General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

No upgrade but new applications

Hy everyOne, I've a PA-500software version 8.1.2 Application Version : 8536-7270 (03/02/22) Threat Version : 8536-7270 (03/02/22) Anti-Virus version : 4008-4519 (03/01/22) As you can see, no upgrade since March 2022 But if i make a backup and look into the XML file, i can see application : BING-AI-BASE for example or AZURE-AI Those applicat...

info by L0 Member
  • 2131 Views
  • 2 replies
  • 0 Likes

Not able to login into the firewall using admin account

Hi Folks, We are having PAN-OS:9.1.10 installed on our environment. We are able to login into the firewall using our admin accounts which are locally created on the firewall with authentication profile set as "None" Suddenly we are not able to login into the firewall and we got the below message even the account Authentication profile set to "No...

CobaltStrike.Gen Command and Control Traffic(18005) spyware

So I am fairly new to the PaloAlto brand. We installed 2 PA460's without Panorama and they replaced our Cisco ASAs. Loving what I have seen so far and it feels like I have more insight into what is going on with regards to the firewall. My issue is in recent months we have seen this CobaltStrike.Gen Command and Control Traffic(18005) spyware a...

Block Brave Borwser

Hello,I have noticed that some of our employees are using a brave browser and can easily open blocked websites like Facebook, crypto, games etc. what's the way to block brave browsers. Thanks:

application showing as incomplete + ipsec tunnel issue

Hi, I have an IPSec tunnel to a 3rd party, which we have some intermittent issues with. at the time that 3rd party lose its connection to us, under monitor> traffic I can still see traffic flowing but with application showing as incomplete. as I understand, incomplete could mean that source start a 3-way handshake but doesn't get a syn ack b...

AY_FASAR by L1 Bithead
  • 2132 Views
  • 3 replies
  • 0 Likes

Upgrade with High avaibility

Hi everyone, i've 2 PA-500 with no contract since 2022. Now i've to made change but the commit doesn't work because error duplicate application name "Bing-Ai-Base" i can make an upgrade but we didn't make that since march 2022. How can i make an upgrade on one of the two PaloAlto without impacting the other one (in case i've a upgrade issue, ...

info by L0 Member
  • 866 Views
  • 1 replies
  • 0 Likes

Resolved! Export/Import Named Configuration Snapshot

Hi everyone! Can someone confirm that the subject can only be done by "superuser" account? I can't find any documentation that says so. I'm wondering because "export device state" is visible for superuser account, when using a "device administrator" (dynamic role), "export device state" is not visible. Both Export and Import named configuratio...

RVizcarra by L4 Transporter
  • 7121 Views
  • 7 replies
  • 0 Likes

Resolved! Changing priority between eBGP and OSPF learned routes

I have an interesting problem that I haven't found a satisfying solution for. I have various remote sites connected via private circuit with OSPF, and then IPSec VPN with eBGP learned routes. The administrative distance of eBGP is 20, and the administrative distance of OSPF is 30. I believe these are the defaults. Right now, if there are two pa...

khsieh by L2 Linker
  • 16374 Views
  • 10 replies
  • 0 Likes

GlobalProtect Authentication failed Error code -1 after PAN-OS update

We are on PAN-OS 8.0.6 and have GlobalProtect and SAML w/ Okta setup. It has worked fine as far as I can recall. However when we went to upgrade to 8.0.19 and any later version (after trying that one first), our VPN stopped working. The client would just loop through Okta sending MFA prompts.On the web client, we got this error: "Authenticat...

2019-08-24_20-40-33.png

i could noti nstall the image,

i need help for the upgrade. I have down the image. but when i try to upgrade, i did not find any device or panorama to be select I only have small window for the upgrade i need help now

Weiweili by L0 Member
  • 711 Views
  • 1 replies
  • 0 Likes

removing a Palo alto from my portal

Hi everyone, I had a polo alto firewall that I sold on ebay as I no longer needed it, it's out of licence/ support. How can I remove it from my portal? Would that impact the ability of the person who bought it from me to use it at all? Thank you

nevolex by L3 Networker
  • 797 Views
  • 1 replies
  • 0 Likes

Resolved! PANOS 8.0.4 warning ipv6 not enabled on tunnel interface

Hello All,I just upgraded to 8.0.4 and now when I commit the tunnel interface associated with my external GP gateway gives a warning that "ipv6 is not enabled on the tunnel interface tunnel.1. IPv6 address will be ignored!"Did something change in the gateway configuration. I've gone over and over a few times and am not finding a reference to I...

dan731028 by L3 Networker
  • 21176 Views
  • 15 replies
  • 0 Likes
  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels