General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 422 Views
  • 0 replies
  • 2 Likes

webserver service stopping

webserver service in palo alto stopping after certificate renewal and trying to access GUI. CLI is working. Tried restarting webserver service and management plane. But its stopping as soon as we try to access GUI and unable to access

Resolved! Palo Alto firewalls alerts

Hello,

 

Recently we have started working on enabling email alerts for our Palo Alto firewalls. One of the alert is for interface and HA status change alerts. Could you please let me know what can I do to enable same? Do I need any external tool for it

...

Resolved! Vulnerability protection profile change symptoms

Dear Team,

 

When the firewall checks the policy, the Vulnerability protection profile is displayed as an Exclamation mark.

 

The OS is using 10.0.4.

 

I searched all bug-ids from 10.0 to 10.2, but couldn't find anything matching the symptom.

 

If y

...

CHOEKyungJun_0-1649222204704.png

Tenable Scan on Palo Alto firewall / Panorama

Hi All,

 

Are Tenable vulnerability scans (see below) on Palo Alto firewalls / Panorama resource intensive for the PA devices? Does this cause high DP or MP issues?

 

https://community.tenable.com/s/article/How-to-perform-a-compliance-scan-on-a-Palo-

...

Ben-Price by L4 Transporter
  • 5473 Views
  • 6 replies
  • 0 Likes

Resolved! http/2 connection session id

Dear Team,

 

I have a question while checking the traffic log.

 

In general, we know that each id is created when the session is created.

 

However, the http/2 connection session id is identified as the same id.

 

I know that when the session id is input acc

...

traffic.jpg

HA Pair Config Sync issue

When we try to manually Sync the Active/Passive. HA Pair has local config sync error. This error is trying to sync the config between the two devices, but it's trying to sync local config (ie. management config) and not policies. I don't believe it s

...

Failed to backup mongo DB after upgrading to 10.1

Dear community,

 

After upgrading Panorama to Pan-Os 10.1 we get the following system log daily:

"Auto mongo backup: Failed to backup database 'pan_ms' collection 'msak':"

 

Any idea what is this error about and how to "silence" it?

 

Many thanks in advance

...

Carracido by L3 Networker
  • 4682 Views
  • 3 replies
  • 0 Likes

CLI - Regex with "?"

Hello all,

 

Does anybody know how to use a Regex that contains "?", obviously that doesn't work because that automatically triggers the helper?

For example, I'm trying to filter results for a certain CLI command using this:

 

| match (?s)(word1.*?)(?=wor

...

TigeRRR by L1 Bithead
  • 1847 Views
  • 2 replies
  • 0 Likes

External Dynamic List error

Hello,

 

I have configured External Dynamic Lists by using Minemeld a few month ago. It was workinf fine.

 

The lists are available (tried from a web Browser)

 

I noticed that I have following system logs for a few weeks :

 

Unable to fetch external dynamic

...

Resolved! Palo FW setup site to site

Hi All,

We have a HA fw 3220 in our environment and our partner want to access some of our resources. They propose a PA-440 fw +  small 12-port-Cisco 3560 in between the two sites by dark fiber.

Just wonder if you can setup FWs back to back instead of

...

Qui by L2 Linker
  • 3560 Views
  • 6 replies
  • 0 Likes
  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels