
GP Compatibility on Windows Server
OtakarKlier
on:
Factory Reset
