This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4104 Views
  • 0 replies
  • 0 Likes

Resolved! Tufin

Does anyone have experience using this in a larger environment? Multi vsys? Panorama? HA Clusters and so on. Are there better options available? Thanks in advance for your time.

After software upgrade firewall stopped to sending syslog

We upgraded PA-1410 from sofware release 11.0.2.-5 to 11.1.6-h3. The upgrade itself went well, but a few days later firewall stopped to send syslog messages. Executed tcpdump on the management port, but there is no syslog traffic at all. Checked the system resources, logrcvr servcie seems to be running. I tried to restart the service, and realiz...

Resolved! TCP MSS Physical interface settings understanding?

Hi, Can someone confirm if my Understanding for PA "Adjust the TCP MSS" is correct? Reference to this link this is how PA Firewall "Adjust the TCP MSS" value in the physical interface. In other Vendor when we configured the TCP-MSS value we usually set the "Actual bytes" Example for cisco: "ip tcp adjust-mss 1390"In PA firewall, it looks l...

Silvs13_0-1743481280686.png
Silvs13 by L0 Member
  • 2480 Views
  • 1 replies
  • 0 Likes

PA460 issues

Hi, We have two FW PA460 in HA, one active and another one passive. We have several issues related to configuration synchronization and HA: 1- Synchronization before a commit can take us up to 8 minutes. With the old FW the commit was in less than a minute and with these newer models we have gotten worse. It wouldn't affect us if it wasn't tha...

BigPalo by L4 Transporter
  • 3475 Views
  • 7 replies
  • 0 Likes

Resolved! IP Sec VPN Paloalto - Starlink

I'm testing Starlink business and having issues passing traffic over my tunnel. This remote site connects to our data center via an IPsec tunnel. I can get the tunnel up and traceroute to the remote side of the tunnel, but I'm unable to pass traffic. I have "Enable NAT Traversal" selected on my IKE Gateway. The Starlink is set to IP passthrough....

The PA-VM eval is crashing after minutes since reboot

Hello, I've created this discussion because I've downloaded PA-VM eval for ESXi [.ova] and tried to launch this using VMware workstation PRO [latest version]. I found on the LIVEcommunity some threads like so: https://live.paloaltonetworks.com/t5/general-topics/pa-vm-10-0-4-trial-gets-shutdown-after-a-minute/td-p/501973 however, once I followed...

Adam_D by L1 Bithead
  • 2321 Views
  • 6 replies
  • 0 Likes

Resolved! TCP fast open and Palo Alto

as far as I could test there is no way to make TCP fast open work through a Palo Alto fw (at least, since 9.1 which seemed to work. It tried 10.2 and 11.2 and all my tests fail there). Whenever a client sends a SYN packet with data, it is transmitted, no matter the zone protection profile, no matter whether the "TCP SYN with Data" option in the...

frigault by L1 Bithead
  • 4983 Views
  • 3 replies
  • 0 Likes

Several Medium Alerts from NGFW on : " Virus/Win32.WGeneric.eolzov(705362387)" This morning

Has anyone else seen any alerts for this Generic Threat ? It triggered on a few .LNK files that could not be located on the machines identified in the alert. This threat ID is new as of today, we have opened a support case, but was curious if anyone else was see'ing the same thing. False Positve ? Very little information on the web on these ...

TroianoF by L0 Member
  • 1127 Views
  • 2 replies
  • 0 Likes

syslog server connection failed

Hi, I have a PA VM setup and a syslog server to forwards the logs to. I have done all the configurations needed and syslogs server are receiving the logs. But on the system log there's still an error showing "syslog connection failed to server[x.x.x.x] Is this expected?

No upgrade but new applications

Hy everyOne, I've a PA-500software version 8.1.2 Application Version : 8536-7270 (03/02/22) Threat Version : 8536-7270 (03/02/22) Anti-Virus version : 4008-4519 (03/01/22) As you can see, no upgrade since March 2022 But if i make a backup and look into the XML file, i can see application : BING-AI-BASE for example or AZURE-AI Those applicat...

info by L0 Member
  • 1674 Views
  • 2 replies
  • 0 Likes

Not able to login into the firewall using admin account

Hi Folks, We are having PAN-OS:9.1.10 installed on our environment. We are able to login into the firewall using our admin accounts which are locally created on the firewall with authentication profile set as "None" Suddenly we are not able to login into the firewall and we got the below message even the account Authentication profile set to "No...

CobaltStrike.Gen Command and Control Traffic(18005) spyware

So I am fairly new to the PaloAlto brand. We installed 2 PA460's without Panorama and they replaced our Cisco ASAs. Loving what I have seen so far and it feels like I have more insight into what is going on with regards to the firewall. My issue is in recent months we have seen this CobaltStrike.Gen Command and Control Traffic(18005) spyware a...

Block Brave Borwser

Hello,I have noticed that some of our employees are using a brave browser and can easily open blocked websites like Facebook, crypto, games etc. what's the way to block brave browsers. Thanks:

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks