This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4223 Views
  • 0 replies
  • 0 Likes

PA Migration

Hi ; One of our customer is Migrating all the vlans which are currently on PA 3020 ( Acting as L3) to another firewall in their DC PA 3060 .There are around 15 vlans which are directly connected networks on PA 3020 . So we will be extending those vlans to DC and make the subinterfaces on DC PA 3060 / Shut down the subinterfaces on PA 3020 and m...

Video conf webex

Hello , we have got one issue . While we dial from webex internal to outside webex number : sometimes the webex connection created ; sometimes black screen and sometimes no connection created. Got below error on webex The far end system does not support the requested channel type . The security policy is 10.1.1.1 to any any port The NAT is H...

FTP and rtp-base session end reason resources-unavailable after upgrade PANOS from 8.1.7 to 9.0.5

Hi, We have recently upgraded our 5250 from PANOS 8.1.7 to 9.0.5. And FTP started to have slowed down. After checking traffic log, there were some FTP session ends with resources-unavailable. It's about every 10 sessions will have one with resources-unavailable. Also, there were some rtp-base sessions have the same session end reason. It's impac...

Champion by L0 Member
  • 3143 Views
  • 1 replies
  • 0 Likes

Resolved! PA820 high availability configuration

Hello, I'm needing some clarification on one aspect of deploying a 2nd redundant PA820 in high availability mode. I currently have my 2nd 820 deployed with the management interface configured. My first question is. When setting up my 2nd PA i discovered that I only have 10gb sfp's for interfaces that I'm matching on my current PA. The quest...

danoman2 by L3 Networker
  • 3467 Views
  • 2 replies
  • 0 Likes

Resolved! PAN-OS version upgrade all interfaces are showing Down.

I went to upgrade my PAN-OS from 8.0.6 to 8.1.12. When i Install base version (8.1.0) so all interfaces are show gray. After that i downgrade my PAN-OS to same version but still same. I use to "show jobs processed'' so autocommit fail. please let me know what can i do. 2020-02-13 22:56:34 22:56:34 12 Exec ACT PEND 10%2020-02-13 22:54:49 22:54...

Resolved! Trial URL Filtering License Reset?

Hi community, I have a customer who's previous manager trialed the free 30-day URL Filtering license back in 2017 on their current devices. However, a new manager has joined and they wish to retrial.... is this possible? Can the trial auth code be reset or something? Customer doesn't to purchase HA URL Filtering licenses until they can thoroughl...

PA syslog app id - problems

Hi so 5220 - 9.0.5 I have a syslog client and syslog server.the path goes through my PA.I have a rule basically says any internal ip is allowed to the syslog server if the app it syslog that doesn't work, the packets are too short for the PA to distinguish them .. sigh so add in unknown - udp . now they go through. next problem tcp syslog on po...

Resolved! Cortex data Lake deactivation

Hello guys, I had done POC of Cortex Data lake on my gateway. And it was successful. Now i've disabled sending logs on cloud, also my eval license is also expired. But as per traffic logs seen on my gateway, i can still see logs getting forwarded to cloud from my gateway's mgmt interface. Is there anything that i am missing to disable same ? P...

GlobalProtect For Linux

Hi, I want to add linux globalprotect agent on my portal for customers. How can I do that? Ubuntu and centos for both. Thanks for help.

Palo Alto 3050 high DP and MP planes CPU utilization

Hello Folks, I have upgraded my palo alto HA cluster (model 3050) to version 9.0.3-h3. All of sudden i have started facing high dp as well as mp planes cpu utilization. There is no much traffic on the firewall. Connection table utilization is also around 20% in peak time. Wanted to check if it is anyone has come acrossed such issue..? Thanks!

Configuring external connection through a switch

Hi,Initial config query! We currently have 2 leased lines going into a managed switch for failover capabilities with then a single cable going into our existing firewall (Zywall).This weekend we would like to switch out the existing firewall with our new PA-850 but retain the managed failover switch within the dataflow (this will be replaced in ...

fa2019 by L0 Member
  • 5677 Views
  • 4 replies
  • 0 Likes

SSL decryption( Some traffic is not decrypted)

Dear All, I have applied SSL forward decryption in my Paloalto, then i observed some traffic are decrypted and some traffic not decrypt.Example:- I have applied the decryption in social-networking (Facebook traffic is decrypted but Snapchat traffic is not decrypted,however, both are falling under the social-networking category.) Why it's strange...

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks