This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4230 Views
  • 0 replies
  • 0 Likes

QoS_Rate-Limit_Guest Network_NAT query_Configuration example

could someone advise me to set rate-limit for guest(10.1.10.0/24) traffic in this topology I read the article that We need to apply policy on egress interface always. Hence, for upload, it's on outside interface connected to Internet and for download it is on inside interface (ae) connected to SW(1) Internet Speed 500 Mbps(2) Rate-limit for Gu...

DNARNI_3-1592498823681.png
DNARNI_5-1592498893400.png
DNARNI_4-1592498856246.png
DNARNI by L0 Member
  • 2650 Views
  • 1 replies
  • 0 Likes

Bypass video traffic exclusion

Hello, We have GP set up and one of the settings include "Exclude video traffic from the tunnel". However, we have come across an issue that private site for developers hosted in 10.0.0.0/8 network includes internally hosted videos (http-video app-id) needed for work. So when user tries to connect to website while connected to GlobalProtect, it ...

kalolu by L1 Bithead
  • 3428 Views
  • 1 replies
  • 0 Likes

Resolved! How to forward the logs before yesterday to syslog server.

Hello,We were forwarding log from PA-5220 to syslog server.On July 2, 2020, our syslog server failed and it was unable to get most of the July 2020 logs.Now that the syslog server has been recovered, I want to forward the logs that from July 2, 2020 to today to syslog server.Is this possible...?Could you tell me how if possible?(Sorry for my poo...

Virus/Win32.WGeneric.akbori |

1) Why is this virus triggering in Palo Alto events and Palo detecting this & alerting ?2) How hashes are different, is there false positive. DetailsSourceMD5SHA-1SHA-256Virus/Win32.WGeneric.akbori(345886398)Paloaltoce27d52c7d1f59ad2c867e97339fa2122dda6a0bb6c587c0b8731c094d76187b80c866d137aa186c2e7ca3e3f22264da9744995252e131469a8261761ce2ae3...

Resolved! Students, using HTTPS now on Proxies

Hi, we have banned the http-proxy in school to stop them downloading and accessing sites they shouldn't, however they have now found using https based proxies bypasses this. What is my next possible solution in my ever on going war with students. Any advice / help much appreciated. Thanks in advance.Darren

djbisbey by Not applicable
  • 15107 Views
  • 19 replies
  • 0 Likes

Kernel panic on a PA-500 device ...

Hello,Anybody ran into such issue with a PA device ?"Kernel panic - not syncing: VFS: Unable to mount root fs on unknown-block(8,2)"Then device goes into loop boots... No way to make it boot, even using the maintenance partition.Is there a way to use the front USB port to rescue ?Any idea ?Regards,Laurent

ldormond by L3 Networker
  • 7285 Views
  • 5 replies
  • 0 Likes

Almost maxing ssl decryption settings

Hi,We own a PA-2050 running version 5 of the pan os in a school.I have recently noticed that we are now approaching the ssl decryption limits of the device. i.e. 977/1024.Previously I didn't know that there was such a limit.What is the best method to reduce this number?ThanksWarwick

leahy268 by L1 Bithead
  • 3989 Views
  • 4 replies
  • 0 Likes

Panorama M-100 dynamic update menu not present under "Panorama" tab

Dear Patrons, I was attempting to perform the dynamic update (specifically anti-virus update) but I noticed there is no "dynamic update" menu, somewhere I read that M-100 series antivirus update can only be done over CLI, is that true? Not only the dynamic updates menu missing, except "managed devices", "device deployments" none of the options ...

Ansible: Create Security Rules and move above to cleanup using

Hi, We are in process of implementing Ansible for PA Security Rule Automation. We are using panos_security_rule module for rule creation and it creates a new rule at bottom, which falls after cleanup rule.Using Ansible modules can we move the newly created rule above to the cleanup rule or while we creating a new can we mention the line No. on w...

Resolved! Minemeld - Configure aging in MISP integration

Hello,I set up and configured MISP node in Minemeld.From MISP instance Minemeld is able to pull indicators without error.Analyzing the log of these indicators I noticed that the parameters first_seen and lasts_seen belong to the feeds list instead that to the indicators itselfThis is an issue in order to manage the aging of indicator.Is it a kno...

FW_SIM by L1 Bithead
  • 3900 Views
  • 3 replies
  • 0 Likes

Windows Notification SECURITY_PRODUCT_STATE_ON

After updating traps to the latest version on a Windows 10 Pro machine, protection notifications from viruses and threats keep popping up.Evend log 16 SecurityCenterFailed to update Cortex XDR ™ Advanced Endpoint Protection status to SECURITY_PRODUCT_STATE_ON. Does someone know how to solve this problem? It is maddening.

Panorama push commit fails on logging profile that is not used on FW

On Panorama, we have several logging profiles setup at shared/parent DG level. Two of the logging profiles reference server profiles that are defined in on some Device Templates (FW-A)...and not on others (FW-B). When we push configs down to FW-B, the commit fails. A) FW-B doesn't have the server profile defined in the Device Template (obviou...

rolinger by L2 Linker
  • 2845 Views
  • 1 replies
  • 0 Likes

Admin password is expiring

We have configured password profile and getting notification for that at the time of login. My query is that can i modify after admin password expired or can i get pup-op for assign new password after grace period over.

password expire.PNG

Domain Credential Phishing - LDAP fails to bind

Hi all, I have been setting up the domain credential phishing with a colleague and we have run into an issue where the service account is unable to bind to the LDAP on the RODC. We have followed the troubleshooting guidelines in the following document but unfortunately we still hit the same issue. Has anyone else experienced this issue or knows ...

Resolved! Migrating from PA-200 to 220 with HA

Hi all, I am trying to migrate one of our customers from a PA-200 to a PA-220 AND add create an HA cluster with active/passive configuration with two PA-220's I was wondering, what approach would you take in regard to achieving the above outcome? 1. Would you first configure the PA-220 in an HA configuration then migrate the configuration to the...

MihirL by L0 Member
  • 7691 Views
  • 4 replies
  • 0 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks