This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4228 Views
  • 0 replies
  • 0 Likes

Resolved! Link down between Firewall and Syslog server

Hi all, I'm looking for any KB or official document that explain the log forwading behavior when link between FW and Syslog server is down. As I understood that PA firewall will not resend the the log at the moment of link between them is down to sylog server once the link is back.

Resolved! Share level Yellow

Hi @lmori and @xhoms In MM 0.9.46 we have the "libraesva" miners prototypes. All of them with share level Yellow. But we don't have an output prototype with this share level. I tried to create a new one from std.feedHCGreen, but it doesn't allow to change the share level to Yellow. What is the best way to create an output prototype with share le...

URL Categories and SSL Decryption

I'm having an issue with URL Categories and SSL Decryption. I have two decryption policies; the first is a no-decrypt policy for URL Categories matching "financial-services" and "healthcare-and-medicine," and the second policy is a decrypt-all for service-https. The second rule is working great and decrypting traffic as expected, however, the fi...

Resolved! Panorama can't proxy web interface after upgrade to 8.1.16

Upgraded Panorama to 8.1.16. No issues with the upgrade. Upgraded all our PA-220s to 8.1.16. No issues with the upgrade. Upgraded our PA-5220s to 8.1.16 (from 8.1.9-h4). If I connect directly to the management IP, I can login to the web interface. If I use Panorama's drop-down list to switch to the firewall, it gives a "createRemoteAppwebSes...

fjwcash by L4 Transporter
  • 18345 Views
  • 18 replies
  • 2 Likes

Caveats for HTTP Header Insertion for GDrive / Google Apps

As of the time of this writing (May 2020), there are some caveats / required steps for HTTP header insertion into GDrive applications that are not clearly documented. The purpose of this post is to close that gap until documentation is amended to correct this (Documentation has now been updated - Oct 2020 update) 1. DecryptionAll google apps are...

KPawlak by L1 Bithead
  • 6274 Views
  • 1 replies
  • 5 Likes

Windows 10 Global Protect (Version 3.1.1) Portal Config Does Not Exist

Greetings I have a new laptop. Windows 10. I have installed Global Protect version 3.1.1. After entering the portal IP and user log in information I cannot connect. Details of the log are as follows: etWscEvent(T9344) 10/21/16 12:49:07:580 Debug( 526): WscCallback(T9344) 10/21/16 12:49:07:580 Debug( 528): SetWscEvent(T5828) 10/21/16 12:49:10:...

oknott by L0 Member
  • 6495 Views
  • 3 replies
  • 0 Likes

VM-100 under Dell PE2950 - and new suitable HW...

HiWe have had a VM-100 under VMWare 6.5 ESXi on a 32Gb Dell PowerEdge 2950 for a few years now. We serve a 250 students' high school with dorms so the FW works around the clock... Throughput has been ok with few complaints, but when I checked the monitoring on the VM this morning I saw that CPU load was alarmingly high. See screenshot below. ...

PE2950-VM100.png

Skype for Business Server 2015 - Block only instant messaging

We are currently developing a proprietary WebRTC solution which we will use to replace Skype for Business. We are currently looking to roll out instant messaging on the custom product and would like to disable/block only instant messaging traffic in our Skype for Business environment.Curious if this is possible as I feel the application would u...

TeamPBS by L0 Member
  • 2693 Views
  • 1 replies
  • 0 Likes

Clientless VPN

Hi Team, Iam facing the issue with clientless VPN when I open the application and checked the some tab in application they are not loading. when i take the packet capture i found lot of error" Ignore Unknown records". TAB are not Loaded.

Joshan_Lakhani_0-1604516773282.png

Resolved! Config push from Template stack failing for one HA pair, without any error message

We recently added a new firewall to Panorama (Pan OS 9.1.4) and included it in the existing Template stack. The deployment went fine.However, the config push to this template stack is failing without any error. If we click "Commit All", we don't see any error message. It just get stuck at this screen: Validation also fails without giving any inf...

AmitSailWish_1-1604468434067.png
AmitSailWish_2-1604468510986.png

KnowBe4 Phishing Training and WildFire testing

My company uses KnowBe4 for email phishing training. During our current campaign we discovered that test emails were getting opened and attachments or hyperlinks were triggered identifying a test failure. This happened when the user could not have opened the email as they were not at work, nor did they have remote access. Upon further inspect...

Resolved! panorama HA sync

The physical firewalls was relocated and renamed from FWDAN-BYTWAN01/02 to FWSCO-BYTWAN01/02 with new mgmt. ips.Then we removed and added the firewalls back to one of the Panorama (vaemp-pan01) which was active that time. But the other panorama (vaalb-pan01) is still showing old names and discounted. Do we have to manually add the Firewalls agai...

MineMeld and Prisma Access API

Hello everybody, has anyone ever worked with MineMeld and the API to Prisma Access. There is this PrismaAccess (https://github.com/PaloAltoNetworks/minemeld-prisma-access) API extension for MineMeld (I know it is only experimental) but I would like to test it anyway. I have created the miner, processor and output. But where and how do I put th...

jschwier by L1 Bithead
  • 2859 Views
  • 1 replies
  • 0 Likes

Issue with PBF Symmetric Return

We are running PanOS-10.0.2 on our PA-220 and we are having an issue with a PBF rule which seems to be denied even though it should match the traffic. The setup:2 WAN interfaces:Primary = PPPoE interface on ETH 1/5. Route is added to router when PPPoE is online with metric 10Secondary = "Normal" interface on ae1.100. Static route is in router wi...

2020-11-02 15_06_01-Window.png
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks