This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4106 Views
  • 0 replies
  • 0 Likes

Resolved! Panorama HA

If I have an HA pair of panorama servers and I access each one with different URL (panorama01.domain.com and panorama02.domain.com) but I want to setup SAML Admin UI within Azure Enterprise applications, do I need to setup one for each panorama or when panorama01 fails does the 02 node take the name of the previously active one? Essentially I wo...

Resolved! CSP error

Hi, I am new user to Palo Alto. I wanted to confirm why I am getting error while login to CSP Portal? Also, is this possible to use Cortex XDR fdor my personal device as a learner/testing?

Mohitparashar_0-1697229039576.png

Resolved! Device Certificate: can't replace old device cert by putting in newly generated OTP

I did a dumb thing. I wanted to extend the validity period of the current device certificate, so I went to live.paloaltonetworks and generated a new OTP. However, back on the firewall, I find that the "get certificate" button is not available. It just shows that the current certificate is valid. I think the mismatch is generating these errors in...

Retrieving Content 'WildFire' info failed with error

Dear Team, Iam facing the issue with Wildfire and continuously received this alert every minute. 2021-07-11 10:40:51.821 +0300 check wildfire license: valid license2021-07-11 10:41:07.268 +0300 Error: pan_fbd_cloud_post_upload_file(pan_fbd_fwd.c:4939): upload curl return No error and cloud response code: 4182021-07-11 10:41:07.269 +0300 Error: p...

Joshan_Lakhani_1-1626008642508.png

HOW TO REGISTER MY DEVICE FOR SUPPORT

Hi ihave connected my paloalto-PA-410 decice. I am looking to see how to register this. i cannot find the sales ordernumber or customer ID as this was sent through theGreater Glasgow Health Board? Thanks Dr Sobia Bhatt

Ikev2 site to site VPN between Arista ETM and Palo Alto

Hello Mams and Sirs, I need your advice here. I have configured an ikev2 policy based site to site VPN between our Palo Alto and client Arista ETM. I manage the Palo Alto. The status of the VPN shows up. But, communication between the subnets(local and remote) stop abruptly until, I generate some traffic by pinging each of their VLANs/subn...

msdphi by L2 Linker
  • 1336 Views
  • 4 replies
  • 0 Likes

Unable to download updates

When I download the Palo Alto upgrade software(11.1.4-h1),the following error message is displayed: "Failed to download due to Empty file returned by update server." I have click “check now” and Synchronize to the peer

Scanning for Misconfigured Endpoints in Cortex XDR

Hello good day, I wanted to inquire if there is any built-in functionality or available option within Cortex XDR that allows for scanning and identifying misconfigured endpoints. Additionally, is there a specific query or set of queries that can be used to detect endpoints with misconfigurations within the Cortex XDR environment? Our primary...

Disable TLS 1.0 and 1.1 and also weak cipher

How to disable TLS version 1.0 and 1.1, also to disable weak cipher for WildFire Configure Authentication with Custom Certificates on the WildFire Appliance I went through this KB it shows how to disable the 1.0 and 1.1 but how to disable weak cipher in wildfire

In Wildfire how do we disable weak TLS ciphers?

Nessus scanning is picking up TCP/443 TLS v1.0 and v1.1 on our WildFire (WF-500) appliances. Is there a way to turn off TLS v1.0 and v1.1 on the WildFire ? Below is the Nessus scanner notification.--------------------------------------------------------------------------------Policy Violation 443/tcp Nessus ID: 56984-------------------------...

Resolved! Request for Upgrade Advice on Palo Alto Firewall PA-1410

Dear Palo alto network Team,I hope this message finds you well.We are currently running a Palo Alto Firewall PA-1410 with software version 11.2.3 and are planning to upgrade to a newer version. After checking the available software versions, we have attached the relevant file for your reference.Could you kindly advise us on the most suitable ver...

Software list.PNG
Ploalto_Version.png

preferred PAN-OS software versions table

HI, dear PaloAlto team, Why has the preferred PAN-OS software version table been changed? The previous view was much better, because it allowed to select the preferred software version and schedule changes....Now there is only one preferred version and no information about new, monitored realases. GreetingsJacek

Google-base app, what its cpable of in escense of google apps.

Hi Team, Recently, I had to allow an internally developed android and IOS for users that are allowed and not allowed to access internet. this app "externally hosted internally developed" role is consisting of destination IPs and web-browsing app. For the android side, it didnt work untill I allowed the Google-base app in a separate "...

Resolved! Geo Location A1 disapeared

We've been using source region A1 (anonymous IPs) as source in a block rule for over an year. Today, while validating an unrelated change, we came across a validation error stating "Source 'A1' is not an allowed keyword." Panorala and Firewalls are all running PAN-OS, its running 11.1.4-h7 and we have not updated it recently. I must assume a ne...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks