This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4257 Views
  • 0 replies
  • 0 Likes

Resolved! HIP Profile monitor only initially

Hello , We have got requirement to implement HIP profile for GP users ; But first we want to run it in Monitor mode without any enforcement or without blocking any users Below are the requirements OSWindows 10 AVMcafeeAV updates not older than5 daysPatch management/Disk encryptionEnabledFirewallEnabled So do i just have to create HIP Object w...

Resolved! Use office 365 as email relay?

Did I miss the option that allows one to configure a port, TLS, and authentication on the mail profile? We've moved to Office 365 and would like to send alerts/notices from our remote firewalls directly to the office 365 servers. We can use an iis relay as a solution to the issue but we would prefer the firewalls send direct to Office 365. TIA!...

GP assignments to DNS servers

Hello!Does anyone knows if it's possible that the information of IP assignment/deletion for Global Protect users could be updated to Windows DNS servers? Thanks a lot

BigPalo by L4 Transporter
  • 2091 Views
  • 1 replies
  • 0 Likes

BGP related query...

We have configured three interface :-1) Trust Network- Behind eth1/12) Untrust Network- configured on 1/63) Azure network:- Configured on 1/9 - We are planning to configure BGP in VR . Our Objective is:-1) BGP peering would be with ISP router connected on eth1/9.2) Only 1 host Server behind eth 1/1 can learn BGP routes and all other subnets an...

Correlated Event Log Fields Lacking

Is it me or is there no way to include the actual URL that was accessed by a network source in a "Correlation Log" event (v9.0.9 firmware) . From what I can tell on, other than a generic message like "Host visited known malware URL (X times)". It would be great to know "what" was accessed in the same event so that information can be made availab...

How to pull Custom Reports using API

Hi all,I have created some Custom Reports by GUI, query: action allow & addr src=<IP_address>.Now I am trying to pull those Custom Reports via API, but I cannot find documentation for this.Can anyone please let me know how to pull created Custom Reports using API from the Panorama.Thank you very much!Regards,

nguoiech_0-1603878899780.png
nguoiech by L0 Member
  • 2808 Views
  • 2 replies
  • 0 Likes

Panorama Confusion

I have a PA-3020 V8.1.7 and Panoram V8.18 VM (ESX) I simply require Panorama to both manage the 3020 and collect it's logs. I have tried to follow endless instructions on how to achieve this but now seem to be struggling with different Panorama modes and log collectors... I have added the additional 2T disc as required and although I can manage ...

Mick_Ball by L7 Applicator
  • 12501 Views
  • 15 replies
  • 0 Likes

FAILOVER IP with PALOALTO

Bonjour, Je suis nouveau sur ce forum veuillez m'excuser si je suis dans la mauvaise catégorie du Forum. Nous possédons 2 routeur PALOALTO series 800 en HA ACTIF/PASSIF.Vu que nos switch's ne sont pas compatible avec le NLB (Network Load Balancing de chez MS) nous souhaitons voir côté Routeur.Est-il possible de faire du FAIL-OVER IP sur les Rout...

ilyasour by L0 Member
  • 2690 Views
  • 2 replies
  • 0 Likes

Resolved! Unable to login to Minemeld WebUI

Hi, I created a new Minemeld instance on VMware fusion but unable to log in using the default username/password. I get this error "Error checking credential: bad gateway" Can someone please help. Logs ======= sudo -u minemeld /opt/minemeld/engine/current/bin/supervisorctl -c /opt/minemeld/local/supervisor/config/supervisord.conf statusmineme...

Traffic and Threats not visible in Panorama Monitor despite logs are send from FW to Panorama

It's a while since our system of 3 HA Palo Alto Firewalls stopped showing logs in Panorama. The logs are generated and forwarded to Panorama as in next two pictures:Panorama-receiving logsOne of FW sending logsTraffic and Threats not visibleOn one of webpages it was suggested we need additional license for wieving logs in Panorama? licensesSumm...

panorama-receiving-logs.jpg
firewall-sending-logs.jpg
panorama-gui-not-showing-traffic and threat.jpg
panorama-licenses.jpg

VM100 Base config CLI only

HI all, Hope i can find someone amazing out there.We have a VM100 that can only be configured from CLI as the provider that does not support any way to access a VM or webUII spent 4 hours on the phone with Palo Alto support and they could not help me.Quick Break down.simple /30 link using vlan 948Palo Alto ip 172.20.0.82 MPLS ip 172.20.0.81 Here...

RobC-AU_0-1603774892727.png
RobC-AU_1-1603774967244.png
RobC-AU by L1 Bithead
  • 4049 Views
  • 5 replies
  • 0 Likes

GlobalProtect agent download speed very slow

I am on a 3220 8.1.10 and agent version 5.0.5. Downloading the agent from the portal is very slow; usually less than 1M. Network, upload speeds, etc. checks out, so it appears to be just downloading the agent. Portal and gateway config is using loopback setup and non-standard ssl port. This can be an issue when we have remote users on poor Inter...

Resolved! Licencing query, migrating a Panorama VM to a new host.

Hi All, Hopefully a straightforward question, but I can't find a definitive answer in the documentation. If we were to use vMotion to move a Panorama VM from one ESXi host to another (and re-ip the VM after it's moved) would there be any licencing implications to consider, or would everything continue to work as before? Many thanks.

Resolved! Breaking Out Specific Ports from a VPN Tunnel for a Client IP breaks INET

Hi All,I am running a PA-850 in my data center. All of our internet-destined traffic goes into a catchall VPN and goes off to a cloud security company called Zscaler for processing before it goes onto the internet. However, for the IP of my machine, I do not want TCP ports 22 and 10443 going to Zscaler. I want any TCP 22 or TCP 10443 traffic s...

Palo.PNG
  • 24362 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks