General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 443 Views
  • 0 replies
  • 2 Likes

Publish Custom ACC Tabs

I created a custom ACC tab with some filtered widgets and need to share it with some other users to monitor the network over the weekend.  The users are not proficient with panorama, I basically want them to watch the tab I have created and call if X

...

PaloAlto Logs Issues

Having issues regarding the log.

cannot see any logs on the Palo alto firewall.

The changes: - we downgraded from Panos 10 to Panos 9.1.x since then we cannot see any logs.

Resolved! Changing Master Device - Panorama

We have recently gone through a firewall hardware upgrade, and the device that was replaced was our old "Master" device in Panorama. I would like to make the new device our "Master" device, but I am intimidated by the call-out "When you change the Ma

...

Getting Systems Alerts

Hello,

I am getting system alerts in my firewall below is the error:-

 

Disabled applications in vsys1: cip-ethernet-ip-disable-io cip-ethernet-ip-disable-sfc cip-ethernet-ip-enable-io cip-ethernet-ip-enable-sfc cip-ethernet-ip-read-mod-write cip-ethern

...

Resolved! Log Collector not receiving logs.

Hi All,

 

We have deployed 2xM200 Log collectors for log collection. They are registered on the panorama and show in-sync. I have done the collector-group settings. Now when I go to Panorama > Managed collector > the log collectors show disconnected st

...

VarunRao_1-1595814847860.png
VarunRao_0-1595814717239.png
VarunRao by L2 Linker
  • 23255 Views
  • 9 replies
  • 0 Likes

Betternet VPN Lemon VPN blocking

Anyone know how to block these 2 apps?

 

Betternet VPN

https://www.betternet.co/

 

Lemon VPN

https://play.google.com/store/apps/details?id=org.lemonvpn.android&hl=en_US

 

We have a BYOD at our K-12 education schools, and students are bringing their own devic

...

dannon by L3 Networker
  • 7066 Views
  • 6 replies
  • 0 Likes

How to check VPN counters for a specifc dest IP?

how to check IPSEC VPN counters in CLI for a specific destination IP address?

Peer is claiming the traffic is leaving their firewall but I don't see it on my pcaps and logs. How do I verify the traffic is actually passing through the VPN and hitting t

...

Resolved! Panorama

Just need to know is there a max size for a Panorama log file and if so what is that size, currently we are at 1.6TB and want to make sure we are not over the limit and into possible file corruption scenario

dttech by L1 Bithead
  • 2290 Views
  • 2 replies
  • 0 Likes

Hyper-V Compatibility issues

Hey,

I'm running a 3 Node S2D on Server 2019.

Currently migrating from VMware Hypervisors which has the Palo Alto running on it, instead of doing a Migration\Conversion i want to build a new server.  

 

I'm trying to setup a Palo Alto VM-300 Series Virtu

...

System alerts

Hello Team,

I am getting system alerts in my firewall below is the error:-

PAN OS - 9.0.6

Disabled applications in vsys1: cip-ethernet-ip-disable-io cip-ethernet-ip-disable-sfc cip-ethernet-ip-enable-io cip-ethernet-ip-enable-sfc cip-ethernet-ip-read-mo
...

Resolved! Global protect static IP

Hello Team,

 

Is there any way to configure static IP for VPN(Global Protect) users.

 

Example:-

I have an IP pool - 192.168.1.0/24

User A, UserB, User C

Authentication profile is (Active directory)

When user A will connect through the external gateway for t

...

Resolved! PA-5020 to 5220

we are planning to upgrade ur existing PA-5020 to bigger boxes. our current 5020s are struggling to handle the ssl decryption and it sometimes give ''Dataplane CPU under severe load'' logs on busy days. I heard 5200 series are specfically designed fo

...

Inbound SSL decryption - Digicert

If inbound SSL inspection when using Digicert certificate is not supported, what is the alternative. We have many web-servers using same wildcard cert used for GlobalProtect and wanted use this same certificate but it doesn't work. Is there any other

...

raji_toor by L4 Transporter
  • 9554 Views
  • 15 replies
  • 0 Likes
  • 23702 Posts
  • 110 Subscriptions
Top Solution Authors
Labels