General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 89 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3331 Views
  • 2 replies
  • 14 Likes

Resolved! Palo Alto Proxy IDs Bidirectional?

Hi everyone,

I am a bit confused about proxy IDs when it comes to tunnel negotiation. Lets say I have a tunnel I am building with a vendor. My encryption domain will be 192.168.1.0/24 and my vendor will have 192.168.2.0/24. So lets also say the vendo

...

PAN-186584

Happy Friday, 

 

Have anyone experimented similar  behavior reported under PAN-186584 on VM-Series?

#PAN-186584

Pre go-live Health checks for auto deployed VMs in AWS

Not sure how to post in the automation section anymore as it now has been moved to read only.

 

Anyways.. need some insight please.

so we recently did a POC to use Terrarorm to autoscale / deploy VMs in AWS cloud. all good and working.

However we nee

...

PA_nts by L3 Networker
  • 444 Views
  • 2 replies
  • 0 Likes

Resolved! Why cant a URL be used directly in a policy?

Hi, 

I understand that to block an individual URL it has to be in a custom category before it can be used in a policy as a destination. For my own education and curiosity, my question is why must it be in a category? What is the processing logic in th

...

ABurger by L0 Member
  • 725 Views
  • 2 replies
  • 0 Likes

HA mode with vwire

Not sure it this is the right location for this question but here we go ...
I'm trying to replace 2 transparent ASA's in ACT/STDBY with 2 Palo's in the same setup vwire ACT/PAS. Current setup is the asa's are connected to 2 vpn servers in ACT/PAS conf

...

Chromebook usernames in Palo Alto logs.

Hi,

I was wanting to know if it is now possible to have the Palo Alto firewall log url traffic with the username from chromebooks.  It shows the username for all windows users as it syncs with AD, but can't get the chromebook users to show up.  I set

...

dholmes by L0 Member
  • 738 Views
  • 3 replies
  • 0 Likes

how to disable the url-cloud-connect

the customer firewall pa3220,version :10.2.1, the mgt interface could not access internet,so that firewall could not upgrade the url database.

but the system log dispaly some high log:url-cloud-connect-failure,the customer want don't see these log.

fir

...

Felixcao by L3 Networker
  • 2171 Views
  • 3 replies
  • 0 Likes

VPN event messages keep receiving

Hi,

I have two IPSec tunnel configured between Azure PA firewall and cisco router.

worried about continuously getting the informational event logs ikev2-nego-child-sart,  ikev2-nego-child-fail & ikev2-recv-p2-delete

Did the setting DH group to No PFS

...

VirupakshaRajapur_0-1691068863263.png

PA-5400, 3400 series DP memory check

Dear Team,

 

For existing firewall models, I can check the DP's memory through the 'tail follow yes dp-log dp-monitor.log' command.

 

However, new devices(PA-3400, PA-5400) do not have a dp-log path itself.

 

Is there a way to check dp memory on new

...

Resolved! Ha config not in sync

Hi Guys.

I have a Palo 220 in HA A/P managed by the panorama.

The customer made mgmt IP change and Added a Zone but then ever since the config is out of Sync Between the HA pairs.

So all the articles are referenced, request high-availability sync-to-

...

Pras by L4 Transporter
  • 1055 Views
  • 4 replies
  • 0 Likes
  • 24126 Posts
  • 100 Subscriptions
Top Solution Authors
Labels