This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4223 Views
  • 0 replies
  • 0 Likes

Resolved! PCI Compliance - Weak SSL/TLS Key Exchange - 443 / tcp over ssl

We have been having the same issue with PCI compliance scans with two different companies. After scanning, they come back with the following error: Weak SSL/TLS Key Exchange ------------------------------------------------------------------------- Change the SSL/TLS server configuration to only allow strong key exchanges. Key exchanges should pr...

jwise by L0 Member
  • 5350 Views
  • 1 replies
  • 0 Likes

Resolved! bulk URL category check in Pano 10.2

Greetings Palo-Altonians, Is there an upgraded version of the below command or API test url www.paloaltonetworks.com or an API that is compatible with #Panorama Version 10.2 Thanks for any help that you folks can provide. Cheers, ~Uri

UriPerez by L0 Member
  • 2839 Views
  • 2 replies
  • 0 Likes

HA and LSVPN in 10.1

Back in 9.x we feel like the HA peers had no trouble passing LSVPN from active to passive when an HA failover event occurred. Now in 10.1 we're seeing about half of our sites fail to bring up the tunnels when HA moves from active to passive. I've been unable to find clear documentation on what to expect in an HA event as far as LSVPN is concerne...

Global Protect - "A valid client certificate is required for authentication" but works correctly for X days after PA restart

Hi all, Just putting this out there to see if anybody else has had similar issues. If you have, I would really appreciate you letting me know please! Palo Alto PA-820 - HA (active/passive) - PanOS 9.1.5 For several months we have had intermittent problems with Global Protect rejecting client certificates when our users try to connect to o...

DavePalo by L4 Transporter
  • 16232 Views
  • 2 replies
  • 0 Likes

Palo Alto PA5220 is not login after password complexity changes

We changed the password complexity and history settings on our firewall a couple of days ago.After committing the changes the local users are not able to login on the firewall.So we tried to boot into maintenance mode by connecting through a console cable in order to roll back to a older running config.This did not do anything though, because th...

MacBook Air M1 connection problem

After my computer upgraded to VENTURA 13, I cannot connect remotely. It constantly says "STİLL WORKING". There is no lock status in the privacy and security settings, as in previous versions. This is hindering my work. You are welcome please help.

Arda14 by L0 Member
  • 1482 Views
  • 1 replies
  • 0 Likes

IKE protocol notification message received: INVALID-SPI (11).

Dears, I have a site to site VPN between PAN 7.1.6 and Cisco ASA 8.2.5, I'm receiving a lot of Invalid SPI error. I tried to reset the VPN many times and still having the same issue. This issue by the way is casusing a lot of packet dropes in the VPN 'IKE protocol notification message received: INVALID-SPI (11).' Did any one faced a similer iss...

Ammar by L2 Linker
  • 39040 Views
  • 17 replies
  • 2 Likes

RMA

Hi I can see that mi shipping information in my case 02366569 for the RMA, the web didn´t save well the shipping information, I wrote a post on the case, with the address correct, Do you know if it is enough or I must do something more?, please. Thanks in advance.

GlobalProtect client behind a proxy, configuration help

I am trying to establish an ssl vpn connection using the globalprotect client, but the client is behind a proxy using a configuration script. I have tried calling paloalto support but they said their client is not proxy aware. Does anyone know of some things I could try to get the globalprotect ssl vpn client to work from behind a proxy?

bigtone by L1 Bithead
  • 22384 Views
  • 6 replies
  • 0 Likes

SYSTEM ALERT : high : Machine Learning engine for PE stopped, please update your content

Dear all, since a couple of hours I'm getting the following alerts every 5 minutes: SYSTEM ALERT : high : Machine Learning engine for PE stopped, please update your content I checked via CLI and I have the latest content installed. Just in case tried to go back one version but that didn't help Downloaded latest version again and installed it. ...

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks