This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 291 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 969 Views
  • 0 replies
  • 0 Likes

Migration from 5060 to 5260

Hi Team, 

 

Currently working on a PA migration 5060 to 5260. I tried to import the config in to the expedition tool, which  is exported from PA-5060 appliance. I found the below error on expedition.

I also tried to import it after converting to zip fil

...

SureshBalaji_0-1588058641095.png
SureshBalaji_1-1588058908486.png

Resolved! Equal Cost Multiple Path (ECMP) - Limit 4 (PA-5220)

Hi All,

 

I need your inputs here. I have a client using ECMP (4 Links.) and they recently procured another ISP making it 5. Based on the documentation of Palo Alto Networks, the max ECMP is 4. Is there any other work around to make ECMP 5 or utilize t

...

Resolved! SSL inbound inspection cert

Might be silly question, For inbound inspection does the cert has to be a CA.

We use a wildcart so that will have to imported as CA, correct?

raji_toor by L4 Transporter
  • 8512 Views
  • 11 replies
  • 0 Likes

Resolved! Panorama IP Variable set to none/null possible?

I'm pretty sure this isn't supported and I haven't been able to get this to work.  I am attempting to use a single network interface template for multiple sites.  Some use 30 sub-interfaces and some may only use 3.  I want to push every sub-interface

...

Palo alto splunk syslog view

 
 

Hi Community,

 

While exporting syslog from palo alto splunk in default format, what is the default format for config logs.

 

Where I can see the default format. Next to hostname what is that value "1" where it comes from?

 

output.jpg

SSL Inbound // decrypt-unsuppot-pram

What can i do here..Is it something we have to fix on server side or firewall.

 

Not Working, Block sessions with unsupported cipher suites, Selected.

Protocols allowed min SSL3.0 to MAX

 

 

Working, with Block sessions with unsupported cipher suites, Un-s

...

raji_toor_1-1593023342068.png
raji_toor_0-1593023022338.png
raji_toor by L4 Transporter
  • 2699 Views
  • 3 replies
  • 0 Likes

Session Keep Alive packet size

 Good Afternoon Community!

 

I believe there is a minimum packet size for an application keep-alive packet for Palo Alto to register a session match. I am just having a hard time finding that documentation.

 

Does anyone know and could share or am I mist

...

Multiple MFA vendors at the same time

Good morning,

We are currently using Symantec VIP for MFA with our PA. Management would like to move to Okta and would like to know if both can be used at the same time? 

 

Thanks,

Steve

Block Dynamic Domain from Security Rulebase

Already the specified Malicious URL getting a block from URL Filtering and detected in Threat Prevention with action.

it’s a dynamic FQDN/IP that has to block from the security rule base too, but the does not want to add each IP to block as he receive

...

Resolved! File Blocking profile

Currently we can only see the logs for the files being blocked.

Can we set up the logs to allow us to see the successful transfer of a file?

 

Does Alert/Continue Action of File Blocking Profile log entry in the Monitor > Logs > Traffic?

 

 

Resolved! how to configure HA in PA VM-500 deployed in ESXi

How we can configure HA2 for PA-VM Active passive deployment in ESXi.

 

Can we use ip-address from mgmt network to use it for HA2 on both firewall.

eg. 1.1.1.1  - Active firewall mgmt ip

      1.1.1.2 - Passive firewall mgmt ip

      1.1.1.3 - HA2 ip addr

...

Deepak_K by L3 Networker
  • 2802 Views
  • 1 replies
  • 0 Likes
  • 24035 Posts
  • 115 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks