This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4469 Views
  • 0 replies
  • 0 Likes

GlobalProtect Agent blocks DNS requests

I have case open with Palo but was wondering if anyone can verify and get same result as I. I have 0.0.0.0/0 route towards tunnel.I have Primary and Secondary DNS servers configured in GP Gateway (Network Services tab). When I perform nslookup from Windows command prompt then reply comes only if request is sent towards either Primary or Secondar...

Resolved! Custom App ID

Hi Experts,We've created a new custom app ID (custom-sql) for the SQL server with the ports TCP/10001- TCP/10004 with the Parent app as 'mssql-db-base'. Below are the firewall rules we've in place and noticed the application is correctly classified as the parent app when checking in monitor logs but instead of the below rule, it's hitting deny r...

Identify if the Palo Alto IDS/IPS has a signature for a specific vulnerability based on the CVE

We been working with Palo Alto to identify a strategy to help identify if the Palo Alto IDS/IPS has a signature for a specific vulnerability based on the CVE number. We should roughly be able to support this use case, but there will be some limitations:We can verify that a signature has been downloaded to the Panorama, but NOT if it is applied t...

Panorama attempting to connect to dummy-iot.services-edge.paloaltonetworks.com

Following an upgrade to PAN-OS 10.0.3, Panorama began sending out alerts every 5 minutes: opaque: gRPC connection to dummy-iot.services-edge.paloaltonetworks.com:443 is broken We do not have the IoT Subscription, nor can I find anywhere that this is configured. The error itself is due to the URL not resolving, as it appears to be a placeholder....

Resolved! Minemeld-web FATAL (Ubuntu 18.04)

Hi Ive been having a sweaty couple of days trying to get this to work and I must say ubuntu is not my forte.Anyway this all started from Ubuntu update. We had 14.04 which had sudo vulnerability and I was tasked to update this OS.Only thing running on it was this Minemeld and ofcourse after update it broke. I think Ive finally got partly working...

LassiK by L1 Bithead
  • 4494 Views
  • 2 replies
  • 0 Likes

Management Plane high utlization

Hi guys, Im having a query regarding Packet buffer protection where after enabling it i can find that management plane cpu utilization reached from 7 to 80% im not sure what could cause it. So can some one refer me when does management plane reaches the high utilization and does enabling packet buffer protection cause this issue? Thanks

Multicast Access to External Stream

Looking for some info on getting multicast working through the Palo Alto. Current working with version 8.11 and previously accessed this iptv stream located externally via a tunnel. Now that hardware has changed, we need to find a way to access this external UDP video stream via the firewall. Went by the latest multicast article on the PA ntwks ...

Resolved! Our custom-app has impacted all SSL traffic

Hi Team, We have a client who do not have SSL decryption and has many third-party applications working over SSL on different ports other than 443. The client has a security requirement that all applications need to be categorized by Palo alto firewall, so they do not wish to use any service ports in the Service column field. Also, they do not w...

bambox by L1 Bithead
  • 4026 Views
  • 2 replies
  • 0 Likes

userID agent not connecting

5220(9.0.11) firewall connectes normally to local DC running userid agent, but I see this for a remote DC which also has the agent installed. The same remote DC is connected successfully to 850(9.0.11) firewall on remote site. Not sure what the issue is here. 03-10 07:24:16.210 -0800 Error: pan_ssl_conn_open(pan_ssl_utils.c:843): Error: Failed...

raji_toor by L4 Transporter
  • 3148 Views
  • 1 replies
  • 0 Likes

Config Audit

Hi Everyone - I wanted to pose this question to the folks out there that may be feeling the same as I do about the way the config audit feature works. It is supposed to be a simple way to do a diff on config changes/deletes. I have found that palo seems to insert simicolons and braces throwing off the reporting and making it less than optimal fo...

combine more than two port for internet connections

Hi I wish to understand how combining more than two ports for internet connections works. I have configure four ports for internet connections with deferent speed. when I perform a seed test. I think, some result base one companying all port seed - fast speed result- but some times base on one port speed - slow speed result . so I am not sure ...

ehsunn by L0 Member
  • 4254 Views
  • 3 replies
  • 0 Likes

MineMeld - Memory Leak or Redis needing configured?

Build: Followed the Azure 16.04 LTM instructions Problem: Every 3-4 days after increasing to 4 CPU's and 16 GB Memory the memory seems to creep up to the point of borking the instance. WorkAround: Every 3 days restart the engine. Context: Currently have 1 source producing over 800K over time steady after aging out happens. 8 Miners 3 Procs...

Romans6 by L1 Bithead
  • 4033 Views
  • 2 replies
  • 0 Likes
  • 24379 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks