Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
jforsythe by Community Team Member
  • 27 Views
  • 0 replies
  • 0 Likes

Resolved! Commit Function on Suspended PA

When PA is in active passive mode.
I suspended the active PA and passive took over.

This is fine.

 

 

 

I did the config changes on the suspended PA and did the commit.
I saw that config changes from suspended PA got syn with active PA?

My understanding of s

...

MP18 by Cyber Elite
  • 2690 Views
  • 2 replies
  • 0 Likes

Upgrading

I need to update my firewall from 8.0.17 to the latest release of 8.1.  In the past I was instructed to first upgrade to the base release for the PANOS, and then install the maintenance release on top.  Is that still the way it should be done.? If I

...

Application Override

Hi All,

I have an application override setup and it is working fine.  The reason for the override is because we changed the port number of the application to something other than the default.

 

The way I have this setup is I created a customer applicati

...

Resolved! SSL decrypt exclusion for url ec2-13-57-194-193.us.west-1

 

 

 

Hi Everyone,

 

 

IP  13.57.194.193   ssl decryption exempt was failing and I

In ssl decrypt exclusion list I put  *.amazonaws.com   and still in traffic logs I see the IP 13.57.194.193  getting  ssl   decrypted.

 

I have attached the  nslookup for this

...

clipboard_image_0.png
MP18 by Cyber Elite
  • 4271 Views
  • 4 replies
  • 0 Likes

Update to Notifications in Support Portal (CSP)

Attention Customers with Support Portal accounts:

 

The Customer Support Portal's notification system has been updated to provide additional functionality and ease-of-use in responding to certain notification types.

 

The updates to CSP notifications

...

Resolved! GUI only works with Incognito

Hello -

We replaced our palo last night and now the GUI will only open in Incognito mode in Chrome.

 

I tried clearing the cache.  That didn't help.

Shawverr by L3 Networker
  • 5612 Views
  • 6 replies
  • 0 Likes

High management cpu usage on PA-820 with PAN-OS 9.0.4

Hello everybody,

 

  I know it is a faq already asked on the community forums, but in this case it is especially related to this particular configuration: PAN-OS 9.0.4 on a PA-820.

 

Starting from the day I installed 9.0.4 on this machine, I see the mana

...

grenzi by L3 Networker
  • 9642 Views
  • 3 replies
  • 1 Likes

Access to Panorama after upgrade to 8.1

Hello

After upgrade Panorama to 8.1.11 I can't connect to GUI via proxy server (proxy server just substitute own certificate) I can reach login page but after putting credentials to Panorama I see blank page.

Before upgrade access was ok.

Direct access

...

polak71 by L1 Bithead
  • 1765 Views
  • 1 replies
  • 0 Likes

Resolved! Global Protect User Groups

I want to user map configuration to AD user group for Global Protect clientless VPN. This works quite will if authentication is LDAP.
Have you any idea how can I get it to work with Radius authentication?  Presuming that the user has the same name as

...

BatD by L4 Transporter
  • 2666 Views
  • 3 replies
  • 0 Likes

Resolved! scp export log traffic to a server not using port 22

Hello,

 

I'm trying to send an export of traffic log to a server that use port 40111 instead port 22.

I'm using this command in Panorama:

 

scp export log traffic to pppp@1.1.1.1:40111

 

But receive a timeout indicating that host 1.1.1.1 hasn't available po

...

bprietoc by L1 Bithead
  • 3197 Views
  • 2 replies
  • 0 Likes

Resolved! Rule usage report in PanOS 8?

Is it possible to create (scheduled) rule usage reports in PanOS 8, ideally from Panorama on a per device group basis? 

I see the rule usage data present, seems silly there wouldn't be a capability to query against it.

Rules (not) used withing last X d

...

BoDollis by L1 Bithead
  • 3832 Views
  • 3 replies
  • 0 Likes

Debugging packet flow.

Hi there,

 

We have just moved from a Juniper SSG-550 with around 700 policies to a PaloAlto 3050.

Naturally this has thrown up a few issues!

 

Can anyone explain how to do the equivalent of a Juniper “debug flow basic” on the PaloAlto?

 

On the Juni

...

  • 23584 Posts
  • 107 Subscriptions
Labels