This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! Rule usage report in PanOS 8?

Is it possible to create (scheduled) rule usage reports in PanOS 8, ideally from Panorama on a per device group basis? 

I see the rule usage data present, seems silly there wouldn't be a capability to query against it.

Rules (not) used withing last X d

...

BoDollis by L2 Linker
  • 3729 Views
  • 3 replies
  • 0 Likes

Debugging packet flow.

Hi there,

 

We have just moved from a Juniper SSG-550 with around 700 policies to a PaloAlto 3050.

Naturally this has thrown up a few issues!

 

Can anyone explain how to do the equivalent of a Juniper “debug flow basic” on the PaloAlto?

 

On the Juni

...

Blocking vs. logging throughput

If I have a security policy applied to all my zones which includes profiles for everything (AV, spyware, vulnerability protection, etc.) but the actions are all just logging or alerting and not blocking, would that affect my throughput?  I was wonder

...

Threat / AV signatures after OS EOL.

Will AV /  Threat Signatures still up date on 8.0 after EOL?

 

I only found out it was going EOL when I logged into another of our clusters with 8.1 which told me on the MOTD..

 

The MOTD on the 8.0 has no such message.

 

I have had  look through the "Palo

...

Miner for ipv4 and v6 lists

New with creating custom miners/prototypes/etc for pulling addresses.  I'm trying to get an EDL consumable list from the below page for lookback.io.  I assume the main part I'm missing is which prototype, processor, and output to choose, as well as t

...

Resolved! Replacing a Palo

Hello -

We had one of our Palos die on us, we have the replacement and I have read this document: 

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClHFCA0

 

But, I'm hoping someone on here can give me some real world experience

...

Shawverr by L3 Networker
  • 3362 Views
  • 2 replies
  • 0 Likes

Resolved! PA-500 VPN with Amazon VPC

Hello,

have someone a howto about connecting a PA-500 with the Amazon VPC Service?

It would be nice to take a look on it

best regards

Dietmar Otto

PA session end reason is decrypt error -

 

 

In PA i  saw this behavior for session end reason is decrypt error and traffic is working fine.
I check with users where session end reason is decrypt error they told me they have no issues.
we have ssl decryption enabled and PA is running 8.1.9
IS th

...

MP18 by Cyber Elite
  • 14719 Views
  • 2 replies
  • 0 Likes

Resolved! PA-850 & Radius PEAP

We had purchased a pair of 850s to replace a pair of 3020s.  Over the weekend I had put the 850s into place and we immediately saw problems with clients authenticating to our radius server behind the 850.  We're working with PA support but they seem

...

VPN S2S and Description ssl in Wires mode

Hello, I have a couple of doubts and I would like you to help me about it. 1.- Is it possible to perform an Ipsec VPN when the firewall is in V-Wires mode? Only having an IP in the administration interface? 2.- Is it possible to perform SSL decryp...

Lcarocas by L0 Member
  • 2396 Views
  • 2 replies
  • 0 Likes

Resolved! DSRI for VPN Tunnel

I can't seem to find a clear answer to this, and there may not be one. I have a VPN tunnel between 2 sites, both on PA-820's. Would "disable server response inspection" on the VPN policy on both sides benefit from this? What are the potential downsid

...

Updates palo alto network website and ssl decryption

I am going to implement ssl decryption for some subnets

where we have management subnet of Palo Alto networks.

 

Need to know if PA website updates.paloaltonetworks.com works when SSL decryption is enabled?

Do I need to check - verify server identity for

...

MP18 by Cyber Elite
  • 3111 Views
  • 4 replies
  • 0 Likes

GlobalProtect Dialog Empty

This started after adding a second VPN to GlobalProtect, but not immediately, perhaps a day or 2 after. Using Windows 7 and GlobalProtect 4.1.8. When I click the GlobalProtect icon in the System Tray, It shows up in the TaskBar, but no window shows.

...

GlobalProtect.jpg
  • 23662 Posts
  • 104 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks