General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2903 Views
  • 2 replies
  • 14 Likes

Issue with traffic on specific proxy id

We have VPN between Palo Alto and Cisco FMC/FTD.

There is user and server traffic on VPN. VPN status is stable. I don't have any user complaining about disconnection.

But I am seeing disconnection on specific proxyid. All of sudden I am getting ICMP re

...

yshaikh by L1 Bithead
  • 3758 Views
  • 5 replies
  • 0 Likes

Resolved! Way to see hardware type installed on 7080?

Is there somewhere in the GUI (or more likely a CLI command) that will show me the hardware type of the cards I have installed on my 7080? Specifically, I am trying to see if I have an SMC or SMC-B.

 

Thanks.

Resolved! Path Monitoring for Alerting Only

Hi,

 

I'm interested in using path monitoring for alerting. I'm aware that it can be used with PBF, static routes, HA, etc, but that's not quite what I'm after. I have BGP to manage that side of things.

 

I would like to monitor the path to the internet.

...

Luke_R by L2 Linker
  • 2447 Views
  • 2 replies
  • 0 Likes

SD-WAN OSPF

Hello Team,

 

I just wanted to know that does PA SD-WAN supports OSPF ??

Or it only supports BGP.

 

My use case is as below  Branch and a Hub to SDWAN

I have Internet links and Orange MPLS links and I have OSPF on OBS router and on the firewall 

After confi

...

Swetang by L1 Bithead
  • 3015 Views
  • 2 replies
  • 0 Likes

Apps/Threat out of Sync on Passive Panorama.

On one set of panoramas I noticed that the Apps/Threats are out of sync. The passive device downloaded, but did not install the update like the active device did.


The active device is set to sync with peer during the scheduled update.

 

The trouble is t

...

Resolved! Using public range of IPs

I have a bit of a silly question to ask but my mind is drawing a blank on this.  If you have a connection from the ISP, say the static IP range is 14.1.1.0/30....their router is 14.1.1.1 and the PA FW will be 14.1.1.2.  Simple enough but what if they

...

ce1028 by L4 Transporter
  • 3922 Views
  • 6 replies
  • 0 Likes

File blocking

Dears,

I am not able to block msi file via file blocking profile.

I have created a file blocking profile to block msi and different types of file extensions to block by the policy.

Then I tried to open exe file in the chrome browser which is working fin

...

Jafar_Hussain_0-1606461774177.png
Jafar_Hussain_2-1606462014421.png
Jafar_Hussain_1-1606461839870.png

Resolved! Interzone Static Routing

Hi all, I'll preface this as I'm the sole networking guy at my job and I'm still green. Apologies for any dumb questions, I've tried to read the manual for relevant info and used my google-fu to no avail.

 

I'm using a PA-3020 on firmware 8.0.6.

 

I've b

...

Resolved! Status Incomplete

Hello,

what does this mean and how to solve it?

When doing an show arp all:

No MAC is displayed at an IP address.

 

Any help is welcome, thanks in advance 

 

 

Davevanwijck_0-1606816998706.png

user-id server monitoring error: NT code 0x800705af

Dear community,

 

I´m trying to add a new AD server to server monitor list in order to retrieve user-ip mappings and get the following error:

" WMIC message from server XXXXXXX: NTSTATUS: NT code 0x800705af - NT code 0x800705af "

 

Does anyone have any id

...

Carracido by L3 Networker
  • 1734 Views
  • 2 replies
  • 0 Likes

Resolved! Password Profile

Hi Experts

 

We need to setup a password profile with the no expiry condition for the service accounts which has read only privileges. Version is 8.1

 

1. If we set the Required Password Change Period (days) to 0 days, does it mean it's expired (with 0 d

...

Live Community members - we want your feedback!

While we may operate the community from day-to-day, the Live Community is really YOUR community. Sure, we may have ideas about what might be helpful or interesting but since the community is yours and exists to help you, we ALWAYS welcome your ideas,

...

Resolved! Office 365 App-ID

Hi, 

 

We are in the process of implementing office 365. May I know what is the correct APP-ID for the below services? Please share if there is any best practice document for this. 

 

Microsoft Stream
Audio Conferencing
My Analytics
Azure Active Directory
Az

...

  • 24019 Posts
  • 99 Subscriptions
Top Solution Authors