General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Join the Fuel User Spark Event on March 19: Dealing with Threats !

 

Join us at the Fuel User Group Spark Event on March 19!

 

Get ready to ignite your cybersecurity knowledge and connect with industry experts at our upcoming Spark event hosted by the Fuel User Group. Whether you're a seasoned professional or just

...

kiwi_0-1709893724672.jpeg
kiwi by Community Team Member
  • 279 Views
  • 1 replies
  • 2 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3159 Views
  • 2 replies
  • 14 Likes

Error 503: Service Unavailable

Hello!

I am configuring  an ha cluster Fw 440.Firmware 10.1.3

 

When i push "commit" i lost gui access.

I can ping andaccessvia ssh to fw.

I recover the gui access via cli:request restart system.

 

I have updatefirmware to 10.1.11-h5 but i happen the

...

Authentication error

users in one the gateway facing the error `please click the button below to relaunch authentication` while try to connect VPN .

How to filter routes being exported to BGP neighbor?

We are currently redistributing all OSPF routes to our BGP neighbor without any filtering.  We wish to exclude certain prefixes from BGP advertisement. I need an assistance in configuring the filter for this purpose. 

 

Q1. Is it going to be working

...

JasonKu_0-1709226190520.png
JasonKu_2-1709226301733.png
JasonKu_3-1709226491336.png
Jason.Ku by L0 Member
  • 203 Views
  • 1 replies
  • 0 Likes

Palo alto GP with azure SAML

Hi, I was reading about the integration of Palo Alto GP with Azure SAML authentication.

My globalprotect is using port 4433 to access instead of the default 443.

Hence, I'm wondering what to configure for the identifier, a reply URL, and a sign-on UR

...

Kevin-Ng by L0 Member
  • 206 Views
  • 1 replies
  • 0 Likes

Commit Fail Phase1 sslvpn

hey

 

i am gtting commit fail on phase1 abort, and it looks like the SSL VPN proccess how can i troubleshoot it ? 

 

show management-clients

Client PRI State Progress
-------------------------------------------------------------------------
routed 30 P1-abo

...

minow by L4 Transporter
  • 10524 Views
  • 11 replies
  • 0 Likes

Resolved! Questions about EDL

Hello,

I have a firewall rule on the Internet Firewall list this

 

Source: Palo Alto Networks - High risk IP addresses - Palo Alto Networks - Known malicious IP addresses

Destination Any

Service Any

Action: drop

 

So if an ip inside the two EDL try t

...

Resolved! Panorama warning messages for EDLs with no certificate

I have several EDLs that were intentional configured to not use a certificate profile.

 

Is there a work around to hide the Panorama warning messages stating "External Dynamic List <edl> is configured with no certificate profile. Please select a cert

...

L2 trunks between 3 Cisco switches

THis was working in vwire just fine with two vwires.
1/1 to 1/3 vwire 1
1/5 to 1/6 vwire 2

Now we want to go to Layer 2, here is the configuration. I am only adding L2 sub interfaces to the firewall. 
1st trunk:
--CISCO SW1 TRUNKED INTERFACE ALLOWING ONL

...

tshooter by L2 Linker
  • 210 Views
  • 1 replies
  • 0 Likes

Resolved! Cortex XDR Agent DownGrade

hi Community,

Is there any way to downgrade the Cortex Agent from 8.3 to 8.2 via Console and as we cannot turn off Auto Upgrade isn't autoupgrade conflict with Downgrade 

 

Yayati by L0 Member
  • 257 Views
  • 1 replies
  • 0 Likes

Resolved! Upgrade PAN OS from 10.1 to 11.1

Hi Community,

 

My customer plan to upgrade their PAN OS from 10.1 to 11.1

From documentation said, You can now use the Skip Software Version Upgrade feature to skip software versions when upgrading your device from PAN-OS 10.1 or later releases.

Wh

...

HSutanto_0-1709107246673.png
  • 24090 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels