This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4131 Views
  • 0 replies
  • 0 Likes

Autofocus and minemeld

Hello, I don't understand what the Autofocus service is doing. What is the goal ? It provides the list of attacks present in a corporate network? How do you connect the firewall and the Autofocus service? I also do not understand what the Minemeld service is doing? It provides the indicators, for example: the number of attacks suffered by a c...

Sarou22 by L2 Linker
  • 2199 Views
  • 1 replies
  • 0 Likes

Minemeld

Hello, I don't really understand the notion of minors with Minemeld. Can you explain this diagram to me please? THANK YOU

Sarou22 by L2 Linker
  • 2076 Views
  • 1 replies
  • 0 Likes

High Availability

The Palo Alto instructions to set up High Availability are fairly straightforward, but the devices upstream and downstream barely get a mention. In our case, downstream we have two Cisco switches and multiple VMs attached. Upstream are two Cisco switches to a larger network.We are considering link-state tracking on the Cisco switches to create t...

jmck9999 by L1 Bithead
  • 4507 Views
  • 4 replies
  • 0 Likes

EDL object not showing up on dropdown list in policy rule

Hi,PAN version 9.1.0, no Panorama.I created two EDL - one of type IP List and one of type Domain List.Both EDL point to an internal webserver which holds the lists.Both EDL pass the "Test Source URL" check. The IP list works fine, we put it an a policy rule and it blocks as excpected.I tried to create a rule with the Domain list but it doesn't e...

Resolved! DoS Protection arguments

I'm PA student, and learning DoS protection. I have a question, In Object > DoS Protection > Add profile > Resources Protection, Maximum Concurrent default value is 32768, but I can not press OK and prompt the value is 0 ~ 0x4e2, it is decimal 1250.Why in doc or training video, those can input 32768?And after finish DoS Protection setti...

Chin123 by L1 Bithead
  • 2810 Views
  • 2 replies
  • 0 Likes

BGP Configuration Help

HiI am not a network engineer by no means and have setup basic BGP in the past with various peers with the peers being the source of truth for all routes.I have a situation were our primary firewall has been using static routes for everything, default to internet, specific to DMZ, and all others to internal core switches. With the core switches ...

what is the meaning of "tcp client reset via TCP responding rst" output in global counter

We are not able to connect VPN hosted in vpn_dmz zone.We have deployed third party vpn in vpn_dmz zone and configured inbound nat for same.Its old setup , all of sudden we are unable to connect vpn intermittently. did pcap for vpn public ip , showing below counter after running "show counter global filter packet-filter yes delta yes severity dro...

Deepak_K by L3 Networker
  • 4444 Views
  • 3 replies
  • 0 Likes

Palo Alto Networks Announces Prisma Access 2.0

Palo Alto Networks announces Prisma Access 2.0, expanding the industry’s most complete cloud-delivered security platform. Prisma Access is the only solution that protects all apps with best-in-class security while delivering an exceptional user experience with new cloud-delivered management experience, ML-powered (machine learning-powered) sec...

kiwi by Community Team Member
  • 3788 Views
  • 2 replies
  • 0 Likes

Simulate SIP Traffic in Lab

Hello Everyone, Like most on this form, I believe I am having issues with SIP, which is causing some soft phones to reset. I have started gathering a list of possible fixes that have been posted by the community and Palo Alto. I want to try these fixes in a lab environment so I do not cause any issues in production. Does anyone know if a way to...

Resolved! Firewall Interfaces Not Working and Crashing when SFP's are plugged in

Hi, We have a firewall that is crashing when Cisco SFP's are plugged in, I know they are not supported and that is what we mentioned to the customer. This issue started with version 10.0.3 and worked in pervious versions in 9.1.x I noticed the brdagent reboots every time the SFP's are plugged in or if a failover occurs to the secondary. ...

Sarc845 by L2 Linker
  • 2922 Views
  • 1 replies
  • 0 Likes

Resolved! Firewall interface is showing RED

Hello,I observe the firewall interface is showing RED.Below is the troubleshooting I have done:- I have checked no LED indication on the device after connecting the cable for all interface.Rebooted firewall from GUI and hard reboot as well.We changed the ethernet cable.For the cross check we insert the ethernet cable in other switches but switch...

Resolved! is it Possible to create NAT Rule to Allow 443 to public on VM hosted in Azure Cloud

Hi Everyone, I have a VM Series firewall in Azure Cloud. I have a scenario to allow 443 to accessible from public internet using public IP address. I used to do it on PA Series of Palo Alto but when it comes to VM Series, I do not see the options to do it. Have anyone done it before or do we have any option to do it on VM Series? Thanks in Advan...

Decryption Certs

Does anybody know if we support separate Decryption Certs in a multi VSYS environment? I have an MSP who wants to use different Certs from each of their customers. Thanks

  • 24337 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks