This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4473 Views
  • 0 replies
  • 0 Likes

show log traffic equal api or cli (ssh and scp or api)

Hii am looking and recover on a machine1 example: "show log traffic log (ip source destination port ect ..)Machine1---> scp admin@palo ---->show log traffic direction equal etc ... export .. or https://palo/api/?type=op&cmd=<show><log traffic direction equal...> etc.. it's possiblethank you

axelfa by L2 Linker
  • 3424 Views
  • 2 replies
  • 0 Likes

Resolved! Help understanding application dependency tree

Hello all! I am trying to find more information about the attached image - specifically when selecting an application in the process of creating a security policy, some applications appear to have dependency trees (shown) In this example of SNMP, SNMP is shown with several apps that appear to fall under it-snmp-base-snmp v1 v2 and v3Does this ...

Resolved! PAN 3220 10Gbps SFP compatibility?

Is it possible to use 10Gbps MM optics transceivers or copper in the PAN 3220?I want to get 2Gbps to my edge and wondering if there's an option other thanbonding two 1Gbps ports. Thank you.

DHCP stuck at offer

Hi Team, I have configured DHCP server on PA.It is working fine.I check GUI and CLI it shows one IP is sitting at offer show dhcp server lease interface ethernet1/12interface: "ethernet1/12" id: 75Allocated IPs: 4, Total number of IPs in pool: 155. 2.6% usedip mac hostname state duration lease_time192.168.200.100 98:18:88:77:e9:d7 committed 60...

Resolved! SCCM app deploy issue

I am working on testing improvements to our rule sets by breaking the rules into app groups as opposed to just allow all.Pretty much everything is working fine except for OSD deployment via SCCM. In particular the O365 click to run installer. The deployment process runs fine up to the point of installing office where it hangs for a very long tim...

Jamesy by L2 Linker
  • 5509 Views
  • 2 replies
  • 0 Likes

Palo Alto and CIsco Jabber isssues with Global Protect

Hi, We are having issues with cisco jabber using Global Protect.Clients reported that the jabber status (online/offline) is wrong so they have issue calling. The rule VPN-SSL zone to inside is any/any, so no restriction. Looking in pcap we can not see any drop.I have no evidence in the FW but the common point is the Palo with VPN GP.Have you rep...

BigPalo by L4 Transporter
  • 3493 Views
  • 1 replies
  • 0 Likes

Some users do not appear in the url filtering monitor logs.

Hello community I have a PA-220 firewall with version 8.1.16, the error that is occurring is as follows I have several users in a policy which has url filtering, some users are not shown in the logs of url filtering. When I filter users that are in the url filtering policy, some of them show up in the logs and others do not show anything even th...

URL_filtering.png

IPSec Crypto / browsing issue?

Hi All, I working on some firewalls and saw the GlobalProtect IPSec crypto profile but was using aes-128-cbc, I decided to change it to use aes-128-gcm, to take advantages of gcm benefits. Since that change, I have a user who is experiencing issues. They can connect to GP and have no problems accessing internal resources but they are unable to b...

Digital Events are Coming to LIVEcommunity!

Hi everyone, Yesterday we announced the launch of digital events on LIVEcommunity and introduced our first Ask Me Anything (AMA) event — a Q&A session focused on a specific topic where you can connect with experts! The first AMA event is taking place on April 8 at 10AM PDT, all about professional services and how they can help you in di...

jdelio by L7 Applicator
  • 4469 Views
  • 3 replies
  • 5 Likes

User-id Credential Check TEST?

I have everything configured following the documents I found online. I see from the user-id logs the BF is being exchanged with the FW. My users login using pre-win2000 id's. (LNameFI) Verified by monitoring the id's and IP's in User-id app. So now to try testing. Most sites today require a long ID. Usually your email address. I went to a...

DeadBeef by L0 Member
  • 2864 Views
  • 1 replies
  • 0 Likes

Corporate Credential Submissions

Hi All, I have a question about Corporate Credential Submissions functionality, specifically when using Domain Credential Filter. To confirm, does this method use the full AD UPN and password to match? E.g - Let's say my logon name is 'josh.test' and full UPN is 'josh.test@test.com'. Would Domain Credential Filter match both of these with a vali...

Josh990 by L2 Linker
  • 2161 Views
  • 1 replies
  • 0 Likes

Resolved! Globalprotect: Externel On Demand logon with RADIUS, internal SSO

Hi Community, my customer wants to use Globalprotect for on demand login with a MFA radius server.Everything fine - configured is and it works. Now, we want to use Globalprotect as an internal UserID source.So every GP-Client needs to do Userlogon SSO when connected to internal network (should be completely transparent to the users). But only on...

Chacko42 by L4 Transporter
  • 6174 Views
  • 8 replies
  • 0 Likes

GP 5.2.5 PANGPS crash when waking from ModernStandby

We have been seeing this over the last few weeks. Here is the sequence of events when the crash takes place. (EDIT) Crash occurred at 13:01:24 , which is after this line: (P6096-T15724)Info ( 374): 03/29/21 13:01:23:463 tunnel to 63.240.97.1 connected This happens only after the computer wakes from modern standby. And it doesn't happen every t...

  • 24380 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks