This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4118 Views
  • 0 replies
  • 0 Likes

Resolved! Workaound for PAN-OS: Predictable temporary file vulnerability

There is no workaround available for this vulnerability https://security.paloaltonetworks.com/CVE-2020-1981A predictable temporary filename vulnerability in PAN-OS allows local privilege escalation.This issue allows a local attacker who bypassed the restricted shell to execute commands as a low privileged user and gain root access on the PAN-OS ...

Deepak_K by L3 Networker
  • 2839 Views
  • 1 replies
  • 0 Likes

TCP 3-WAY Handshake vs TCP Half-Open

TCP 3-Way handshake – TCP is a connection-oriented protocol, a connection needs to be established before two devices can communicate. TCP uses a process called three-way handshake to negotiate the sequence and acknowledgment fields and start the session. Here is a graphical representation of the process. The three way handshake process consists ...

SutareMayur_0-1583080012609.png
SutareMayur_1-1583080012619.png

Resolved! NAT rules for Email exchange/Email Gateway

Hi Everyone, I have two IP addresses used for inbound/outbound emails on our email gateway.I have created the attached rules NAT and Security and I wanted to get opinions if its correct because I tested it and it seems something wrong that prevent emails from in/outbounding and even the web mail access did not work...your advice please.thanks

NAT Rules.JPG
Security policy.JPG

Drops in packet capture

Hello Team, I have a question regarding drops during the packet capture. What is the packet drop means - Firewall dropping any packet or firewall detect drops packet.? Once i performed the packet capture at the same time i have run the command global counter but i didn't get any drop in counter. So could you please let me know what is the meanin...

Resolved! Zone Rename effects on Panorama and Managed Devices

Hello Everyone I have simple but very important questions about an eventual Zone Renaming in a Template commited and pushed from Panorama to a Managed devices: 1. Changing Zone names inevitably will have an impact on an active sessions ? https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm1cCAC 2. In PAN-OS 9.0 could I ...

Resolved! Aggregate Interface Trouble Shooting

My environment has Palo Alto Firewalls that has Aggregate Interface configuration and use. There are infrequent issues with them and I have some questions:What are the tools for trouble shooting Aggregate Interfaces within the GUI (web interface)What are the CLI commands for trouble shooting Aggregate interfacesThanks in advance

rockfort by L1 Bithead
  • 19890 Views
  • 5 replies
  • 0 Likes

Resolved! Assign gateway to PanGP interface

Hi, We have issues with a service using GP. To solve it we add the IP Palo GP tunnel in the PanGP adapter gateway in local machine. Why this is happening? is there any way to configure this pangp gateway from palo alto when user connects in GP?

BigPalo by L4 Transporter
  • 5873 Views
  • 5 replies
  • 0 Likes

Question on getting started with Reconnaissance Protection thresholds

I know the question about how to set Reconnaissance Protection thresholds has been asked dozens of times. The answer is always "it depends on your environment and situation". I understand that there can't be a one-size fits all best practice. It seems as though a trial-and-error approach is how you should dial in the thresholds and intervals.B...

ready only access to Logs

Hello - Will enabling any of the logs like traffic, url etc in the web UI in admin role profile give more than read-only access to the users with the profile? Asking because I don't see read-only option, just enable and disable. Thanks - Jisha

JJoseph by L1 Bithead
  • 2726 Views
  • 2 replies
  • 0 Likes

Policies with any zone in source and destination

While migrating from checkpoint to Palo Alto after defining zones and interface.Can I simply use any in source and destination zone and create policies with specific objects in source/destination address.Will it work, for replicating same policies while migrating from checkpoint to Palo Alto.

Alarm Log Forwarding

Instead of seeing alarms when I login to the web GUI, how can I get alarms forwarded? I'd like to send to SysLogs and also receive via email.

Palo URL Categorisation process

We have been attempting to use URL Filtering to block access to web based email using the Palo Alto URL Category web-based-email.We have found however that there are many web based email services that are not included in this category, including one of Australia's Largest ISP's telstra. The url for this service is email.telstra.com. I though i...

DaMonk by L0 Member
  • 3431 Views
  • 2 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks