This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4111 Views
  • 0 replies
  • 0 Likes

IP sec tunnel alert in PRTG tool.

Hi team, If One of the Ipsec Tunnel goes down i must get that alert in PRTG monitoring tool....I have created snmp trap and log setting according to the alert from system logs, Prtg tool is able to get that traps.But customer requires a OID for this...I need a OID to get that trigger in PRTG if one of the tunnel goes down.Please HELP.

PAN-DB seed download PAN-OS version 9.0

Hi there,I have strange problem whereaccording to this article https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/url-filtering/troubleshoot-url-filtering/problems-activating-pan-db.htmlor / and this articlehttps://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClQvCAK I should be able to ssh to my PAN-OS 9.0.x and exec...

Single authentication policy across multiple vsys?

All, I amtesting authentication policy for a certain project and was able to test it successfully with basic configuration. I am looking at a config where a single authentication policy could work across multiple vsys. Scenario, Firewall with multi-zone, one of the zones with web-server to intercept and redirect to the captive portal (with MFA)....

Panorama Template Push issue

Hi All, I have an issue with a Template push to device issue. I have added some routes in the BGP import section and have committed to Panorama without issue. When I push to device I run into a couple of separate issues which is causing me problems. When I push to devices using the force template values I get issues concerning HA and this error:...

a.jones by L3 Networker
  • 3563 Views
  • 2 replies
  • 0 Likes

Resolved! GP login without asking credentials

Hi Team My firewall PAN os is 8.1.9 and GP version is 5.0.5.Issue : Whenever I try to disconnect and connect the GP, its connected without asking credentials. If i manually give sign out from GP then only its asking for login credentials to connect GP. My requirement is Whenever I try to connect GP it should ask Login credentials and then conne...

Resolved! Loosing USER-ID

Our AD based USER-ID seems to keep loosing the IP/USER association. We only have a few rules which work some of the time and then fail with a blank user. What's the best solution to get it 100%??? Rob

Resolved! No way to reach the linux GlobalProtect client download

I try to install GlobalProtect on my ubuntu linux, according to my workplace request.I went here. The instructions there say I need to go to the support site here, select "updates" and "Software Updates".However, there is no "Updates" section in the support site.I found an old version of the .deb package in some site, but it was CLI only.Where i...

YotamB by L0 Member
  • 5051 Views
  • 4 replies
  • 0 Likes

unknown port 137 from GP users to Public IPs

I have GP users whose logs show multiple attempts to public IPs on port 137. I have checked this KB https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClLfCAK and made sure user-id is not enabled on Internet interface but I have it enabled on GP interface.Image above shows the NBNS pcap captured on firewall.Anyone experien...

Capture.PNG

SSL Decrypt on Virtual Wire deployment Certificate Issue (Chrome)

I have my PA-200 on virtual wire mode with Captive Portal using SSL Decrypt for all users with Self Signed Certificate.When the users try to navigate on crhrome browser to internet they receive NET::ERR_CERT_COMMON_NAME_INVALID that doesn't permit to bypass for go to untrust site. When i manually enter a site that support http or another certifi...

WhatsApp Image 2020-03-25 at 19.20.07.jpeg
WhatsApp Image 2020-03-25 at 19.43.51.jpeg
RPerez11 by L0 Member
  • 3833 Views
  • 1 replies
  • 0 Likes

MacOS connection errors while using GlobalProtect VPN client 5.0.8-4

Hi folks, So i'm having pretty bad vpn problems while working from home. It's been happening for a while, but now that I'm working remotely every day, it's become unbearable. I hope someone can assist. This is how it goes: I connect to my work vpn and after some time (maybe 10-15min, sometimes longer and sometimes shorter), requests to remote sy...

ClintP by L1 Bithead
  • 6668 Views
  • 4 replies
  • 0 Likes

Login with globalprotect before windows login

Is it not possible in some way to launch the client from the Windows login screen, create a tunnel with the users credentials, and THEN log in to Windows? Or is the only way going the machine certificate route?

gyrodude by L0 Member
  • 4902 Views
  • 3 replies
  • 0 Likes

Certificate Renewal issue

When i renew the self signed certificate i got the error. i have restart the management plane but issue still same.I have all renew from CLI but issue still same. Please suggest me

Joshan_Lakhani_1-1585827448143.png
Joshan_Lakhani_0-1585827329675.png

Resolved! Traffic logs filter on syslog

Hello team, We are sending all the traffic logs to our inhouse syslog servers. So whatever traffic is matching current security policies, all such traffic logs are forwarded to syslog server. Now in those logs, i am seeing everything like Source, Destination, port everything. Now our requirement, we need to send only specific logs to syslog for ...

johnde by L2 Linker
  • 8700 Views
  • 6 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks