General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! PA 5520 to PA 5220 Cluster migration

Hi,

 

I want to migrate one PA Cluster from 5020 7.1.16 to 5220 8.1.8. Could you please help me with the steps to follow for this migration and is there a document available?

 

Thanks

JP

ICMP Timestamps

Hi,

Can anyone please tell me if there is a way to stop my PA from responding to ICMP type 13 and 14 timestamp requests/replies?

Cheers

tezza by L2 Linker
  • 6966 Views
  • 8 replies
  • 0 Likes

File is being blocked

There is a file that is being blocked with an extension of .ATB.ZIP is there anyway to allow this file to be downloaded instead of being blocked by the rule. I am guessing this is a predefined rule in the Palo Alto because all other .zip files are al

...

Resolved! ipsec debugging

Hi

 

I have a ipsec tunnel with a vendor - they use cisco on their end.

I have been advise IKE and ESP lifespan is 8 hours ... 28800 sec

 

But what I have noticed is if I set it to this around 6 hours in traffic stops passing.

I have to restart the tunnel

...

Resolved! Troubleshoot Drop Counters

Hi Community,

 

I got a question:
During a project migration, we noticed asymmetric routing and had to disable the protection in Zone Protection profiles.

While doing the tasks for aftermath, I wanted to analyze the problem and had a look at the global c

...

Chacko42 by L4 Transporter
  • 2081 Views
  • 2 replies
  • 0 Likes

SSl decryption-Failing android apps

All,

 

I had enabled ssl decryption and no issues with desktops. But, Android phones have issues with apps like youtube,DUO etc but can browse through chrome.

I assume this is because of certificate pinning that these apps use. Please correct me if I am

...

Resolved! Aboute ACE exam and about the trainings!

Guys, I wanna to take an ACE exam and should to attand to the training courses. i've been told to attaend to the firewall configuration essentials Firewall Configuration Essentials 101 PAN-OS v.6.0 RevC training course, but i noticed also the follwoi

...

9.1 testing - a couple things...

I have been playing with new features in 9.1 in the lab and have noticed a couple things that others may want to be aware of:

 

* The Global Protect ACC tab is nice, however it does not include Global Protect client-less activity

* With the addition of

...

hshawn by L4 Transporter
  • 1528 Views
  • 1 replies
  • 0 Likes

Known Issue in 9.0.5

Hi Team,

There is a known issue in 9.0.5 and that is "Dataplane crash due to duplicate child SIP sessions."

I have seen this below URL for further understanding,

https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-release-notes/pan-os-8-1-addressed-issu

...

Dealing with a Google Cloud VPN and setting MTU

We are working with a partner who is using Google Cloud VPN and we are seeing latency issues. They will only reference Google documentation and will not set MTU on their end. On our end we are trying to determine the optimal MTU setting, but it's a b

...

Threat log

Hello Team,

 

In the firewall, it is showing around 4000 threat logs of brute force threat and I am receiving 4000 mail in my mailbox.

 

Is there any way for specific threat I will receive only one email

dmodi by L2 Linker
  • 2708 Views
  • 10 replies
  • 0 Likes

AWS licensing issue

Hi guys,

 

every time i login to the Panorama i get the following message: 

Warning: This Panorama instance does not have a license key. Click 'OK' below to try retrieving the license from the Palo Alto Networks Update Server.
You have 0 days before comm

...

Resolved! SSH connection issue with Panorama

Hi,

 

i have deployed Panorama instance in the AWS and wanted to connect to it via ssh in order to set a password for the admin user,

when connecting i used the private key generated by AWS and i was asked for a password which i did not set yet.

please n

...

Top Solution Authors
Top Liked Authors