This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4235 Views
  • 0 replies
  • 0 Likes

Resolved! Moriagent malware

Dear Team, I don't have much idea about Moriagent malware, i got an instruction i need to create a rule or block this malware How to stop MortiAgent Malware using snort rule? I want to stop the MoriAgent malware by applying /using snort rule.How to configure this in Palo alto ?Below are snort rule.1. The below SNORT rule can be used to detect t...

Resolved! Software Upgrade issue 8 > 9

I'm currently running 8.0.6 and trying to upgrade to 9.1.3. I'm trying to install per the recommended stepped upgrade, but having zero luck. When I use the WEB GUI to upload 8.0.13 or 8.0.20 it says "PanOS_800-8.0.13 saved" or "PanOS_800-8.0.20 saved" but it never shows up in the software tab on the GUI. I try to install the software through CLI...

Resolved! Panorama modes

Hello, I have read about Panorama's modes. But I would like to know if Templates and Group Device's configurations are available without matter what mode is the VM/Physical device. As I understand the documentation, the Panorama's mode only determines how logs data is stored. Thanks in advance. Regards,

iscott by L2 Linker
  • 4994 Views
  • 4 replies
  • 0 Likes

Resolved! Two Palos (not paired) on the same LAN have duplicate MAC addresses

I have two datacenters each with independent Palo Alto setupsEach site is configured Active/Passive, there is no peering of the Palo's at one site, with the Palos at the other site.My Cisco L3 configured switches are reporting a duplicate MAC address ( on the ports connected to the Palo) and on a connection to my nexus switches.The nexus switche...

Resolved! Panorama Upgrade

Hi All, I carried out an upgrade on a Panorama appliance this morning, M-100 model. Went from 9.0.6 to 9.0.9-h1. Process was fine however it needed a cold boot (pull power cables) to recover, it did not come back on its own. Couldn't even console to it. Left it for over 3 hours. My question is are there any logs within the unit I can retrieve to...

Blocking ilovepdf application on Palo Alto

There is high risk app (ilovepdf) used which got identified in CASB in our corporate network & management informed to block this app in Palo Alto. Please let me know if there is any option to block ilovepdf app only specifically in Palo Alto firewall.

preetpk by L2 Linker
  • 3536 Views
  • 1 replies
  • 0 Likes

Palo Alto - SSL ciphers that offer medium strength encryption

We used Nessus tool to run security scan on the PA-5020 & PA-3020 series & it identified with the following below medium vulnerability:"The remote host supports the use of SSL ciphers that offer medium strength encryption" Please let me know, for any fix to this vulnerability. I found one solution for the same in below link. Just want t...

preetpk by L2 Linker
  • 3439 Views
  • 2 replies
  • 0 Likes

Resolved! Traffic from GlobalProtect stop working after upgrade from 8.1.11

Hi,I have two PaloAlto 3020 in an active-passive cluster. PanOS 8.1.11 is nstalled on both. Everything works correctly, internal traffic, traffic from GP Client, vpn tunnels. GP clinets connect, sends HIPs, Palo recieves this HIPs, traffic is passing trough according to rules.The problem is that when I updated one cluster node from version 8.1.1...

Resolved! Error message in System logs

We have a PA that is displaying this message every 60 seconds for some reason. "highopaque: DO NOT CHOOSE WMI in ADGMEL03 FOR YOUR USE CASE IF SEE THIS LOG AGAIN" What is it indicating and how to turn it off?

Problems with the support Portal

Hi Team, I need to open a new case from the portal, however pressing the create case button gives me an error and does not allow me to even verify the cases that I have open. Regards,

Error Support Portal.JPG

Aruba clearpass user id issue with Palo Alto

We have ClearPass integrated to Palo Alto. ClearPass sends user-id to the firewall upon successful authentication. Customer is experiencing an issue where the laptop (on wireless) would fail to access Internet at re-authentication. There is another client device that is login with the same user-id. I think the question here is with user-identi...

Resolved! ftps/ftpes

How can I allow an FTPS (FTPES) connection? I assume the PA tracks an FTP connection and understands the related data connection. Does it understand FTPS? If I set a policy for ftp, it fails when it tries to open a data connection.Kim

kjh by Not applicable
  • 9971 Views
  • 5 replies
  • 0 Likes

9.0.9-h1 for Panorama?

I am looking to upgrade our VM Panorama devices from 9.0.6 to 9.0.9-h1 but whilst I can 9.0.9h1 via Panorama>Device Deployment>Software I cannot see it available under Panorama>Software. Does that mean that it is not available for my device?

StuartS by L1 Bithead
  • 3118 Views
  • 1 replies
  • 0 Likes
  • 24358 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks