This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 591 Views
  • 0 replies
  • 0 Likes

GlobalProtect Pre-Logon NULL issue

Trying to setup new config for pre-logon, seems to be not working. I am getting machine certificate null error. 

First i was using internal PKI but then i found this KB and i was hitting the same issue.

https://knowledgebase.paloaltonetworks.com/KCSArt

...

image.png
image.png
image.png
image.png
raji_toor by L4 Transporter
  • 10851 Views
  • 12 replies
  • 0 Likes

Resolved! Site to site tunnel routing issue

I have 2 ISP. My site to site VPN is configured at on 1/10 (ISP A).I want to move my all vpn to other isp1/9(ISPB). Once i change is interface from ike gateway and add the virtual route toward (ISP B) tunnel is up but traffic is not passing through t

...

How to Collect HTTPS on PA-3020?

Hi.

It's a question about my client's request.

The customer is using PaloAlto Pa-3020 (PAN-OS 7.1.23), and wants to collect https information (log) through the firewall. The customer told me, "I (customer) know that you need to install a private certif

...

Resolved! Two ISP connections - one primary / one guest network

Hello,

Today we have one interface designated as a WAN interface that manages our IPsec tunnels, GP Portal/Gateway, NAT for Websites, and business web browsing and needs.  We have a second internet connection that we use for a guest network that goes

...

cmateam by L3 Networker
  • 9840 Views
  • 8 replies
  • 0 Likes

SIP Trunks failing

Hi All, Im a Telephone system installer and have installed a system with SIP trunks which authenticate with the public IP (not register user name/password)

The SIP trunks remain working at all times for outgoing fails after a time normally about a day

...

palo alto.png

High DP utilization alert

Palo-Alto event “Dataplane under sever load” triggers when the CPU utilization is 100%.   

In Palo-Alto firewall is there any option to set threshold for the CPU Dataplane , means if CPU Utilization is to 90 or 80% it will generate alert in system log

...

Deepak_K by L3 Networker
  • 3993 Views
  • 1 replies
  • 0 Likes

Resolved! HA Path Monitoring using virtual-router

So, I am new to Palo Alto firewalls and have had an interesting time getting to know their functions.  I have a question which I have not been able to find the answer on regarding HA path monitoring setup specifically with a virtual router.  Albeit,

...

Unable to Upgrade a PA-3050

I've purchased a used PA-3050 that's currently running version 5.06 to 6.0, but I'm running into trouble with first upgrading the content version. I'm getting an error about needing content version 401 or greater.

 

I've tried to do a content update vi

...

Global Protect Enforcing VPN

Hello, 

I need to enforce VPN so users will not be able to access Internet unless tunnel is establish or wired corporate network is connected. Users should also be required to supply credentials and MFA every time the tunnel is built when accessing fr

...

SSL inspection decrypt error from some client

Hello to all,

 

We have a linux website that we made working with inbound ssl inspection by disabling curve25519 / x25519.

Some clients report errors ( always showing as decrypt errors on the monitoring) accessing the site: by taking a networrk trace on

...

  • 23927 Posts
  • 113 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks