General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Palo Alto Temperature Readings

There are three temperature readings for Palo Alto PA-220 when I pull them using SNMP to our Cacti server -----Thermal----S1 Temperature @ U48 False S1 Temperature @ U49 False S1 Temperature @ Cavium Core I researched that Cavium Core is the main processor for the CPU of data management plane, but what is U48 and U49?Should I worry about those?

Resolved! Revert configuration through CLI

Hi Team!.I have been testing in a PA. But I can not go through webgui, it gives me certificate error.How could I revert the configuration through CLI ?. I have saved a snapshot, but how could I load it through CLI? regards

Join Us for a Tech Deep Dive Miniseries!

Stop Zero-Day Threats in Zero Time with Nebula PAN-OS 10.2. Join us live for an in-depth look at the latest advancements in cybersecurity, best practices, tips and tricks, demos andmore to protect your business and defend against threats in real-time! Register Now: Stop Zero-Day Threats in Zero Time with Nebula PAN-OS 10.2

nebula-on-demand-tech-deep-dive-miniseries-live-community-banner-2600x600.jpg
jforsythe by Community Team Member
  • 3608 Views
  • 3 replies
  • 1 Likes

SMB/MTU Issues

We are having issues with slowness when moving files in general. Whether they are through the SMB connection or just over the network. We have found the following, but want to get people feedback on what might have worked for you. PAN - 157715 - Fixed an intermittent issue where SMB file transfer operations failed due to packet drops that w...

nstultz by L0 Member
  • 3943 Views
  • 1 replies
  • 0 Likes

High Availability - Passive Link State

Hi Team,Trust all is well. IN the documents it is only mentioned that the "Auto" link-state makes the convergence faster but it is not mentioned how much faster, for example in the number of seconds. From the guide:Set the Passive link state to "Auto". Auto setting will bring the interfaces on the passive firewall to UP physical state, the inter...

Aggregation interface on virtual wire

Hello All,Is there supported to create virtual wire aggregate group ae1 with 3 physical interfaces and another ae2 with another 3 physical interfaces, then form virtual wire with ae1 and ae2. Point of this setup is to put PA between two switches with port channel group formed with 3 physical interfaces.Regards,Predrag

Tician by L3 Networker
  • 9611 Views
  • 6 replies
  • 0 Likes

Resolved! jpeg file blocking download error

Dear Team, I am doing a file blocking test for the jpeg file format.When uploading a jpeg, it is recognized as a unique threat id below, and I can control it as I want. Name: JPEG File Upload> Unique Threat ID: 52097URL : https://threatvault.paloaltonetworks.com/?query=52097logBut I want to control jpeg download. For testing, I set it to 'all...

policy.jpg
profile2.jpg

Resolved! Allow only certain users through VPN Security Policy

Hi All,How can I allow only certain users to use this policy from below? I am not able to do so at the moment using a local database (is it not achievable with a local database?). Currently, only when choosing 'any' will allow traffic through.@BPry

paragkarki143_0-1652249613154.png
Pras by L4 Transporter
  • 3583 Views
  • 2 replies
  • 0 Likes

Can't HTTPS to PA 200 from my MacBook?

So, I have my PA 200 factory reset, from my work computer (Windows) I am able to https to it using IE, from my MacBook (Monterey) no matter which browser I use I just get the security error about the cert on the PA. No options to just 'continue anyway' Only thing that sort of works is Safari, I get a partial login page, just a box for name and ...

Is it possible to use RSA MFA for admin console authentication?

We have standardized on RSA SecurID for MFA for GlobalProtect VPN MFA, and locking down our internal network assets. I was asked if it is possible to use RSA SecurID MFA for secondary verification for admin accounts logging into our PA-820. I believe it is, but want to confirm. Is anyone doing this on their firewalls? I tried setting the Authent...

fpascal4 by L0 Member
  • 2614 Views
  • 1 replies
  • 0 Likes

Resolved! Posting a knowledge base question?

So, through some troubleshooting we learned a few things about the new 10.1 feature "Registration Auth Keys". I wanted to post a question/answer to the Knowledge base so others could benefit from it, but when I login to the Knowledge base it takes me to the CSP now - and I can't find a way to post a new question. All it does is list previously...

rolinger by L2 Linker
  • 4622 Views
  • 2 replies
  • 0 Likes

Resolved! PA multicast with Cisco

Hello,We are having a multicast problem with our PA. It is an informacast application that needs to use multicast. Our server is in the data center on Nexus. We saw that Multicast FIB on the Palo Alto FW was not being created.We saw that multicast packets coming from the source to multicast group were not being marked with an egress interface,...

kenhagen by L0 Member
  • 3561 Views
  • 1 replies
  • 0 Likes
  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels