This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4137 Views
  • 0 replies
  • 0 Likes

Aggregate Interface MAC is not Showing in cisco switch

Hello Everyone,We have configured LACP between paloalto and cisco switch and Aggregate Interface is showing up at both end but at peer switch its mac address not showing. However physical port of other interface mac address is showing on that switch. Please suggest what is next plan of action. model: PA-5220sw-version: 9.0.5

Antivirus Policy - Action based on Severity Level

Hey All,we have Antivirus policy in place and we are seeing many, what we believe are, false positives. Mostly on PDF files. Since number is rather high, reporting each one seems a bit excessive. What they all have in common is their severity which is MEDIUM.With that said, our approach would be to deny only HIGH and CRITICAL severity event and ...

Mail alert or report for schedule policy expiry time in firewall

Hi Team In Palo alto firewall whatever the time based policies is going to expire for that we want to configure the mail alerts or reports for example if any rule is going to expire on date of 24 October we should get report or mail alert of those rules by today (2 days before) , how we can achieve this?Is it possible in palo alto ? RegardsMoham...

Resolved! Layer 2 Virtual Wire and Layer 3 in on PAN

The network I inherited has a Cisco ASA and a PAN 3220 operating asa virtual wire in serial. The NATs and most of the ACLs are at the ASAwhile the PAN takes care of other protections such as geo blocking, correlation alerting and so on.{Internet}--[Edge RTR]--[ASA]--[PAN]--[L3 Switch] I was hoping to put in another pair of PANs into our cage. Bu...

palomed by L3 Networker
  • 4522 Views
  • 1 replies
  • 0 Likes

IPSEC VPN intermittent issue

HI, I have IPsec vpn tunnel between Palo alto to cisco asa, tunnel is UP however it disconnect intermittently. Is there any way to check reason behind disconnection in logs? I have applied path monitoring but it show only UP and down logs not exact cause. ThanksDhananjay Bhakte

Live community email DMARC issue

Notification emails that I normally get from the Live community are failing DMARC checks which is causing them to be quarantined. Their DKIM appears to be invalid and SPF is also failing. This has been happening for probably a week or so. I've been unsuccessful in reaching anyone at Palo Alto to get this resolved. If anyone here is able to a...

cchaffee by L1 Bithead
  • 2975 Views
  • 1 replies
  • 0 Likes

Probably a Stupid Question Tagged Interface

This is probably a stupid question, but if I just create another Layer-3 sub-interface off of an existing physically connected interface, and TAG that sub interface, that is all I need to do to bring a tagged trunk in through an existing physical connection right? Excluding, zones, virtual routers, policies, and all that other stuff, but the con...

birkhojk by L2 Linker
  • 2155 Views
  • 1 replies
  • 0 Likes

Resolved! Fail to fetch EDL form Cortex XDR on PANOS

Hi all, I have followed on the KB (https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000CmqFCAS) but still no luck to fix the issue. service route is using default and certificate Profile is using Root CA as well 2020-10-22 23:12:22.932 +0700 EDLRefresh job started processing. Dequeue time=2020/10/22 23:12:22 2020-10-22 2...

Tutchapon_0-1603383292438.png
Tutchapon_1-1603383342710.png

Resolved! LDAP Server Profile - Retry Interval clarification

In configuring an LDAP server profile there is an option labled, "Retry Interval" I understand that the default retry interval is 60- but what does this do ? if I had 2 or more LDAP servers in this profile, would it cycle through each of them instantly and then sit and wait for the interval to pass before retrying them sequentially again ? rela...

kdruet by L0 Member
  • 3369 Views
  • 1 replies
  • 0 Likes

IPSec S2S VPN between Palo Alto and Sophos XG

Hi, I'm trying to set up a S2S between Palo Alto Sophos XG and so far it's been unsuccessful as Palo Alto is not able to find a suitable proposal for the connection. I've also tried the following the KB here. (https://www.sophos.com/en-us/medialibrary/PDFs/documentation/SophosFirewall/Pocket-Guides/Establish-IPsec-VPN-Connection-between-Sophos-a...

Step Up your SD-WAN Game event..

Hey guys, I just wanted to let you know of another SD-WAN event that is coming up on Oct 29th.. Step Up Your SD-WAN Game Special Event This is going to be a really neat online event that all registrants get a $25 GameStop gift card.. Yes, $25 for attending.. Oh, and you will also be registered for a chance to win a game console. (not sure...

jdelio by L7 Applicator
  • 2737 Views
  • 1 replies
  • 1 Likes
  • 24340 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks