This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4118 Views
  • 0 replies
  • 0 Likes

interest in a MineMeld ESXi 6.5 OVA?

I have a working OVA of MineMeld installed on Ubuntu 18.04 server. One of the guys here where I work put in a ton of hours getting it installed and working. Is anyone interested in getting a copy. If so does anyone know a good repository to put it?

Mattk by L2 Linker
  • 2646 Views
  • 1 replies
  • 0 Likes

How do I run multiple commands?

How do I run these commands with one command/automation?? (instead of one by one manually) !taskComplete id=7!taskComplete id=33 input=no!taskComplete id=138 input=Spam!taskComplete id=237 input=Spam/incident_set phishingcategory=Spam incidentcategory="CAT 7 - Non Incident"!closeInvestigation closeReason=Resolved closeNotes=Spam

Stuefen by L0 Member
  • 2951 Views
  • 1 replies
  • 0 Likes

Device State from Multiple Devices

I have a question and I am hoping I am not the first person to have asked it, and that there is a script out there somewhere. I am trying to get the device state from multiple firewalls and need to somehow put it in a script. I do leverage the scheduled config export from Panorama, but that only gets me so far in a complete disaster. If the...

PA220 and IoT Security Policy Recommendations

Hello everyone.I am trying to get the policy recommendations from IoT Security to work.After following the detailed onboarding instructions, everything seems to be properly set-up on both the firewall and the IoT Security portal. All licenses are activated, all logs are being sent to CDL and IoT Security for processing. The issue is; when openin...

LarsPS_0-1642407559759.png
LarsPS_1-1642407652985.png
LarsPS_2-1642407711012.png
LarsPS by L0 Member
  • 2437 Views
  • 1 replies
  • 0 Likes

Alert on Policy Rule Modification

Hello Everybody, I would like to know if there is a possibility to be alerted in case of modification of a rule.For example: if a rule is modified, an email is automatically sent to a specific person Thank you Valentino

GWLB AWS - HA what to do if both appliances go down?

We are deploying two PA on AWS using GWLB and we are wondering what would happen if for any reason both aplliances go down , since all traffic (inbound , outbound and inter-vpc) is going through the FWs , do you know a quick bypass or fail-open solution to this? I configured a couple of linux2 machines with hairpining nat so they can send the tr...

Cgca1620 by L0 Member
  • 2049 Views
  • 1 replies
  • 0 Likes

management interface & service route configuration

HelloI am new in palo alto, I did a self-trainingI would like to have more details about the relation between the management interface and the service route configurationI have a little bit stuck on when to use the route configuration serviceI think there are some webgui ways to manage the AP:-directly connect a pc to Mgmt interface-connect mgmt...

Toufik by L0 Member
  • 7359 Views
  • 2 replies
  • 0 Likes

Azure Tag in Security policies

Hi There, How we could create dynamic security policies from Azure tag. In the Azure Market place I do see this statement."policies that are dynamically updated based on Azure tags assigned to workloads, allowing you to reduce the attack surface area and achieve compliance" Is that only for the model Active/Passive scenario or how and what shou...

Session end reason: tcp-fin and aged-out?

Hi all, I am using PA-850. I am having the problem. sometimes the internet is blocked. and I see in the monitor, the sesson end is: tcp-fin and aged-out. but after refresh some times, then I can access to internet. Please help to advise how to fix it. please let me know if you need more information for this issue

Chivas by L2 Linker
  • 83537 Views
  • 7 replies
  • 0 Likes

Resolved! Unable to get internet from inside host

Hello Guys,Hope all are good.I have official PA version 10.0.0.8 image which i have installed in VMware Workstation 16 , I have done all the network level things , Security policies and NAT policies however one of the host from inside zone is not able to connect to internet using the PA firewall. I don't know what;s wrong on host side i can see ...

Migration from 5250HA to 3250HA

Hi Everyone We plan to migrate 5250HA to 3250HA. See if anyone has past experience. 5250HA Policy and objects tab are managed by Panorama, All rest is still on local. Main change is interface on 5200.e.g internet or DMZ zone includes 1G and 10G interface 1/4 and 5 and On 3200 It will be changed to interface 20 and 21 for example.If modify the in...

Resolved! How to make upstream connected devices learn that downstream core switches are down

Hi all, We have active passive setup of firewalls in both DC and DR site. The scenario I am trying to work on is, if my downstream connected core switches are down in primary DC, how can make ISP and MPLS connected devices on my upstream learn that all traffic should be routed to DR site firewalls. Basically, How can we make ISP and MPLS router...

Sukhmeet by L1 Bithead
  • 5039 Views
  • 3 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks