General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 509 Views
  • 1 replies
  • 4 Likes

Resolved! Upgrade to PANOS 7.1

I'm looking at getting a Palo Alto used.  A lot of the units are pan os 4, 5 or 6.  For a PA-500, for example, can I get a 5.x OS and upgrade it to 7.1?  Does this require a support contract to upgrade it?

RustyPA by L1 Bithead
  • 6423 Views
  • 7 replies
  • 0 Likes

Resolved! Scheduled Policy not terminating existing session

Hello everybody,

 

I have a PA-220 and setup a rule that my children cannot access the internet after 8pm. This is working but only for new sessions. Existing sessions like TeamSpeak or BattleNet started before 8pm are still open. Can I somehow kill al

...

Resolved! The sporadic syslog sender

I recently adding a new syslog destination at this new to me site and noticed something I hadn't seen before. That is that the sending of syslog data according to PAN Monitoring is send sporadically and in big bursts. For example when I added the new

...

palomed by L3 Networker
  • 2467 Views
  • 4 replies
  • 0 Likes

Dynamic updates constantly failed

Hi there

 

Is there any known issue with Dynamic Updates? Our firewall can't get updates in the last 4 hours. The last update we got was around 4pm (GMT+10). The traffic log is showing incomplete. 'show url-cloud status' shows Cloud connection: not con

...

myocella by L0 Member
  • 1795 Views
  • 4 replies
  • 0 Likes

Resolved! financial-services is exempt from decryption still decrypt error

PA running 8.1.9  we have rule from any source any zone do not decrypt financial-services category.

CLI  test 

 

test decryption-policy-match source 10.x.x.x  destination 23.249.200.33 category financial-services

Matched rule: 'No_Decrypt' action: no-dec

...

MP18 by Cyber Elite
  • 2321 Views
  • 7 replies
  • 0 Likes

Identify syslog type for User-ID parse

I'm in the process of implementing User-ID and want to parse syslog logs. the predefined parse profile don't appear to be a match, as I'm looking to pull syslog from my domain controller. However, my Active Directory team can't provide me with a samp

...

Resolved! Dataplane issue

Hello

 

i have 2 Palo Alto in HA Mode Active/Passive and yesterday the Active when down and i lost all the LACPs ,then i start to troubleshooting to see the cause and i found this

could you tell me if is this bug issue or interface issue please ?

 

18/11/

...

firewall rule using cli

Hi All ,

 

I ma having firewall managed using Panorama. 

 

I am trying to verify security rule on firewall itself using below :

 

config  

show rulebase security rules <rulename>  , however its not showing any output .

 

Could you please confirm if this is co

...

deepak12 by L3 Networker
  • 1013 Views
  • 2 replies
  • 0 Likes

Traps is blocking chain

Hi,

 

We have a legitime application which is running a script. This script and the chain is detected by traps as threat. So we would like to configure an exception for this  

 

cmd.exe --> cscript //E:JScript //nologo "C:\ProgramData\signature\sign.bat"

...

BigPalo by L4 Transporter
  • 1048 Views
  • 2 replies
  • 0 Likes

CSR Certificate Issue

Hello Team,

 

Three year before ,One of my customer is generated the certificate from linux machine and sent it to comodo for third party sign.

Now they got new palo alto firewall and he is trying to install that certificate on palo alto but while insta

...

Interrogate External Server for UserID

Hi,

We have a use case where, upon detection of a session with an unknown userID, we'd like the Palo firewall to interrogate an external service via REST API for the UserID/IP address mapping.  

I appreciate the normal way is to prepopulate the Palo or

...

Resolved! How to enable all disabled application in fast way

Hello Team,

 

Please let me know how we can enable all disabled application in faster way.During dynamic updates of Application and Threats customer clicked on  'Disable new apps in content update,' so there are total 700 application disabled and i fou

...

dmodi by L2 Linker
  • 2982 Views
  • 2 replies
  • 0 Likes

Resolved! GloablProtect

Hello Community,

 

I am new to palo alto. we have deployed some firewalls in our company. I am trying to configure globlalprotect on the branch offices to add more gateways. I have an extra internet connection at one location and wanted to know if its

...

Globalprotect.PNG
Top Solution Authors
Top Liked Authors