This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4132 Views
  • 0 replies
  • 0 Likes

Regarding Bootstrap issue

Hi Team, We are facing issue with bellow error while starting the firewall up.Also sometimes the firewall is not coming up so we need to reset the firewall and have to upload the configuration files to bring the production up.Please provide a solution to the below error from the system log. [critical hw bootstrap-image-error 0 No bootstrap media...

Resolved! Configuring tunnel ike-gateway with API

I am at my wits end with this. Can anybody tell me what I am doing wrong here? I'm trying to make a script that will use the API to stand up L2L VPN tunnels, and there is something in this request that is making the firewall puke (error 18 "Malformed Request"). The API calls:making the gateway, this works just fine:curl --globoff -X GET "https:...

SDWAN traffic - where does it go, can I show?

A few days ago on one of our Palo Alto firewalls the primary (MPLS) line was down (not the provider router, somewhere between there was a broken cable) and traffic was routed over backup (Internet). Because provider router was up, the interface on Palo Alto was up, so this was no indication for traffic routing over backup.I only could see this i...

ChrisCon by L2 Linker
  • 2507 Views
  • 1 replies
  • 0 Likes

Resolved! Allow web-browsing but not for users?

Hello everyone, First post so please be gentle. I need to have a security rule to allow the Bitdefender application on my servers. Part of the Bitdefender application requires explicit web-browsing. That is obviously easy enough to do. My problem is that I don't want users to then be able to browse the web from those servers but because I have e...

temperature

hi, I had a firewall palo alto with the version 9.0.12 and i upgrade the version to 9.1.11 after this the temperature pass of 30 grades to 60 grades. Why after upgrade the temperature changed? Kind regards

BigPalo_0-1633528948057.png
BigPalo by L4 Transporter
  • 3443 Views
  • 3 replies
  • 0 Likes

Psiphon blocking in a non-decrypted network

Hello Bros' Recently, I have issues with the application called Psiphon, this app is eating my internet based on authentication portal page.As I check previous threads in the community, all speaking about a decrypted traffic or blocking an applications that are vital such as http-proxy,ike, ipsec, l2tp, ssh, ssh-tunnel.it a virtual...

Decryption Exlusions

As you all know, Palo Alto gives you two ways to exclude sites from decryption. Are there any scenarios where excluding from SSL Decryption Exclusions works but setting the same url in a decryption policy doesn't? I ask because I've had the scenario where I get a certificate validation error using an app, I look at the cert and see it's for a U...

ce1028 by L4 Transporter
  • 2437 Views
  • 1 replies
  • 0 Likes

Monitor aux ports through SNMP

Is it possible to see the aux ports on a PA-5200 series firewall through the SNMP interface mib? These are currently the interfaces that show up, the aux ports are not there. This is on 9.1.11, PA-5250 to be specific. ifName.1 = STRING: ha1-aifName.2 = STRING: ha1-bifName.3 = STRING: hsciifName.4 = STRING: mgmtifName.5 = STRING: ethernet1/1ifN...

Research

Hi community. I am a student and I would like to know which product/feature of Palo Alto brought it to the center of the map as in, gave them the recognition. P.S. This is for my coursework and it's a 3000-word assignment. So, I want to focus on the one major product of Palo Alto Networks and talk about it.

Sm0001 by L0 Member
  • 2558 Views
  • 2 replies
  • 0 Likes

bgp troubleshooting

Hi I'm having issues with bgp routes not propagating I know that I can click on view routes under the virtual router section, but was wondering if I could see the bgp errors in syslog, doesn't seem like I know the search string if that is possible, or if I have to run the debug command at the CLI.

mpugina by L0 Member
  • 11295 Views
  • 1 replies
  • 0 Likes

PA default interface state

Hello community 🙂I've been searching but couldn't find an answer so:What is the default interface state (out of the box firewall)? Is it forwarding L2 packets? Can I create a L2 loop by connecting two interfaces between FW & a switch?

PANOS 10.x - share interface in Multi-vSYS mode

Hello All, We are working on a design to move Cisco ASAs firewalls into PA 5260 with Multi-vSys mode enabled, so each Cisco ASA is a separate vSys. While everything else looks like nice and easy-to-convert, we have problems with shared interface. In Cisco world multicontext ASA might have interface in same VLAN X and SUBNET Y on each context ea...

Problem reaching MGMT by vpn

HelloA few days ago we upgraded from version 9.0.10 to 9.0.14, after that we lost the management from the VPN S2S, everything is fine , however, in the connections we see that there is no response from the Firewall to our queries. In the monitor we only saw the incomplete application and in the packet captures we only saw the SYN and retransmiss...

Resolved! Palo Alto Apps / Hub unreachable for days

I've been trying to access the Apps hub (https://apps.paloaltonetworks.com/) for days now and I keep getting this error:{"statusCode":500,"error":"Internal Server Error","message":"An internal server error occurred"}Is there any ETA when this issue will be resolved?

Replace firewall order

I have a question about upgrading a firewall to new model. I've done it in the past but always seem to forget the order. I have a firewall that is managed by Panorama, with some local policies also. I have downloaded the device state from the existing firewall. I have also added the serial number of new firewall to Panorama but I have not con...

ce1028 by L4 Transporter
  • 3778 Views
  • 4 replies
  • 0 Likes
  • 24337 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks