This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4244 Views
  • 0 replies
  • 0 Likes

Resolved! Dynamic user group using HIP log tagging

Hi Team, I am trying to create a Dynamic user group using Log settings for HIP logs by the following procedure,1- created one Tag2- Configured log settings for HIP log for build in action tagging the source user with the tag created before3- created a dynamic group with the above tag as match criteria.The dynamic users are not getting registered...

NAT question

Hello all,we have configuration with dual ISP.From the 1st provider we get public IP directly on the PA2nd provider is with nat, i mean on PA we have private IP. When the route goes through the 1st one everything works fine. When we switch to the 2nd one there is a problems . In the monitoring tab i can see all requests to Internet zone ends w...

stef by L2 Linker
  • 4436 Views
  • 5 replies
  • 0 Likes

How export a specific log files from Palo Alto or Panorama like for example brdagent.log ?

Hello to All, How can for example the log fil brdagent.log be exported for checking physical issues like in article https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PNcBCAW&lang=en_US%E2%80%A9 or is there a way export all the logs (dp/mp/cp) ? Also should we first aggregate the logs on a firewall model 7000 befor...

GlobalProtect VPN Client Mac OSX Secure Input

I've got a user that uses keyboard maestro (an application) to run macros for software development. The issue is that keyboard maestro requires secure input (Mac OSX feature) to be disabled to be able to run. GlobalProtect since it starts as a service enforces secure input (the Mac osx feature) to be enabled. I've looked through the app config w...

Query on health check of new PA

We recently got shipped 2 new PAN-PA-3220 and both of them were DOA. ing PAN Software: 2021-03-10 21:02:39.170 -0800 Error: sysd_construct_sync_importer(sysd_sync.c:358): sysd_sync_register() failed: (111) Unknown error code2021-03-10 21:02:40.170 -0800 Error: sysd_construct_sync_importer(sysd_sync.c:358): sysd_sync_register() failed: (111) Unkn...

Tech Support File Contents

Hello, I tried to search online a lot but I could not find what exactly are the contents of tech support file are that we occassionaly download and send to tech support for support. Could someone please throw some light on what exact information is downloaded in tech support file?

psharma by L1 Bithead
  • 12716 Views
  • 8 replies
  • 0 Likes

Resolved! Monitoring internet connectivity

Is there an way to monitor if\when internet connectivity is lost on an interface on Palo 5220? We are trying to determine if our internet connection is going down occasionally (for just minute or less), but not finding anything on the Palo to indicate an internet bounce other than IPsec tunnels renegotiating. One thought was to set up probes f...

Jsytsma by L0 Member
  • 9851 Views
  • 2 replies
  • 0 Likes

Resolved! HAFNIUM targeting Exchange Servers with 0-day exploits

Hi all,Anyone have update relate to "HAFNIUM targeting Exchange Servers with 0-day exploits", I don't search any information relate to this nofication:https://www.microsoft.com/security/blog/2021/03/02/hafnium-targeting-exchange-servers/Our customer have ask me about this signature of PANw tHANKS,

ThomasX by L1 Bithead
  • 7673 Views
  • 4 replies
  • 0 Likes

GlobalProtect Agent blocks DNS requests

I have case open with Palo but was wondering if anyone can verify and get same result as I. I have 0.0.0.0/0 route towards tunnel.I have Primary and Secondary DNS servers configured in GP Gateway (Network Services tab). When I perform nslookup from Windows command prompt then reply comes only if request is sent towards either Primary or Secondar...

Resolved! Custom App ID

Hi Experts,We've created a new custom app ID (custom-sql) for the SQL server with the ports TCP/10001- TCP/10004 with the Parent app as 'mssql-db-base'. Below are the firewall rules we've in place and noticed the application is correctly classified as the parent app when checking in monitor logs but instead of the below rule, it's hitting deny r...

Identify if the Palo Alto IDS/IPS has a signature for a specific vulnerability based on the CVE

We been working with Palo Alto to identify a strategy to help identify if the Palo Alto IDS/IPS has a signature for a specific vulnerability based on the CVE number. We should roughly be able to support this use case, but there will be some limitations:We can verify that a signature has been downloaded to the Panorama, but NOT if it is applied t...

Panorama attempting to connect to dummy-iot.services-edge.paloaltonetworks.com

Following an upgrade to PAN-OS 10.0.3, Panorama began sending out alerts every 5 minutes: opaque: gRPC connection to dummy-iot.services-edge.paloaltonetworks.com:443 is broken We do not have the IoT Subscription, nor can I find anywhere that this is configured. The error itself is due to the URL not resolving, as it appears to be a placeholder....

Resolved! Minemeld-web FATAL (Ubuntu 18.04)

Hi Ive been having a sweaty couple of days trying to get this to work and I must say ubuntu is not my forte.Anyway this all started from Ubuntu update. We had 14.04 which had sudo vulnerability and I was tasked to update this OS.Only thing running on it was this Minemeld and ofcourse after update it broke. I think Ive finally got partly working...

LassiK by L1 Bithead
  • 4442 Views
  • 2 replies
  • 0 Likes

Management Plane high utlization

Hi guys, Im having a query regarding Packet buffer protection where after enabling it i can find that management plane cpu utilization reached from 7 to 80% im not sure what could cause it. So can some one refer me when does management plane reaches the high utilization and does enabling packet buffer protection cause this issue? Thanks

  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks