This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4121 Views
  • 0 replies
  • 0 Likes

Not able to login into the firewall using admin account

Hi Folks, We are having PAN-OS:9.1.10 installed on our environment. We are able to login into the firewall using our admin accounts which are locally created on the firewall with authentication profile set as "None" Suddenly we are not able to login into the firewall and we got the below message even the account Authentication profile set to "No...

CobaltStrike.Gen Command and Control Traffic(18005) spyware

So I am fairly new to the PaloAlto brand. We installed 2 PA460's without Panorama and they replaced our Cisco ASAs. Loving what I have seen so far and it feels like I have more insight into what is going on with regards to the firewall. My issue is in recent months we have seen this CobaltStrike.Gen Command and Control Traffic(18005) spyware a...

Block Brave Borwser

Hello,I have noticed that some of our employees are using a brave browser and can easily open blocked websites like Facebook, crypto, games etc. what's the way to block brave browsers. Thanks:

application showing as incomplete + ipsec tunnel issue

Hi, I have an IPSec tunnel to a 3rd party, which we have some intermittent issues with. at the time that 3rd party lose its connection to us, under monitor> traffic I can still see traffic flowing but with application showing as incomplete. as I understand, incomplete could mean that source start a 3-way handshake but doesn't get a syn ack b...

AY_FASAR by L1 Bithead
  • 1846 Views
  • 3 replies
  • 0 Likes

Upgrade with High avaibility

Hi everyone, i've 2 PA-500 with no contract since 2022. Now i've to made change but the commit doesn't work because error duplicate application name "Bing-Ai-Base" i can make an upgrade but we didn't make that since march 2022. How can i make an upgrade on one of the two PaloAlto without impacting the other one (in case i've a upgrade issue, ...

info by L0 Member
  • 778 Views
  • 1 replies
  • 0 Likes

Resolved! Export/Import Named Configuration Snapshot

Hi everyone! Can someone confirm that the subject can only be done by "superuser" account? I can't find any documentation that says so. I'm wondering because "export device state" is visible for superuser account, when using a "device administrator" (dynamic role), "export device state" is not visible. Both Export and Import named configuratio...

RVizcarra by L4 Transporter
  • 6249 Views
  • 7 replies
  • 0 Likes

Resolved! Changing priority between eBGP and OSPF learned routes

I have an interesting problem that I haven't found a satisfying solution for. I have various remote sites connected via private circuit with OSPF, and then IPSec VPN with eBGP learned routes. The administrative distance of eBGP is 20, and the administrative distance of OSPF is 30. I believe these are the defaults. Right now, if there are two pa...

khsieh by L2 Linker
  • 15785 Views
  • 10 replies
  • 0 Likes

GlobalProtect Authentication failed Error code -1 after PAN-OS update

We are on PAN-OS 8.0.6 and have GlobalProtect and SAML w/ Okta setup. It has worked fine as far as I can recall. However when we went to upgrade to 8.0.19 and any later version (after trying that one first), our VPN stopped working. The client would just loop through Okta sending MFA prompts.On the web client, we got this error: "Authenticat...

2019-08-24_20-40-33.png

i could noti nstall the image,

i need help for the upgrade. I have down the image. but when i try to upgrade, i did not find any device or panorama to be select I only have small window for the upgrade i need help now

Weiweili by L0 Member
  • 635 Views
  • 1 replies
  • 0 Likes

removing a Palo alto from my portal

Hi everyone, I had a polo alto firewall that I sold on ebay as I no longer needed it, it's out of licence/ support. How can I remove it from my portal? Would that impact the ability of the person who bought it from me to use it at all? Thank you

nevolex by L3 Networker
  • 720 Views
  • 1 replies
  • 0 Likes

Resolved! PANOS 8.0.4 warning ipv6 not enabled on tunnel interface

Hello All,I just upgraded to 8.0.4 and now when I commit the tunnel interface associated with my external GP gateway gives a warning that "ipv6 is not enabled on the tunnel interface tunnel.1. IPv6 address will be ignored!"Did something change in the gateway configuration. I've gone over and over a few times and am not finding a reference to I...

dan731028 by L3 Networker
  • 20395 Views
  • 15 replies
  • 0 Likes

Resolved! maximum number of bgp routes for VM-series

Hello Community, I found that the BGP forwarding table size entries for VM-Series FW (VM-100 to VM-300) ranges between 100 to 5000. Does it mean that if the number of advertised BGP routes received by the FW exceeds the forwarding table capacity this can lead to issues?

M.Fassel by L0 Member
  • 1520 Views
  • 2 replies
  • 0 Likes
  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks