This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4110 Views
  • 0 replies
  • 0 Likes

URL filtering for a School

I am using a Palo Alto 500 to filter url content on a school network. I have blocked streaming media but some sites like college humor still go through. How can I block all streaming video, also I would love to able to block flash games. I am new at using the Palo Alto so if you have any suggestions on other application to block that would be of...

donaldmc by Not applicable
  • 7391 Views
  • 3 replies
  • 0 Likes

ION2000 controller connection failed "Analytics" not connected

ION2000 controller connection failed "Analytics" not connected Ion# debug controller reachability controllerTPM and tcsd process is running fineMic cert check passedCic cert check passedMic cert verify passedCic cert verify passedCIC cert connection test failedcurl exitCode: 7 How to resolve this

Resolved! vulnerability block action

Hi,when creating a profile choosing block action is seen as "reset-both" on the logs.is that normal behaviour or not ? Thanks.

PanIst by L3 Networker
  • 10338 Views
  • 10 replies
  • 0 Likes

syslog udp session keep alive ?

When forwarding logs, they are being sent to udp 514. The udp time out is 30 seconds, and the syslog server actually receives packets every 5 seconds. However, I wonder why the firewall keeps the session longer than 30 seconds. When the time is long, it is several minutes or hours, and sometimes the date passes.

스크린샷 2022-12-29 오후 2.34.03.png
스크린샷 2022-12-29 오후 2.34.50.png

Resolved! IPSEC Tunnel down on GNS3

Hi- I am trying to implement exactly this article for ipsec - https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClGkCAK However the tunnel is not coming up, I am not sure if its gns issue or my configuration? Wireshark packet drop also attached Please note you are posting a public message where community membe...

Capture.JPG
Capture1.JPG
Capture2.JPG
Capture3.JPG

failing back to primary FW and short loss of ISP connection

Good evening, Tomorrow I'm cutting over a new pair of 3410's. I have 3 LAG connections (AE.1, AE.11, and AE.10). AE.11 is the physical connections to my ISP switch. There are two L3 sub interfaces (VLAN 800 & 801). VLAN 800 = ISP1 and VLAN 801 = ISP2. Both ISP routes are static and have the same metric / AD. I'm using ECMP and it works well ...

problems after RMA of an active-passive pair

just to give a baseline - hardware are pa-5220, running 10.1.6-h6, HA (active/passive), device managed by Panorama. Long story short - one of the firewalls got stuck on a reboot cycle where the firewall would reboot every 85 minutes. The data plane would not come up during this time and support processed a RMA. For the fun part: our initial...

RREALICA by L2 Linker
  • 3037 Views
  • 2 replies
  • 0 Likes

ECMP

Dear Team, Our question is "How can the firewall choose the route without configuring the ECMP" Appreciate your support as mentioned in this documentation https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-networking-admin/ecmp "Without this feature, if there are multiple equal-cost routes to the same destination, the virtual router choo...

Register Used PA-820

I need help. I bought a used PA-820 off eBay. Works great! When I try to set up account on support.paloaltonetworks.com, I enter the serial number and SO. However, each time, the registration fails. I get an error message telling me to try again later. I tried on different computers and browsers on different days. Always the same result. The r...

TheMike by L0 Member
  • 2136 Views
  • 2 replies
  • 0 Likes

traceroute application allows tcp port 80

Hi,Received a call from a client said their external scanner shows their servers behind the firewall allows tcp port 80 connections and able to passive finger those servers, but there is no firewall rule permit tcp port 80 to those servers. Digging it deeper, found one of the rule allows traceroute application with application default which all...

DNS Sinkholing - missing related traffic logs on windows machines

Since we configured dns sinkholing for some stuff like parked, malware domains, we are seeing related threat logs but no associated traffic logs pointing us to the source behind the queries. Recently we tested it on Mac machines and we do see traffic logs to sinkhole IP, but it doesn't seem to be working on the windows hosts. Has anyone exper...

rufat87 by L2 Linker
  • 1655 Views
  • 1 replies
  • 0 Likes

SNMP OID Interface Throughput per Interface

SNMP Nagios OID interface Interface Throughput per Interface Hello good afternoon, first of all thanks for your collaboration. I have a question, can someone tell me, the exact data of the OID or to build the troughput detail, to monitor the "throughput" of each of the interfaces and if you can also get the Global detail of the total through...

Metgatz by L4 Transporter
  • 4353 Views
  • 1 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks