This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4221 Views
  • 0 replies
  • 0 Likes

Resolved! Best/Most Efficient way to view exact URLs

We're currently in the process of moving over from Cisco to Palo and are still trying to work through everything. We currently have a URL profile attached to every policy and the only actions we have on categories are allow and deny. Should we set everything to at least alert so that they would appear in the URL Filtering logs? Is there a wa...

bafergel by L2 Linker
  • 3859 Views
  • 3 replies
  • 0 Likes

External Dynamic List retrieval on PAN-OS 9.1.2

Hello message board, this is my first post!!!! I am trying to set up a EDL feed from XSOAR into the NGFW for O365 IPv4 addresses. Tested the feed using curl, both locally and remote, and it is working. The issue is fetching the list from within the NGFW. I captured the packets and it shows the NGFW trying to negotiate on TLS1.0. Cortex XSOAR onl...

Source ip region/country showing incorrect on PA firewall

In the Palo alto firewall for the public ip 205.254.183.218 source ip region is showing as US. but user is located at India.we have given access on firewall for source region India only for inbound traffic.In the traffic logs source country is showing as US country.Therefore traffic is going from clean-up rule.what should we troubleshoot for th...

SurajN by L2 Linker
  • 4447 Views
  • 3 replies
  • 0 Likes

Ubuntu 18.04 install errors

Hi There, Running into issues trying to install on Ubuntu 18.04 During the install process at the end I get this message: TASK [minemeld : requirements] ******************************************************************************************************************************************************************fatal: [127.0.0.1]: FAILE...

bsmith2 by L1 Bithead
  • 36921 Views
  • 37 replies
  • 0 Likes

Syslog server flapping passive firewall.

I have Syslog configured in my firewall. but I am getting alerts on the passive firewall for two weeks.The service route is configured via the management interface. the alerts are generated frequently.The active firewall is working fine. Below is the alerts:- PAN-OS version is 9.1.6can anyone have an idea how to troubleshoot this issue?

Jafar_Hussain_0-1622718681915.png

PANGP virtual adapter disabled automatically

Many of users are facing issue in connect Global Protect VPN. We notice when we restart PANGP virtual adapter disabled automatically .we restart service and after that issue fix for day or two day’s but again this issue persist. Requesting you please provide permanent solution on this issue.

SurajN by L2 Linker
  • 27496 Views
  • 2 replies
  • 0 Likes

JSON format

I have a PAN config that is in json format that I want to implement on a 3060 fw. It seems that the fw will only take config in "set" command format or .xml. I am new to PANOS, I know in JUNOS you could do a "load override terminal" and drop this format onto the fw. Is there a way to drop this json config onto the fw, or convert it to a .xml...

Resolved! Global Protect ios internal gateway no username?

I have internal gateways that are functioning normally with Windows and Macs. New Ipads we are working with will recognize internal connection, and show "connected internal", but I do not see a username come through in the logs. I thought a username would come through just like any other device? I am manually typing in a username/password,...

Sec101 by L4 Transporter
  • 4695 Views
  • 4 replies
  • 0 Likes

SMTP default port change in panos 9.1.6

Hi Team, We are configuring email server for critical system alert. We have got gateway IP and port as 587. By default i think port 25 is supported for SMTP. Is it possible to change port number 587 in panos 9.1.6 ?This option is available in panos 10.0 but is it possible in 9.1.6? ThanksOm

Resolved! Aggregated Ethernet interfaces - recommended maximum number of sub-interfaces

HiI'm just after a bit of advice.PA3220 - I have configured an aggregated interface and configured a number of sub-interfaces below this for each individual client - is there a maximum recommended number of sub-interfaces that can be configured below the aggregated interface? I am concerned I have over 20 at the moment and I don't want to hinder...

JulianH by L1 Bithead
  • 9779 Views
  • 4 replies
  • 0 Likes

Not able to login to Production Firewall

Hi have HA 32XX Series production firewall 9.0.5 version, I was doing password comlexity comit and after that i am not able to login via GUI/SSH/Consle and showing invalid password. I opened TAC and they suggested to revert configuration via maintainance mode , To minimize the risk i rebooted the passive pair and i am not able to find configurat...

Resolved! Deactivate Licenses from Customer Portal

Good morning, How do we remove the expired licenses from the Customer Portal? I have 'trial' licenses that I have removed from the actual FW (delete license key <key file>) via the CLI, and that works fine. However, if you 'refresh' the licenses on that FW, those expired licenses come right back, as they are still listed in the Customer ...

Resolved! Impact of this command?

Can anyone explain what the impact to the firewall of running this command would be: delete license key <logging_service_key> Would it prevent it from working suddenly, would it just be for the logging service and then it would have to refetch the key? Thanks!

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks