This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4111 Views
  • 0 replies
  • 0 Likes

PA-HDF login: on a PA200

I am new to PA and bought a device and configured it but forgotten my password. i went to maint mode and did factory reset to restart my config again my device entered PA-HDF login: i tried admin/admin and getting incorrect password any advise how to overcome this i also run disk test and of which all results attached Thanks

Dalton by L0 Member
  • 3920 Views
  • 1 replies
  • 0 Likes

The FQDN issue could not be refreshed.

Hello all,We were using two FQDNs that get the same IP from 9.1.14 version.And I recently deleted one FQDN. Then there was an issue where FQDN was applied intermittently.In addition, the GUI confirmed that Refresh was applied through Commit, but it was not applied when forced to try Refresh from the CLI. 2022-10-13 10:54:18.062 +0900 Error: pan...

Resolved! Break up Active/Passive HA Cluster

Hello, we have a PA-3020 Active/Passive HA Cluster. Because of cost cutting I have to break up our cluster and just use one of the firewalls as standalone. The thing is, the license of the passive firewall will last longer than the one from the active. The goal is to use the passive firewall as standalone and to factory reset the active so i...

Veentjer by L0 Member
  • 7536 Views
  • 5 replies
  • 0 Likes

Resolved! Advanced URL Filtering Eval expired - URL filter stops (persistent)

HiI did an self requested Eval of Advanced URL Filtering on a PA-220@10.1.xWhen the trial expires, the URL filter (or its license) is broken. Even if there is a legacy URL Filter license available. XX@pan> show running url-licenseURL license expired License entry:Feature: Advanced URL FilteringDescription: Palo Alto Networks Advanced URL Lice...

fbpan_0-1627059282377.png
fb-pan by L2 Linker
  • 7432 Views
  • 6 replies
  • 0 Likes

FTP Inbound Decrypt Issues

Ok, I'm at my wit's end with TAC.. after 7 months of explaining the issues, collecting logs, and then starting over when a new agent takes the case, I'm hoping the community can help me. I've had inbound decryption set up for our FTP server for some time. We noticed an issue after updating to 10.0.8 (we're now on 10.1.5-h1 ) where people seemed...

jsalmans by L4 Transporter
  • 5160 Views
  • 3 replies
  • 0 Likes

Resolved! ECMP Preferred Route

Hi All, Does anyone have the answer as to how the Palo Alto choses the "preferred route" when ECMP is configured? As per the runtime stats, the referred route for all these routes is 172.16.8.226. (* flag) Both routes in each of the three destinations have been forwarded to the FIB as per the "e" flag.

0.png

User-ID, consistent naming

Greetings! Over time we have collected a variety of user naming formats. For example, domain\user, subdomain\user, user, user@domain and so on. Is there a way to make these names consistent, allowing us to use policies for them effectively? Thanks! Robert

cloughr by L2 Linker
  • 3287 Views
  • 2 replies
  • 0 Likes

Unable to connect the VPN ( X-Auth Support) from the Linux machine using third party client

Hi Team, ++ We have upgraded the firmware from PAN-OS 10.0.11 to PAN-OS 10.1.8 after we are facing a VPN disconnected automatically for Linux users. ++ The Linux users used to connect the firewall using the third-party VPN agent. ++ We have checked the X-Auth Support configuration and it's looking good. ++ Performed the VPN connectivity ...

Palo's behaviour as a Route reflector

We have Nexus 9k routers "R1 and R2" connected to a silverpeak device which is learning routes from the remote sites. The R1 and R2 are also connected to a Palo Alto firewall which is acting a Router reflector for R1 and R2. We are doing BGP in this setup. R1 and R2 are distributing the routes(Learnt via the Silverpeak device) to the Palo Firewa...

pahee87 by L0 Member
  • 2160 Views
  • 2 replies
  • 0 Likes

Error should be less than or equal to 2048 characters

Hi everybody We are doing a migration from version 8.1 to 10.2.2h2 and have configured syslog server profiles... We have to customize the format of the logs you have to enter a text, or what happens and that when you enter the text that comes in the reference guide crashes because it exceeds the maximum number of characters, https://docs.p...

Alpalo by L4 Transporter
  • 2857 Views
  • 1 replies
  • 0 Likes

SCP export error PAN-OS 10.2

Hi there! I have PA-VM (PAN-OS 10.2). There is a possibility to export software to scp server in Device - Software menu. I've set scp server: Then I try to export software version to this SCP server: and an error appears Meanwhile I can export or import by scp to this server in CLI. I've exported mgmt-pcap or device-state. However there i...

Mishin_0-1661336109434.png
Mishin_1-1661336311660.png
Mishin_2-1661336369359.png
Mishin by L1 Bithead
  • 3254 Views
  • 1 replies
  • 0 Likes

Resolved! Cannot upgrade Cortex XDR from 7.4 to 7.8.1

Hello. We have an issue removing old and installing latest version of Cortex XDR. Device is not showing in PaloAlto console as well. I have red that someone is trying to cleanup system using xdragentcleaner.exe tool, but where can we get it? Thank you in advance! Please note you are posting a public message where community members and ex...

Shared Content-preview Application

Hi Team, I have a doubt with shared content-preview application may i know what exactly it is. Is it the same as applications which we use in the policies? Why do we see that in the CLI configuration when i collect the output in this format? > set cli config-output-format set> set cli pager off> configure# show If we edit any applicatio...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks