General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2825 Views
  • 2 replies
  • 13 Likes

Commit Error

Hello.

 

After adding the allowed IP band, I pressed Save, but it is failing.

 

 

 

 

qmso475_0-1694679455987.png
qmso475_1-1694679479302.png
qmso475_2-1694679505579.png
qmso475 by L3 Networker
  • 310 Views
  • 1 replies
  • 0 Likes

URL Logging - only custom allowed domains are showing up

Hi there,

 

I'm trying to get URL logging to work.

 

At first: I don't have the advanced url filtering license, maybe that's why....

 

I have got a custom url category with some domains which I want to allow, those urls in this list are logged fine.

...

url-list.png
Netzer by L2 Linker
  • 545 Views
  • 3 replies
  • 0 Likes

Resolved! Global Protect message is CN name mismatch.

Hello everyone.

Global Protect message is "The certificate CN name mismatch, The certificate is not issued to x.x.x.x" when I connect GP.

I configure to import certificate that issurer is Go Daddy Secure CA.

Why does CN name mismatch???

Resolved! Reports

Hi everybody.

 

When I got the report from palo alto the following problem occurs ( b'    ' ).

This report is in PDF format and cannot be edited. There was an extract of the report before, but there was no such problem.


b'Risk'    b'Application'    b

...

Fagani by L2 Linker
  • 404 Views
  • 1 replies
  • 0 Likes

Session count can't break 1025

Hi all, I am running a VM-series on aws and it has a issue with session, it's cannot break 1025. I'm new to Palo Alto so there are many term i really don't understand. Some body please tell me what is Active Session? Is it Session count on UI? Why ca

...

ahcogn1_0-1689301370235.png
ahcogn1 by L0 Member
  • 880 Views
  • 5 replies
  • 0 Likes

Device Certificate not showing

Hello Guys,

 

I have problem with device certificate, i have create the device certificate, but is not showing in GUI Palo Alto.

but when i try to import configuration the certificate is showing.

anyone can help me why device certificate is not showing i

...

dwi.nur by L1 Bithead
  • 9204 Views
  • 13 replies
  • 0 Likes

Resolved! Dual IPSEC tunnels load balanced between two endpoints

Is there a way to setup TWO IPsec tunnels using different paths (for instance, two different ISP's) and have them share the traffic load between the two vs having a primary and backup?

 

I'm aware we can setup two tunnels and use path monitoring to f

...

Resolved! Cortex XDR Cloud Identity Engine Integration

We have planned the configuration of the Cortex XDR Cloud Identity Engine for our on-premises service. Could you please tell me whether the Cloud Identity Engine agent should be installed on the AD server or on a separate (NEW) server? What is the be

...

Resolved! Custom App-ID iMessage

Hi,

We have recently installed a PA-2020 at our college and am very happy with the device. The only issue we are having is that students are still able to use iMessage on their iPads. I can't find an existing app-id for that and am wondering if anyone

...

Rowan_C by Not applicable
  • 4066 Views
  • 6 replies
  • 0 Likes

Resolved! UserID/Group mapping

I have created a LDAP profile, group mapping and user mapping from Panorama, and it seems to be working.

Im able to do "test authentication username xxxxxxx.test@xxxxxxxxx.com authentication-profile xxxxxx-LDAP password and this works fine.

 

My prob

...

Resolved! SSH Service Profile

Question regarding SSH Service Profiles.  If you create a SSH Service Profile in Panorama for a template that is associated with firewalls running 10.x and 9.x, will it fail when you commit the changes for the 9.x firewalls?

 

I'm in the process of u

...

  • 24004 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors