General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 411 Views
  • 0 replies
  • 2 Likes

Panorama upgrade failing 9.0.5 to 9.0.8

I am getting below message at around 70%

 

 

Operation
Software Install
 
Status
Completed
 
Result
Failed
 
Details
  • Failed to install 9.0.8 with the following errors.
  • SW version is 9.0.8
  • Installing [content ] into partition "pancfg"
  • Nothing to install into /mnt/swm
...

raji_toor by L4 Transporter
  • 2818 Views
  • 2 replies
  • 0 Likes

Globalprotect, unable to connect

Hi, I am not a techy person but I have to install Globalprotect in order to work from home, the error I'm getting is: Connection failed: No network connectivity. Please verify your network connection and try again.

 

I'm not sure what the problem is. P

...

Juliette by L2 Linker
  • 32049 Views
  • 26 replies
  • 0 Likes

Resolved! RECOMMENDED NUMBER OF USERS

Good Morning Colleagues
I hope you are doing good . May i know the recommended number of  simultaneous users for the below configuration:

  • Firewall Throughput: 5 Gbps
  • Threat Prevention Throughput: 3 Gbps
  • IPSec VPN Throughput: 3 Gbps
  • New sessions per second
...

Resolved! Shared Gateway cannot able to mange from Panoroma GUI

Hello Community,

I have Panorama M-500 that managed cluster of PA-5000 with some Virtual System, I use one Device Group for one VSYS.

Now I need to configure the Shared Gateway.

It seems that I can manage the NAT Policy related to the Shared Group only

...

Unable to reboot Panorama

An old contractor setup our Panorama and I just tried to update the software.  It says I do not have permission to reboot Panorama.  I am a superuser.  How do I give myself permission to reboot Panorama?

Resolved! Unsupported Cloud Type For Remediation

Given the Prisma Cloud SaaS, I am trying to create my 1st custom policy to detect and remediate overly permissive SecurityGroupIngress rules in AWS cloud.

My RQL below is valid and returns a half-dozen or so results...

event where cloud.type = 'aws' AN

...

TommyHunt by L3 Networker
  • 3199 Views
  • 1 replies
  • 0 Likes

Resolved! SLR Report - Get stats-dumb

Hello @all,

I would like to get a stats-dumb file which will be later used to generate an SLR report.

Since the timeframe (1 Week) via the PA GUI is not long enough for us, I use CLI with the following command to generate the file:

 

tftp export stats-du

...

PAN1.PNG
PAN2.PNG
husetech by L2 Linker
  • 8636 Views
  • 4 replies
  • 0 Likes

GlobalProtect dns dynamic updates

We deny DNS outbound except for domain controllers.  I noticed a lot of denied DNS entries on the firewalls for users coming through globalprotect.  Looking at the packet captures, the traffic is destined to the domain name's public name server ip ad

...

MikeC by L3 Networker
  • 6183 Views
  • 7 replies
  • 0 Likes

Email Scheduler Not Working Consistantly

Hey Everyone,

 

I am running into an issue where custom reports that I have built that are sent on a daily basis aren't being sent consistently.

 

I have 3 different Email Server profiles being used in four different Email Schedulers sending two differen

...

Palo Also email.jpg
Palo Also email 2.jpg

Superuser cannot access Edge FW

Our PAs were recently setup by a now former contractor and all templates appear to be the same.  However, while our new contractor is able to access all of the internal FWs, he is not able to access our edge FW.  Any ideas?

DAG and Panorama

When looking at Dynamic Address Groups along with Panorama, it almost looks like this can't be done unless you are using NSX.  I setup the VM Source on one of my firewalls and I can do a DAG, but it doesn't transfer back to Panorama inorder to use it

...

gzygadlo by L1 Bithead
  • 2671 Views
  • 1 replies
  • 0 Likes

Block Brute Force RDP attempts

I have a Palo Alto 820 up and running, and one of its roles is to publish an terminal server (on its default port3389, the Terminal Server have an 2 factor authentication mechanism.)

 

I see lots of connections, and i would like to block this brute for

...

Sjoerd by L2 Linker
  • 9678 Views
  • 7 replies
  • 0 Likes
  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels