General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Problem accessing internet when install globalprotect Mac

Hi.I've updated my macbook to MacOS Big Sur. After that, I had internet issues. So, I uninstalled the globalprotect and the internet returned normally.Now, I installed globalprotect again and my internet is not working again. This problem occurred when I allow "System software from Palo Alto Networks was blocked from loading" in security and pri...

Condina by L0 Member
  • 2758 Views
  • 1 replies
  • 0 Likes

Migrating from 5060 to 5220

Hi, We are planning to migrate from 5060 to 5220 both should be in PAN-OS 8.0.7 releases.As per article at https://live.paloaltonetworks.com/t5/Management-Articles/Hardware-Migration-from-PA2000-to-PA3000-or-PA5000/tac-p/156354#M4307 taking device state from older platform and importing to the new one should work.Has any one done it and experie...

IKEv2 - Unexpected ipsec key delete event

Hi All, I'm a medior network engineer who just got into a new position where I deal with PA FWs. I face the following issue now: There is an IPSEC site-to-site VPN between my PA-850 (ver. 9.1.3) and a remote FW (I'm not sure about the remote device type). I see strange behaviours. Yesterday 3 pm the rekey happened. It finished with ikev2-nego-ch...

olloczky by L1 Bithead
  • 7483 Views
  • 2 replies
  • 0 Likes

I'm looking for a device concurrent connection number adjustment function through session management

HelloI'm using PA-5050 now. I am looking for ways to prevent multiple users from accessing the equipment at the same time through session management.I thought I could do it on the Device-session tab of the WebUI, but I don't think there are any related functions.If you haven't found it, I'd appreciate it if you let me know which menu you can tak...

Resolved! Don't see HA1 and HA2 ports

I am following this article "How to Configure High Availability on PAN-OS" to configure HA on our new PA-850. I don't see HA1 and HA2 ports. Or where I can configure HA interface?

ha1.jpg
boblin by L2 Linker
  • 8071 Views
  • 6 replies
  • 0 Likes

Kafka is using port tcp 9093 for private communication

I see Kafka streaming is using port 9093 but in the PA 5220 does not identify it as kafka (unknown TCP). the app-id DB is showing kafka with tcp port 9092. is there a way for PA to append it to kafka app ID ? I already added as a custom app but i think i am missing something since i still see it as a unknown tcp.

Resolved! Ubuntu connected with PA firewall (AWS instance) trusted network can't ping untrusted network

My PA-VM is AWS EC2 instance using software version 10.0.2. 10.20.10/24 is VPC's public subnet, 10.20.61/24 is VPC's private subnet. Ubuntu10.20.61.81 can ping 10.20.61.61, but can't ping 10.20.10.0/24 network. Ubuntu 10.60.0.100 can ping 10.20.61.61, but can't ping 10.20.61.81. I have allow 10.60.0.0/24 in the ubuntu10_20_61_81 Security Group.W...

Susan_Avxt_1-1608101823548.png

Panorama backup query

Hi Team Currently we have two Palo Alto Firewall & one "Panorama" but we are getting only Panorama backup. we want to confirmation whether Panorama having only panorama devices backup( Excluding Palo alto Firewall ) or its having including Palo alto Firewall. RegardsMohammed

Resolved! Using Python to perform a Commit/Commit-all on Panorama

I am trying to use a Python AWS Lamdba function to commit/commit-all changes after the lambda function has made the appropriate updates to the Panorama. My problem is that the commit-all API call happens too soon after the commit API call and the commit-all does not have any committed changes to process. How can I wait for the commit job to com...

Resolved! Remove devices form the customer portal

Hi there, We have several older model devices that we no longer use in production so I wanted to remove them from the customer portal. I don't see an obvious way to do this so I wanted to put the question out there. How do I/ can I even, remove devices from the customer portal?

Jamesy by L2 Linker
  • 7442 Views
  • 3 replies
  • 0 Likes

INFO gave up: minemeld-engine entered FATAL state

Hi,I am using ubuntu 20.04,Installed minemeld using docker and using minemeld on web interface.I am getting this error and the below log:$ sudo docker logs minemeld*** Running /etc/rc.local...*** Booting runit daemon...*** Runit started as PID 8minemeld: checking if dependencies are running...run: redis: (pid 21) 0srun: collectd: (pid 18) 0sCopy...

minemeld_ui.jpg

Resolved! Zone for vpn

Hello , We have currently three diffent zones defined . Zone A vlan 100. For wired users Zone B vlan 200 for wireless users Zone V tunnel/ loopback interface for Global protect users. All the above users mentioned are corp users. Now customer wants to create. single zone called "All users" and want to put vlan 100 200 and loopback/ tunnel into i...

Resolved! Session moves from ACTIVE to DISCARD in middle of download once zone protection enabled.

Hi Community,I am seeing the below behaviour in my PA-850 running on 9.1.4. Security policy is allowed for traffic.Scenario-1, without zone protection in internet zone - Everything works fin Scenario -2,Having zone protection with pretty much all options enabled for 'IP Drop' and TCP drop' and other options as well. Applied it on internet zone.E...

  • 24395 Posts
  • 123 Subscriptions
Top Solution Authors
Labels