This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4473 Views
  • 0 replies
  • 0 Likes

Resolved! DNS license expired.

Hi I have PA820 with image 10.0.Will I still able use URL feature after DNS license expried?Is true that once the license expired the PA820 next generation no longer function and it looks like it only work as standard firewall? Thanks

how to adjust interface metric in ospf to define desired route ?

I have to two virtual routers VR_1 - e1/1 - is connected to wan 1, e1/3 - is connected to internal network, e1/4 is connected to a switch so, VR_1 has e1/1,1/3,1/4 and I want the primary ospf route to be from e1/4. what changes should I make to do set all routes pass through e1/4.VR_2 - e1/2 - is connected to wan 2. currently all interfaces are ...

Screen Shot 2020-01-22 at 12.39.13 AM.png
venkat_g by L0 Member
  • 8951 Views
  • 2 replies
  • 0 Likes

Globalprotect: Adding multiple portal via registry

Hi guys, May I ask for your guidance. I can add multiple portals easily in my globalprotect agent using its's GUI in windows 7/10. However, I need to deploy multiple portals via registry so I can push it in GPO. I have tried this link but this only show 1 portals.https://docs.paloaltonetworks.com/globalprotect/9-0/globalprotect-admin/globalprote...

RemusDV by L1 Bithead
  • 6857 Views
  • 3 replies
  • 0 Likes

linux GP agent deployment

Hi I see from panorama / deployment / Global protect client section that there is linux agent files.What is the purpose of that ? When I try to download and activate no device is coming at selection window.Any idea ? Thanks Panorama version 9.1 Regards

Resolved! Firewall requests to suspect dns domain names

Starting this morning (6:20AM CST), we are seeing threat notifications of suspicious dns requsts going to a group of domains that have been named in the Solarwinds Sunburst hack. avsvmcloud[.]comwebsitetheme[.]comzupertech[.]cometc We've been trying to backtrack these all day. Our internal dns servers tell us that the requests are coming from t...

Resolved! VPN client certificates rejected until firewall reboot

I had to reboot my firewall this morning because it erroneously rejected client certificates required by a VPN.Firewall system logs show critical event "Out of memory condition detected, kill process 3" at 4:06am I had the exact same issue on May 5th as well (and reporting to PA) where Clients getting VPN certificate errors despite being nowhere...

Hacking URL, direct thru Palo, deny reason "block URL", via a search thru google, gets a reset page.

When you go directly to "shodan.io", which is categorized as a hacking site, the palo will block that URL. When searching thru google for that site, then click on it, a reset page is sent, need to understand why? Is it considered a "threat" if google makes the request? so the threat settings would be used instead of the URL Filtering Security se...

Azure External NAT - Without LoadBalancer

Hello, I have an issue. I have an internal server which needs to be reached from the internet.I have got a public ip but i am unable to assign it interface of the firewall for obvious reasons. Also i only have an option to associate it with a Load Balancer. Is there a way I can get this NAT working without a Load Balancer. (Apologies if this is...

HTNAHSIN by L0 Member
  • 2800 Views
  • 2 replies
  • 0 Likes

Linux User not able to Access an Application

One of My Customer's User Not Able to Open a Stackfive agent application its says its Java base When he Opens That there is an Error According Certificate Invalid or Something. Then the Customer Send him a Certificate I check the logs, and the Security is good I want to know for that application what application do I just need to add I added th...

Resolved! Correct way to upgrade Cortex XDR agent on Terminal Servers

Hi all,In our environment we have installed the Cortex agent on some terminal servers via the command line and with the TS_ENABLED = 1 attribute.Now it's time to update them to the latest version (7.4.0). The terminal policy provides for automatic updating however they haven't done so.We noticed that from the web console you can manually launch ...

Resolved! Getting issue while printing from Wifi Network series (172.27.13.0) To Lan (172.27.11.0)

Getting issue while printing from Wifi Network series 172.27.13.0 To Lan 172.27.11.0I Checked the Monitor Traffic from ETH1/5 (172.27.13.0 ) to ETH 1/3 (172.27.11.0) Port 9100 as for Printer the 9100 is commonly Use the traffic shows allow and the byte is also Received by that end in CLI I Can also Ping but still its not printed properly So the...

FW lose UIA mapping

Hi, We are having a issue in the FW. Suddenly the FW loses the UIA mappings. We upgrade the FW to 8.1.19 in order to avoid any previous bug but the issue repeated. Its quite random. Upgrade was done last 8th June and it happenened today, In order to solve we need to restart userid process. why this is happening? why

Captura1111.JPG
BigPalo by L4 Transporter
  • 3312 Views
  • 4 replies
  • 0 Likes

Resolved! Bytes received zero for allowed udp ports

Hi, In traffic allowed logs, I am seeing numbers in byte sent however byte received is zero and connections are getting aged-out for UDP voice traffic. Can anyone know about such traffic whether it is dropping or since this is UDP connection hence byte received is zero This traffic is allowing via security policy configured for outside to ...

  • 24380 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks