General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2976 Views
  • 2 replies
  • 14 Likes

Resolved! EDL problem

Hi,

I find this error: EDL(my list) Entry not referenced by a rule.

What does it mean? How can I resolve it?

s_quasar by L3 Networker
  • 18111 Views
  • 18 replies
  • 0 Likes

Detect Unknowed device

There is a functioning access point TP-Link EAP225.
Cannot be managed from connected devices.
We know MAC Address because present on a label.
Is on a unknowed subnet.
But this device use gateway with Palo Alto.
We don't know IP (we have try all usal IPs).

...

configuration change used to be pushed to firewall

Hi Configuration change in template/stack used to be pushed to the firewall from panorama. but now after some change(creating new zone etc) made on template is pushed to the firewall, the change cannot be seen at the firewall again. so the configurat

...

kevinospf_0-1694620407770.png

submit error message when remove DG

 

 

 

Hi  Device group is created in panorama. but when I want to remove all of Device goup and submit, I got the error message. Since it is invalid command, why it cannot be removed? Please see the below. Thanks

 

 

kevinospf_0-1695089104872.png

I want to block PotatoVPN ( Threat ID 86751 )

 

I want to be able to block PotatoVPN Traffic. I am successful in most of my other VPN threat hunting safaris but this one is fairly new and my current rules don't capture this little guy.  Has someone out there created a policy that successfully bl

...

upgrading PAN-OS

Hi 

 

I want to upgrade the 8.1.x to the latest version , after two upgrade stay on 8.1.24. I tried to move to 9.0.X but failed. Could you please let me know how I can upgrade to 9.x? (As information that I have find need the Preferred release It mea

...

Resolved! VPN traffic capture

Hello,
I need to capture what passes through a VPN site-to-site tunnel. I'd like to see the tunnel and not the ESP.
With tcpdump you can use the command "tcpdump -i enc0" which decrypts the ESP.
On Palo Alto, what is the equivalent command? Because wit

...

Python script not working on PANos 10.2

Good Day,

I currently extract custom reports for the strata firewall running PANos 9.1.x and 10.1.x using Python but I am having a problem running the same python script on PANos 10.2.x

 

Has anybody else encountered this problem?

Lance by L2 Linker
  • 303 Views
  • 1 replies
  • 0 Likes

AD Groups not working in Policies

Hello all, this sounds very similar to a previous post I found on here but I could not see a resolution. Very basic. I am trying to block or allow a domain user from the internet, from LAN zone to WAN zone. This will not work if I have domain\user in

...

GWynn_0-1694757547028.png
GWynn by L3 Networker
  • 1894 Views
  • 20 replies
  • 0 Likes

Enterprise PKI Cert Chain Error

Hello 

 

we have our enterprise CA and our PA firewalls have signed certs from it. Now for our captive portal, we also have a certi signed from our enterprise CA. Everything works and there is no browser error for certificate.

But in the FW commit, we g

...

  • 24037 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors