This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4141 Views
  • 0 replies
  • 0 Likes

Resolved! Set up the HA ports to function as data ports

Hi,We have a shortage in Ethernet ports on a Paloalto firewallI would like to ask if it is possible to change a dedicated HA port to a data port (Layer3, Layer2...)? I know it is possible to change the type of a data port to an HA port.Thanks for your supportAli

aliomar by L0 Member
  • 3890 Views
  • 2 replies
  • 0 Likes

Resolved! How to limit youtube usage

We are using PA-3050 and would like to know how to limit Youtube usage to a certain Active Directory group (students) to 200mb per day. Please outline the steps.

PA-VM interzone routing

Hello,I've configured up two interfaces on my PA-VM (management 10.0.64.3 with VMnet0 - 10.0.64.0/24 and data with VMnet1 - 10.0.0.0/16). Management is directly connected to PC with Windows and Ethernet 1/1 to FastEthernet0/0 on my switch. I've configured trunk on FastEthernet 0/0 and i've problem with interzone routing. Any solutions?

1.PNG
2.PNG
3.PNG
4.PNG
Werpet by L1 Bithead
  • 5271 Views
  • 5 replies
  • 0 Likes

Virtual Wire - Two Subinterface with seperate Tag Paired

hi..I'm working on a virtual-wire solution where the firewall is connecting to single switch fabric, so the ingress and egress is between same firewall and switch. Is it possible to create a virtual wire pair with different sub-interface tags ? eg: If ingress to firewall from switch is on vlan 10 and egress from firewall to switch is on vlan 20,...

kan0062 by L1 Bithead
  • 3213 Views
  • 2 replies
  • 0 Likes

Minemeld unable to login to web gui

I have seen a few related articles on here about this already, but I haven't been able to resolve my issue. I am receiving the following error when trying to login to the web gui: "ERROR CHECKING CREDENTIALS: Bad Gateway" I found that the minemeld.service will not start and found this error via journalctl -xe -- Subject: Unit minemeld.servic...

All site to site tunnels drop

We had an incident where we have site to site VPNs coming into the Palo. The connection dropped and they would not come backup, even after dropping the VPN on both devices. The end result was a reboot of the firewall and it came back up. What I saw in the logs is pasted below. Customer support just said "As we can see from the Ike manager lo...

Resolved! MineMeld Engine Stuck in Restart Loop

Hello, I face an issue where my MineMeld server keeps on restarting continuously. Initially, it showed an error about low disk space, which got fixed by purging logs, however, the engine keeps restarting. Below is the sample log which I keep seeing repeatedly in engine logs. Attached the complete file. Any help is appreciated. Thanks in advance....

Multiple websites are getting blocked

Users has been reported that multiple sites are getting blocked suddenly, We have the connectivity between minemeld and Panorama, where the Malicious URL's or IP's getting blocked. We need support in getting verified the MINEMELD configuration what caused the internet sites are getting blocked during issue.

url filtering with Alert category

Hi, I have configured the URLs to allow through the firewall with an alert category. The firewall is allowing the URL but user get the "warning: Potential Security Risk Ahead" page with Go Back (recommended) and Advanced option. Is there any technique to allow user directly go onto the URL page instead go to advanced and continue to the websit...

image006.jpg
ChiragP by L2 Linker
  • 10140 Views
  • 7 replies
  • 0 Likes

Export logs from PA7050 to Window Log Server

Hi Guys, Any possibility we can export daily logs from PA7050 to external windows log server through SCP or FTP? Been told there is a limitation for PA7050 to do so because the log database is too large for export or import. Any possible can do it by scripting? Thank you.

Natting to ip address which is not binded to any interface

Hello Everyone,I want to nat traffic going from dmz zone to wan zone. I want to nat ip (172.16.16.16&172.16.17.17-dmz zone) to use nat ip 200.0.0.1 which is not configured to any interface. I am unable to perform this. Please find below snap.1)Interface IP addresses.2)NAT rule3)Security Policy 4)Topology On R2 when i debug ip address i can s...

nitesharbale_0-1583322314964.png
nitesharbale_1-1583322411216.png
nitesharbale_2-1583322611401.png
nitesharbale_0-1583322960961.png

Resolved! Response page variables display as $(url.host) and $(x-exception-category)

Below is the response page. This is being served correctly when the webpage is blocked due to URL category filter.The variables for <url/> and <category/> don't seem to get replaced correctly.PanOS 8.1.10.Webpage text displays as "The requested URL host is: $(url.host) Which has been categorized as: $(x-exception-category)" <html...

Log traffic on Panorama is less than firewall device

Hi everyone,iam using the monitor > traffic on panorama and saw the period logs more smaller than the firewall device, in panorama we have log until 02/14/2020, while in firewall device the log starts on 01/31/2020, i used the command show system logdb-quota, but i cant saw the quota from panorama, is there a way to verify this diference? byb...

bmacedo by L0 Member
  • 2981 Views
  • 1 replies
  • 0 Likes
  • 24340 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks