General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1812 Views
  • 0 replies
  • 0 Likes

SAML Login to local firewall certicifacte

I am getting a SAML error after renewing a few certs that expired. 

 

eventid eq saml-certificate-error


Can you use the same IDP xml file across multiple Device SAML profiles? IDP is Microsoft azure.

and ( description contains 'Failure while validating t

...

Resolved! DNS Security

Hi, 

 

We are getting warning message (Warning: No valid DNS Security License) when we commit every time. currently we are using PAN OS 9.0.5. Is it possible to disable this warning message.

 

Regards,

Logesh S.

Logesh by L1 Bithead
  • 28762 Views
  • 24 replies
  • 1 Likes

Device Log Forwarding CLI

Hello -

In GUI I can do the following:

Panorama > Collector Groups > {Collector Group Name} > Device Log Forwarding > Log Forwarding Preferences

 

In here I have two Palo Loggers and I split my HA firewalls like so (for example):

Devices:                 

...

Resolved! Inbound SSL decryption

I am trying to set up a TLSv1.3 / TLSv1.2 webserver behind a palo firewall with ssl inbound decryption.

However i seem to get a lot of ssl errors and the website does not work if specific ciphers are not listed first...

For one I would like to understa

...

CLIq by L3 Networker
  • 13717 Views
  • 9 replies
  • 0 Likes

Quantifying Global Protect User Experience

I am now seeing about 500-600 Global Protect sessions a day connecting with autoVPN. A problem I 

am running into is reports from our Help Desk of session disconnections. It's hard for them to get

time with the users to grab the tech support bundle and

...

palomed by L3 Networker
  • 1414 Views
  • 0 replies
  • 0 Likes

Resolved! Upgrading PANs in Serial Question

I have two PAN 3220s operating as Virtual Wires behind a pair of ASA 5525s. Normally in upgrading a pair of PANs you upgrade the standby, then suspend the primary (secondary takes over), upgrade the primary. Repeat as necessary to get to your target

...

palomed by L3 Networker
  • 2372 Views
  • 2 replies
  • 0 Likes

Resolved! Licensing in active passive cluster

Hi there,

 

we plan to replace an old firewall cluster against an new one from PA. It will be an active-passive cluster of 2 PA-850 boxes, we plan to use threat prevention + dns security license.

There is only one box active, the other one is on standby

...

Netzer by L3 Networker
  • 4522 Views
  • 1 replies
  • 0 Likes

Advanced URL License not showing in Panorama?

I recently renewed some licensing on firewalls.  The URL Filtering subscription changed to Advanced URL Filtering.  On the firewall, under licensing, everything shows fine.

 

In Panorama, for those firewalls, I noticed after doing a refresh, Pano shows

...

MikeC_0-1640794406956.png

Restrict Google Domain login

Hello,

I have been using a header insertion to restrict login to an approved list of Google Domains for a couple of years now. However, I have now encountered an issue and was wondering if anyone else had a similar experience or has any idea what to d

...

  • 24242 Posts
  • 117 Subscriptions
Top Solution Authors
Top Liked Authors
Labels