useridd process is consuming 100% CPU on the PA-5250

PAN-OS is 9.1.10 running on PA-5250.

The useridd process is consuming 100% CPU:

Tasks: 313 total, 1 running, 309 sleeping, 0 stopped, 3 zombie
%Cpu(s): 2.8 us, 1.5 sy, 0.0 ni, 95.7 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
KiB Mem : 32640128 total, 197252 fre

Leak a specific route from BGP summarization

Hello All,

I have a question related to BGP summarization in a PAN firewall. We currently have summary aggregate advertised to the upstream device. But now we need a leak /32 route to the upstream along with the original summary route. What is the be

Post-VPN-connection Script when connected to internal Network

Hi everyone,

Does anyone know if it is possible to execute a script with global protect after the client is connected to and successfully authenticated on an internal Gateway?

Regards,

Remo

Getting Panorama-Managed firewalls connected to Cortex Data Lake?

Greetings all,

As the title suggests, I'm attempting to get Panorama and our two PAN 5250 on to our new data lake.  I've got the Device Certs installed using the OTP from the Support Portal and I installed (but didn't configure beyond the re-verifyin

Easy to determine new and changed settings\features between 9.1 and 10.1

Cisco used to have a tool that would show features and setting that are different between version you could select. Does Palo have a utility or easy way see changes/features between 9.1 and 10.1? We would like to know the changes prior to upgrade.

Panorama PDF Summary reports not providing data

I'm having some issues generating PDF reports in Panorama and after Google didn't help me, I thought it would be worth asking here. We've created some custom reports in the past, had PDF summaries generated, and the reports get sent out on a regular

DNS Security

Hello Folks

Does anyone know why I am having problems with DNS Sinkhole when my computers have dynamic DNS, I have spent days testing and I have detected that with fixed DNS I see the log but with dynamic DNS I don't see any log

I have applied the Secu

MS-Teams issues with disconnections

Hi all,

we have some issues with MS-Teams.

Our customers have random disconnections during the cals. In the app they recive error - "bad network quality" and after that they reconnect. Call quality itself is good. In MS console there is no allerts for

TCP Source Port Pass Firewall Vulnerability

Hi Team,

We are getting below vulnerability in PA NGFW. 

Please find the error below, 

External user access to cloud app through firewall

Hello,

Currently we are using an application hosted in cloud (Azure) which is being accessed by LAN users only through a Site-to-Site IPSec tunnel.

Now we want to give access of this Azure application to external users(they don't have LAN access).

We wa

real time interface monitor

I have an interface connected internet line with bandwidth 10MB can i monitor B.w utlization real time , meaning can paloalto draw a graph time and b.w at every moment i can see ultization may 5 MB ..5.1MB 9MB or something like that . or i must use a

PBF over VPN tunnel

Hello,

I try to create a route forwarding from a Palo Alto in one AWS account to a Palo Alto in another AWS account.

The Palo Alto in account A is creating a VPN to a Virtual Private Gateway  in account B. THe VPN is up and we can manage the firewall.

lacp neg failed for sec then came up

got email alert

SYSTEM ALERT : critical : LACP interface ethernet1/21 moved out of AE-group ae1. Selection state Selected

system log shows

( severity neq informational ) and ( eventid eq nego-fail ) and ( description contains 'LACP interface ethernet