General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 836 Views
  • 1 replies
  • 8 Likes

Resolved! Traffic Thourhg the intended Security Rule

Hello,

 

I have configured a new Security Rule on top (#9 in the picture down) to Block traffic intended to a Custom URL configured in the profile  Block_Files

* TOP RULE *

  • Source Zone:                     any
  • Source Address:              any
  • Destination Z
...

mshamsan by L1 Bithead
  • 2299 Views
  • 3 replies
  • 0 Likes

HA Active/Passive with Preemption

2 firewalls configured with HA active/passive, And enabled preempt on both of firewalls

Everythings find, can synchronize configuration and session

 

firewall-A is active-firewall with priority 100

firewall-B is passive-firewall with priority 120

HA timer

...

IKE SA negotiation is started as initiator, non-rekey

Hello :),

I have a problem with VPN from PA-220 to Azure. The logs show this information : "IKEv2 IKE SA negotiation is started as initiator, non-rekey. Initiated SA " 

Every change I made it always is this same error. Is there any way to resolve this

...

Lukaszm1 by L1 Bithead
  • 16548 Views
  • 9 replies
  • 0 Likes

System Logs

Hi,

 

Do we have any list of critical and high severity system logs? Like what are the examples of hardware failures, serious issues etc...

user-id-agent-sequence is invalid.

Hi Team,

 

I'm seeing configuration invalid when I remove user-id agent from palo alto firewall and not able to commit.

 

PA-220 PANOS version 8.0.3.  Same model firewall I have removed I can able to commit.

 

Only in this firewall, I'm seeing this issue.

 

...

Screenshot (500).png

Total number of profiles

Hi,

 

We have the problem with the total number of security profiles.

As you can see in attached screenshot the maximum number of profiles is 100, for now we have 84, but when I tried to add new one I get the capacity error.

 

Maybe someone had the same p

...

ntadmins by L1 Bithead
  • 3036 Views
  • 7 replies
  • 0 Likes

Resolved! Packet Flow Query - FW Inspection

Hi Everyone,

 

I've been madly studying the Packet Flow Diagram that outlines the different checks/stages that a Packet goes through via a PA FW and I had a question with the 3rd check in the Ingress phase called 'FW Inspection applicable'. If Inspecti

...

User ID and AD

Hi,

I am trying to configure User ID with Active Directory. But stuck with some errors, listed below :

1) Unable to retrieve the Userid IP mapping information from Active Directory (win 2003 Sp2).

2) After installing the User ID Agent and configuring...

...

Top Solution Authors
Top Liked Authors