This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4119 Views
  • 0 replies
  • 0 Likes

Empty "File URL" in "Data filtering"

Hi,I applied the default "basic file blocking" profile to the policy that allows users to access the Internet.In the "Data Filtering" monitor I can see few files being blocked (EXE files for example), but I can't see the full URL of that file (the "File URL" column is all blank). The goal is to understand if the root URL can be white-listed. Cou...

AMoretti by L1 Bithead
  • 4557 Views
  • 4 replies
  • 0 Likes

Resolved! "Error: Failed to connect to User-ID-Agent at x port 5007

we got this email aler from firewall that user id agent failed to connect to x on port 5007when i log on firewall i see user id agent is connected. We are running version 8.0.9 on PA 5050. how can i know the reason for disconnection on the firewall?

MP18 by Cyber Elite
  • 8821 Views
  • 4 replies
  • 0 Likes

Unable to create same tag with different subinterface

all wan subnets they have created single vlan id 200 and for all there is a single gateway.Project 1: wan1: 172.30.20.2/24Project 2: wan2 : 172.30.20.3/24...Project 7 : wan3 : 172.30.20.7/24For all project gateway is 172.30.20.1/24 because all subnets assigned to same vlan id.All projects have assigned in different VR & Vsys. Checkpoint - L...

Resolved! routing between 2 virtual router

hello,i have a setup like the image below.my goal is to allow internet throught interfaces 3 and 4 (i have a virtual router with these 2 interfaces, vr_l3) : this is workingi have an IPSEC tunnel on interface 1 (with another virtual router, vr1) to route 172.22.0.0/20 : this is workingi have a dhcp server on interface 3 if i put a route directly...

xxx.jpg

Compare the addressed issues list between 9.0.6 and 8.1.13

Hi, 9.0.6 was released on 1/27/2020 and 8.1.13 was released on 2/6/2020. While comparing addressed issues between the release notes, Many issued ids resolved in 8.1.13 are not listed in 9.0.6. Just a few examples, PAN-134678(PA-5200 Series firewalls only) Fixed an issue where the Quad Small Form-factor Pluggable (QSFP) 28 ports 21 and 22 did...

Resolved! dynamic address group in google cloud

has anyone used the dymanic address group objects in google cloud pan? is it supposed to pull all metadeta e.g. labels by itself. i am not seeing anything populated once i click the "Add March Criteria" button

josggf by L2 Linker
  • 3217 Views
  • 2 replies
  • 0 Likes

Resolved! File export issue

Hello, Whenever I export security rules or NAT rules from the firewall in PDF/CSV format, the file is not properly displayed my software version is 9.0.4example:-

clipboard_image_1.png

Resolved! Minemeld Feed Password OR api security

Hi we have used minemeld for some monthes and i figured out that i want to tighten the security even more.The question that then arose was the posibility to generate an api key or an user based authentication for my output indicators I don't know or think it matters but we run minemeld in two datacenters with mirroring and global loadbalancing.T...

m1.PNG
m2.PNG
Kimwii by L1 Bithead
  • 35113 Views
  • 15 replies
  • 2 Likes

Next-Gen VM-Series and Panorama generates "Invalid Opcode" VSCSI messages on VMware 6.0

We had an issue on our ESXi server and in looking through the logs found a large number of "Invalid Opcode" log messages related to the Panorama VM and Next Gen FW VM trying to access features of the VSCSIFs made available by VMware 6.0. These do not appear to affect the performance of either product, but it does indicate a disconnect between Pa...

kielecm by L0 Member
  • 3805 Views
  • 2 replies
  • 0 Likes

URL Access Error

Hi all,I have setup MineMeld on a VM and it seems to be working correctly but, when I setup the EDL on a PAN firewall and test it, I get a "URL access error" message on the firewallI have generated CA from Palo alto and i have created a certificate signed by this CA (with CN same of minemeld's hostename).After that, I have uploaded the certifica...

clipboard_image_0.png

Resolved! *Urgent* Global Protect.

Hi Team, We require to download the Global protect VPN client updates on our repository. So that users can direct update their existing Global Protect Client VPN software when connected to LAN network.Is there any way of downloading these updated version files from the firewall & sharing it across.

Panorama Unresponsive

Our client has noticed their Panorama VM becomes occasionally unresponsive after upgrade from 8.1.3 to 9.0.6. Has anyone experienced this issue? Is there a known bug?

Source address of PBF Monitor heartbeat ICMPs

I have a Policy Based Forwarding related question. If we have a PBF rule, with Monitoring enabled, and the "disable this rule if next-hop/monitor ip is unreachable" also enabled. So Palo Alto sends ICMPs to the monitored IP address out of the egress interface defined on the same page. However, what is the source-ip of these ICMP requests? Is it ...

  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks