This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4118 Views
  • 0 replies
  • 0 Likes

Resolved! AWS - Additional logging disk added as legacy disk

Hello, We have deployed a new panorama in aws environnement with version PANOS 9.1.3.The panorama is in panorama mode and recognize all the disks attached to the EC2 instance which is m5.2xlarge.There is 1 root disk for system and two additional disks of 2TB for logs. Panorama> show system disk detailsName : nvme1n1State : PresentSize : 204...

OUAHID by L0 Member
  • 4227 Views
  • 1 replies
  • 0 Likes

Logging Bittorrent File_Names

Probably a bit of weird question this one, but as the Evil Firewall Admin at an academic institution I sometimes get asked weird questions so I thought I'd pass the joy onwards. We have a researcher who is interested in data on piracy, and I thought I'd try to collect some data on bittorrent traffic (which is mostly allowed) including the filena...

ipsec vpn both primary and secondary both firewall tunnels are up

passive firewallActive firewall.===============================================we did failover from secondary firewall to primary.After failover Primary firewall all vpn tunnels came up and On passive firewall tunnel info up.is it normal behavior on passive firewall tunnel info up ?or passive firewall tunnle info and IKe info should down ?active...

Sonu_Singh_1-1593355672750.png
Sonu_Singh_2-1593356090429.png
bit_byte by L2 Linker
  • 3495 Views
  • 2 replies
  • 0 Likes

DNS queries to resolve internal hosts from PA managment IP

Hi Community, I can see my firewall is sending DNS requests ( request for A record) to resolve some of internal hostnames.I dont have GP/detect internal host configuredI dont have FQDN objects with these hostnamesI have exported and checked entire config, the firewall is not having this hostname in the configurationIt is requesting for A record ...

Resolved! Cortex XDR query.

Hello, My query is, does Cortex XDR scan malicious URLs. Please share your valuable Intake on this query. Many thanks in advance.

Forward traffic inspection in Palo alto

Palo Alto and Fortinet are configured as internet edge firewalls.Dual layers FA Internet ---- Palo Alto ------- Fortigate -------- Trust zone. Outbound traffic is SSL inspected by a Fortinet firewall and the firewall acts as a forward proxy. All users are using Fortigate certificates in browser-trusted location. Palo alto is configured before F...

AWS VPN Tunnel and Path Monitoring

I have 2 AWS instances(Prod and Stage) each with redundant VPN tunnels to the same remote end Palo. I setup path monitoring for each so that when one tunnel is down, the route is removed and the backup route is put in the FIB. This only works with our stage instance and not our prod instance. In each case, the tunnel state on the AWS side doe...

eridavis by L1 Bithead
  • 4967 Views
  • 3 replies
  • 0 Likes

Delete GlobalProtect Client from firewall

On a PA-500 we locally downloaded the GlobalProtect client and activated it. Now we want to remove it from the firewall, because we are deploying it via our software deployment and the users should not be able to download it directly from the Portal. Unfortunately it's not possible to delete an activated GlobalProtect client via GUI or CLI. Is...

Tobi by L2 Linker
  • 5714 Views
  • 3 replies
  • 0 Likes

Sectigo CA Chain Decryption Issues

Due to the recent expiration of the Sectigo RSA CA cert (https://support.sectigo.com/articles/Knowledge/Sectigo-AddTrust-External-CA-Root-Expiring-May-30-2020) and our Palo firewall SSL decryption policy configuration to block expired certificates we are noticing that any website that is publishing the old expired CA chain (for example netaoc.or...

Monitor Firewalls through Panorama (SNMP, API query ...)

Hello,I am trying to monitor some firewalls via snmp but just asking to the Panmorama devices that are managing these firewalls:If I run a snmpwalk using this OID 1.3.6.1.4.1.25461, the information about the firewalls that I get from the Panorama is just logs related information.For example:-- Connection id of the device being polled-- Log Type ...

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks