This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4455 Views
  • 0 replies
  • 0 Likes

Gemalto with Paloalto

Dears, I want to configure two-factor authentication for the device administrator.Example:- If any admin login in the firewall. the first authentication should be Active directory and the second authentication should be Gemalto. If it is possible please share the configuration documents.

Resolved! Data center firewall design?

Hi All,I have couple question in mind when I’m think about implementation PAN firewalls in Data center design. In reviewing design guide “Designing Networks with Palo Alto Networks Firewalls”, mostly where described perimeter firewall with upstream untrusted networks, exceptionally where we got hierarchical design with trunks between aggregation...

Tician by L3 Networker
  • 14622 Views
  • 11 replies
  • 0 Likes

Resolved! Static routing question

I'm managing Pan's on a daily basis, just basic stuff: creating policies, monitoring etc. but routing is something I never had to do before, so I hope I can get a little help from you out here. It would be really appreciated !We are in the process of getting our telephone system to a cloud-based one.Itried the softphone and it connects when I'm ...

Slager by L0 Member
  • 2757 Views
  • 1 replies
  • 0 Likes

Resolved! Tools and Techniques to Speed ASA to PAN Migration

I wondered if the community could advise on any methods to migrate configuration from a Cisco ASA 5525 to PAN 3220. Are there any tools that could assist? Just being able to migrate objects and object groups we be a big help. I only have about 100 access rules so that's not too bad. Thanks for any ideas.

palomed by L3 Networker
  • 4840 Views
  • 3 replies
  • 0 Likes

Blocking Amazon Sample music

Is there a way of blocking the sample tracks on Amazon.We are seeing students at our school playing the 30 second clips of explicit songs.This can be a problem in a classroom!

Certificate error on GP access

Dear Team, I am facing the issue certificate error while accessing the GP portal. below is the screenshot. Below is the troubleshooting steps:-Generated a new self-signed certificate and apply in SSL/TLS.Same certificate export and configure in the machine as well as browser.Can anyone help me on this? Clear the

Jafar_Hussain_0-1601894358196.png

Resolved! External Dyanmic List Issue

We are planning to feed our Firewall with new EDL. This EDL using client Authentication with SSL certificate. I already imported the CA and Intermediate Certificate and created Cert Profile. the issue is URL error access... I checked the traffic and it is allowed to EDL site.Any Help!Please

Wildfire categorizing as cat=THREAT but not sure why? How to update FPs?

Hi everyone,Apologies in advance if this has been asked, but this is my first post re: Wildfire. We receive e-mail alerts via our SIEM when something is categorized as malicious from our PA device, but I noticed that all that is listed within the payload that tells me why it was categorized as a threat is: "cat=THREAT" As well as the hash which...

Resolved! Past PAN-OS version

Hi Community, Is there a way to find out all the PAN-OS versions which were uploaded, installed and executed on a Palo Alto firewall in the past? Guess this information is hidden somewhere on the TSF but have been unable to find where it´s stored. Thanks.Ho.

HonoAl by L1 Bithead
  • 4846 Views
  • 3 replies
  • 0 Likes

Resolved! Content Update Issue

Hello, I am trying to update my OSS PA but am receiving an error of "failed to update content with following message encfilesize." I have tried different content versions and the result is the same. The contents are transferred to the PA via SCP. And unfortunately, I can't update PanOS without being able to update the content first. There i...

COlson by L2 Linker
  • 4324 Views
  • 2 replies
  • 0 Likes

Voice Call Signalling Issues - Hold, Transfer, Call Pick-up all randomly fail

At a handful of locations when someone calls in and the staff go to pick-up the call it does not pick-up and continues to ring on other phones in the office. When they place someone on hold, sometimes it does not come off hold and they call is dropped. When they transfer someone it does not always transfer the call. Cisco Call Manager shop.We ha...

Unencrypted HTTP basic authentication not flagged as a risk/threat?

I was doing a side-by-side comparison of various IDS/IPS sensors, including an inline Suricata sensor, as well as my PAN firewall. Suricata throws an alert if it detects that an HTTP Basic Authentication event crosses the sensor over an unencrypted connection, but the PAN firewall doesn't. This should throw an alert of some kind, as HTTP Basic A...

Master Key Deployment from Panorama

Has anyone deployed a new master key from Panorama to an HA pair? Following the process at https://docs.paloaltonetworks.com/panorama/9-1/panorama-admin/manage-firewalls/manage-the-master-key-from-panorama.html it doesn't mention anything about HA. Per https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/certificate-management/configure-the...

mb_equate by L3 Networker
  • 2176 Views
  • 1 replies
  • 0 Likes

Resolved! How to disable config sync in a HA pair?

Hello,I'am using to PAN devices in a HA pair, and i want to make some changes on one and not on the other before doing a switchover. Can i disable only config synchronisation and let all the other HA functionality up?Regrds.

asia by L3 Networker
  • 15642 Views
  • 6 replies
  • 0 Likes
  • 24377 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks