This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 218 Views
  • 0 replies
  • 0 Likes

Resolved! TCP & UDP Floods from trusted zones

Hi everyone,

We receive TCP or UDP Flood threat logs from time to time on different firewalls of ours. In the image below you can see that the source and destination zones are the same, i.e. "zoneTrust", and this the case for all threat logs of this

...

Arman_Zaheri_0-1722255506276.png

App id

Hello,

I have a question about app id.

 

The App-ID description contains a Deny Action description of the action taken.

 

Whatever action is imposed by the security policy, the flow will follow the action of the App Id?

Sarou22 by L2 Linker
  • 800 Views
  • 3 replies
  • 0 Likes

How to Deny or Drop Replies in Allowed UDP Sessions

Hi All,

I'm trying to address a hypothetical scenario where some solutions act only as listeners and do not need reply to the sender.
For example, a SIEM system listening on UDP port 514 does not reply to the log sender.

In such a case, we configure

...

Resolved! SYSTEM ALERT : medium : MLAV: Unknown error

Repeatedly receiving the above alert on 4 separate PA firewalls throughout the evening, can't find much information online relating to it. Has anyone else received this message before? If so, what steps should I take to troubleshoot and resolve the m

...

KirkH by L0 Member
  • 5244 Views
  • 15 replies
  • 6 Likes

Resolved! Application override

 

Hello,

Application Override to a custom application will force the firewall to bypass Content and Threat inspection

I've read several documents but I still don't understand the point of doing this. What's the point?

 

Thanks

Sarou22 by L2 Linker
  • 739 Views
  • 3 replies
  • 0 Likes

Resolved! Single pass parallel processing

 

Hello, I don't understand why it is said that the single pass parallel processing performs operations once per packet.
What does this mean?

Firstly, the single-pass software performs operations once per package.

Thanks

Sarou22 by L2 Linker
  • 848 Views
  • 3 replies
  • 0 Likes

Resolved! Palo alto candidate configuration vs running conf

 

Hello,

I don't understand the difference between candidate configuration and running configuration.

Before committing when I'm making changes it's the running configuration and when I commit it becomes candidate configuration?

Another question. I'v

...

Sarou22 by L2 Linker
  • 1410 Views
  • 2 replies
  • 0 Likes

Single pass parallel processing

Hello,

 

After Reading the documents, I still don't understand why WE Say thay the single pass software performs operations once per packet. "As a packet is processed, networking functions, policy lookup, application identification and decoding, and

...

Sarou22 by L2 Linker
  • 226 Views
  • 0 replies
  • 0 Likes

Tunnel Monitor - PAN-OS SDWAN

I've had an issue recently where randomly I've had members of my VPN mesh start to have the tunnel monitors going up and down constantly which causes BGP to never be able to establish with the peer since the static routes to the loopbacks are pulled

...

PA-220 disk space issues

As most with a PA-220 have experienced, regardless version running (currently latest 10.2.3-h2) root partition fills up all the time and have to run the disk-usage cleanup commands manually and tried enabling aggressive-cleaning as well, it just cont

...

Resolved! PA-445 Passive Device LED status

Dear Team,

 

I noticed something unusual during my testing.

 

PA-445 was configured as HA.

 

The front LED of typical firewall hardware is orange when in the passive state.

 

However, for the PA-445, both Active and Passive Devices are green.

 

As a

...

Destination NAT Mismatch error

Hi I'm configuring a new PA-500 and have it working for source NAT going from Tusted to Internet. Now I want to create a destination NAT rule to allow traffic in to a web server located on the trusted net. I have created a rule almost exactly as it s

...

  • 23615 Posts
  • 107 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks