This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4231 Views
  • 0 replies
  • 0 Likes

How to add static routes on panorama M-600

Hello , We have M-600 Panorama device and we need to get 2 seperate networks :MGT : for firewalls administration and to receiving logs ( this network is isolated from internet)Ethernet 1/2 : a new interface just to make panorama reach internet for updates. the problem is that i can't specify route to internet through ethernet1/2 next hop. any id...

Elwess by L0 Member
  • 2284 Views
  • 1 replies
  • 0 Likes

opcmdhistory log missing in PanOS9.1

I noticed that the “opcmdhistory” log disappeared in Panorama after upgrading to PanOS9.1.It was there in 9.0 and previous versions. Do you know why it changed and if the information is in another log file? I was using it for troubleshooting and detecting cli commands executed by other users.

batd2 by L4 Transporter
  • 1865 Views
  • 1 replies
  • 0 Likes

Min. required PAN-OS version on Firewalls with PANORAMA 9.1

Hi, I found the knowledge base article which PAN-OS versions are compatible to which PANORAMA version. For the newer PANORAMA 9.1 the informations are missing which PAN-OS versions are supported. https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClRrCAK&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArt...

maxthoma by L0 Member
  • 2979 Views
  • 2 replies
  • 0 Likes

Resolved! Getting LDAP Error

Our client is having issues with LDAP connectivity.We are trying to configure "Group Include List" in the Group Mapping Settings in User Identification but when we click on the Base DN to browse available groups, we get "Connect error". Same thing showing on CLI: PA-850-1(active)> show user group-mapping state allGroup Mapping(vsys1, type: ac...

Global Protect - Traffic interrupted while still showing connected

We are currently running the latest version of GlobalProtect (3.1.1-27) and we have encountered the following issue a few times. The user successfully connects to the company network and is able to work for a prolonged period of time.All of a sudden the connection is interrupted and the company network is unavailable. Network shares are not rea...

Two Portals, or two authentication profiles or better idea to test 2FA with global protect.

Howdy all, Relatively new to PA and GP, spent more time with Fortigate and Cisco at previous jobs. Work at a small company and until the pandemic and snowpoclypse VPN access was only given to select people, we all just came to work. I've been tasked with getting Duo Security two factor authentication set up for vpn users. Problem is we cant jus...

Access problems via Globalprotect with AD group.

Hello everyone,I am relatively new to Palo Alto solutions and I face a problem that has been going on for over a week. Could anyone help me? This is the scenario:- I have gateways 01 and 02 for the GlobalProtect.- AD groups called Grupo1 and Grupo2.- Test user named Fred. When user Fred is in Group1 he has normal access to the environment throug...

Amaro123 by L2 Linker
  • 9681 Views
  • 12 replies
  • 0 Likes

Resolved! API Keys in PanOS 9.1

Hello All.Do you know of a way to see all generated API keys on Panorama 9.1? Similar command exist on the wildfire appliance, but I could not find in Panorama. Also, does anyone know how the API generation process works in 9.1? Are they keys persistent after reboot, software upgrade or configuration reload (e.g. from backup)? What causes key re...

batd2 by L4 Transporter
  • 6903 Views
  • 4 replies
  • 0 Likes

Resolved! How to parse and filter proofpoint list

Hello,Since the default proofpoint miner is not working 'im trying to find a workaround to be able to download and filter the lists.I have tried to use the generic json or csv miner but i'm having issues with both: With the json miner I receive 0 values from the lists, I guess is not able to parse it.This is an example from the proofpoint list:{...

Block domain *.*covid*.*

Hi Teamcan we blocked domain in palo alto if domain name contains is *.*covid*.* in palo alto. I was also wondering whether blocking such domain will be better through dns sinkhole or URL filtering.

shubhamG by L1 Bithead
  • 2405 Views
  • 2 replies
  • 0 Likes

Resolved! False positive (Generic.ml) detected for our application. Can you help me white list?

Hi Support,We are getting a false positive on our application from the Cortex XDR. Can you help me with how I can get the app white listed? Application type is Win32 exeVirusTotal: https://www.virustotal.com/gui/file/1f7b6a4d788f577e1f75a25a56c9eecd8cd6d8086163c7a3341bad06d55dc0f8/detection Our site: https://kinship.io/ Please let me know what i...

ISP Router connection best practice

Hi All, Just looking for advise , pros vs cons about connecting an ISP internet feed directly to our core mpls/vpls switch. ISP Internet Router—>adva—>Core Switch(siteA)—>mpls/vpls—>Core Switch(siteB)—> Palo Alto The PA firewall will have a separate VR and will nat traffic from 10.x LAN to Public before routing out to Internet vi...

MistryJa by L1 Bithead
  • 3114 Views
  • 2 replies
  • 0 Likes

Panorama HA Firewall PAN-OS Upgrade Clarification...

My apologies for the length of this post...I am trying to understand how to best upgrade PAN-OS through multiple major releases on a configured HA set and I may not be explaining myself effectively...here it goes. I am preparing to upgrade a PA-220 HA set from 8.1.7 to 9.1.2 using Panorama to manage this upgrade... I am looking for clarifica...

Migrating Palo Alto's

Quick question regarding changing model of Palo Alto's. We're moving from a larger model to a smaller. Is there a guide I could use for this? From what I've gathered so far the two firewalls have to be on the same software version? is that the only pre-requisite? After that we can export config and import it on the new hardware? Much appreciated!

Resolved! IP Pool Assignment

We have deployed a PA-VM into AWS running 10.0.4 and are currently trying to configure Global Protect to secure our developer connections to our AWS environment. We have a Global Protect Gateway deployed and are able to establish a VPN connection. The issue we have is with the IP Pool assignment. Each IP in the pool which is distributed to a GP ...

  • 24357 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks