General Topics

snmpd.log error Solarwinds monitoring PA1410

I am investigating an issue with Solarwinds monitoring a PA1410 , in the snmpd.log i see the following :

2024-07-18 09:39:45.403 +0100 Error:  pan_snmputil_sysd_fetch_modified_obj(pan_snmputils.c:1528): Unable to fetch sw.cmd.*.dp*.counter={'interf

Converting SonicWALL DNAT configuration to Palo Alto DNAT Configuration

Hi to all the expert,

I am new to Palo Alto firewall. I need a guidance from the expert to guide how to converting SonicWALL DNAT rule to the Palo Alto DNAT rule.

SonicWALL DNAT Config:

Original Source: Any

Translated Source: Original

Original Dest

Long commit times when changing DNS settings

On an HA pair of PA-460, the commit time is usually around 60 seconds, when changing the DNS settings to something that is not reachable, the commit time changes to 10 minutes+. I've tried replacing the primary but the issue is the same. When I looke

how to configure WAF in on premise PA

how to configure PA Model Type 3410 for Web Application Firewall (WAF) 

Unable to discovered ICMP and SNMP from solarwinds. Discovered in Solarwinds as ICMP Only.

dc1-fld-sdw-1a
dc1-fld-sdw-1b
Unable to discovered ICMP and SNMP from solarwinds.
Discovered in Solarwinds as ICMP Only.
we have checked there is no firewall block and verifed SNMP2 configurationsits looks good but unable to discover ICMP and SNMP

Serial

Is there a way to test remote host ports from the palo alto firewall?

Hello Palo Alto Team,

I new to Palo Alto and loving it but I am looking for PAN-OS cli commands similar to telnet, nc (netcat) or curl etc.. I have seen there is an option to do ssh source port (the scp command also supports this), can this replace

SSLVPN FOR Certificate (Generate)

Hi 

I try to establish SSLVPN LAB

But,I don't understand bottom Certificate Attributes function

the different between having setting and not setting 

Best Regards

Palo HA with LACP to Cisco Stack Switch

Hello Everyone,

Im trying to find a Palo KB that talks about recommended/best practise when setting up Palo HA with LACP to a stack switch (e.g. Cisco stack). 

Can anyone guide me on this ?

For some background, we are weighing the Pros and Co

Scheduled Log Export Failure

I have Scheduled Log Export but it's failing.  The system log reads "Failed exporting traffic log via ftp (last-calendar-day)".

If I run the export command via CLI, it runs successfully.

>ftp export log traffic start-time equal 2012/11/28@00:00:00 end-

Log exporting is failing. :(

Have export of traffic /threat/url etc set up on log export
All setup to use SCP.
Target linux server is setup correctly.
Test SCP server connection works correctly (see attach word doc)
Job fails with an error in system log :

Failed exporting data log vi

Customer Support Portal Down

Hi, 

https://support.paloaltonetworks.com/Security/Login

is down at the moment and says 'The Customer Support Portal is temporarily unavailable'. 

compatibility issue between GP and IOS18.2

Hi All,

We are currently experiencing an issue where mobile devices connected to Global Protect VPN are unable to receive internal emails. This problem has been observed specifically on iOS18.2, while it works fine on android devices and other iOS