This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4117 Views
  • 0 replies
  • 0 Likes

Error Handling in Custom Playbooks

Hello all, To handle with different types of playbooks and tasks, is there any implementation method or best practice guide to identify errors in playbooks. If a task or subplaybook stucks in main playbook I want to get informed about it and handle with it. If you have any sort of guide or advice I am open to hear it. Best regards

UmutAK by L1 Bithead
  • 1602 Views
  • 1 replies
  • 0 Likes

Nuevas ISO 27001, 27005 y 27005

Como las nuevas versiones de las los estándares ISO 27000 se integran en la realidad de la seguridad de la información, y como se llevaría mejor su implementación? #ISO27000 #ISO27001 #ISO27002 #ISO27005

Resolved! DNS security question

I have a question about DNS security and what exactly it does. For example, if I configure all DNS security domains to "sinkhole" but we already have our URL filtering profile blocking all of these domains already is configuring DNS security redundant?

Claw4609 by L5 Sessionator
  • 3356 Views
  • 4 replies
  • 0 Likes

Resolved! Help with DNS?

Hello Live Community. I am in a bind. I have all of our clients on networks using DHCP from our Palo Alto and pointing to Googles servers for DNS. Very quick and slick. unfortunately I need all computers, tablets, phones, etc... to see a server inside our Palo Alto. Is there any way to do this without compromising the DNS settings, or speed? ...

JCMoritz by L0 Member
  • 2290 Views
  • 3 replies
  • 0 Likes

Block SSH traffic

We are using PA 5250 firewalls. We are not using decryption on it. Now, we want to filter the ssh traffic satisfying all these 2 conditions: C1) Allow access to *.mywebsite.com for ssh traffic AND allow file download upload C2) Allow access to abc.xzy.zom and jkl.efg.com for ssh traffic AND NOT allow file transfers Because we are not using...

PAFWNoob by L1 Bithead
  • 2407 Views
  • 1 replies
  • 0 Likes

description update in security rules via Panorama CLI

Hi Team, i was trying to update description on existing multiple security rules via Panorama cli. but found that if i add description via cli it just simply replace the whole existing description. So, is there any way to add/update the description without removing the existing description on rules. Thanks Virender Singh

vsingh31 by L1 Bithead
  • 1832 Views
  • 1 replies
  • 0 Likes

Error while committing changes

Hi Team, Getting the below error while committing the changes. I read an article where it says it might be due to memory issue so rebooted the device and checked but still the same issue. Could you please suggest as soon as possible. DLP Configuration not found DLP Configuration populate successfully Error: Error preparing global objects failed ...

Resolved! Cannot login to GUI after pa-vm deployment

I deployed a pa-vm image 10.2.1, set the management IP from the CLI. When I try logging in with the GUI, I put in my credentials and then get the following error "Your login session has expired and you have been logged out for security reasons. Please log in again if you wish to continue." I'm able to SSH into the cli. Things I've tried: 1. rebo...

L3Svc process stopping automatically on PA-3020 firewall

Hi Folks, We are facing issue with the captive portal and had seen that the l3svc processor is not running. We had tried to restart the l3svc process and the mgmt plane process but no luck. our firewall was previously running on PAN-OS 9.1.13h3 and we had downgraded to 9.1.10 and checked but no luck. We had rebooted the firewall again also. Chec...

Resolved! Jobs flooding commit queue.

For the last week or so we have been having issues with download jobs pending and failing in our Panorama. The issue is that there are 2500+ jobs pending on our Panorama and this seems to pop-up at any given time. TAC, to this point, has had us restart the management process, suspend that Panorama and fail over to the other... Until this happens...

Increasing log disk size on Panorama VM

I have Panorama 10.1 running as a VM on ESX. System disk is 224gb and log disk 500gb. I have shut down the VM and moved the log disk to a larger store (2000mb). VCentre now shows the disk as 2TB. However when i boot Panorama it still sees /dev/sdb1 as 500gb. What Panorama commands would i have to run to make it see and use the actual capacity?...

Globalprotect Connection two Browser Tabs

Hi There, we are using 10.1.5-h2 and Globalprotect 6.0.1 VPN. Our Users logging in via SAML and it works very good. The only thing which is annoying is that during the connection two similar Browser Tabs are Opening. After that, the Connection is established. Is there a way to reduce the tabs to one? We are using a Active Directory local Group a...

best way to add folders to malware whitelist

having read the document "Add a New Malware Security Profile", I am not clear as to best and properly entering a path to a folder properly. this is a paragraph pulled out of the of the webpage. +Add a file or folder.Enter the path and press Enter or click the check mark when done. You can also use a wildcard to match files and folders conta...

jeperjes_0-1666877018593.png
jeperjes by L1 Bithead
  • 4449 Views
  • 3 replies
  • 0 Likes

GlobalProtect SCEP NDES Dynamic Challenge Failure

Hi, I have been attempting to get GlobalProtect configured with SCEP for many days without success. The issue I am facing occurs when I have the SCEP Challenge set to "Dynamic" under "Certificate Management" (on the firewall), which is what I am wanting. But when using the dynamic challenge, the GP clients fail to retrieve a SCEP certificate. ...

cwilson by L0 Member
  • 10237 Views
  • 3 replies
  • 1 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks