General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 334 Views
  • 0 replies
  • 2 Likes

Update Panorama

Did not found any email to write Palo alto PAN-OS developers that hence writing here on feedback on palo alto Panorama update.

 

After finishing update panorama then against the version we update it gives option of "Re-Install" by clicking on that it

...

Resolved! Port forwarding through ipsec tunnel

Hello,

 

I have two Pa-440's.  One 440 has a public static ip and the other is just dhcp as of right now.     I do a site to site to site vpn working between them.  

 

I setup an original port forward on the public  static ip device to a local host a

...

IPSec IKEv2 multiple events per second

Hello everyone,

 

I see many events per second for a site-to-site IPSec tunnel and am unsure if it's normal. The below events have a severity level of informational but go over and over in a second.

My question is, is it normal? if not, where should

...

BGP Advertising prefix to same AS it was learned from.

I'm working on a VRF-centric DC model that utilizes a PA as the firewall platform between VRFs. One of the snags I'm hitting is that if a route is learned from R1 on an AS (say 65001), and is advertised via eBGP to the PA (AS 65002), the PA won't eve

...

Tyler_C by L1 Bithead
  • 13339 Views
  • 15 replies
  • 0 Likes

Unnown-TCP application "commvault"

Hi Guys, 

 

I hope you guys can help with classifying unknown traffic. 

 

I have read many forums for this topic none of which answer my specific question. I understand that should create a custom app if your application bespoke and it is unlikely that a

...

Deny any any ruleset

So if you accidentally put the any any and deny ruleset at the top of the panorama firewall and it wont let you in through the web interface. How would we be able to get into the panorama to change it back to the previous configurations??

User id integration cisco ISE

hi i did User id integration cisco ISE using syslog field identifier as article http://k12itdir.blogspot.com/2016/02/paloalto-user-id-from-cisco-ise-nodes.html?m=1 and its working fine . Problem its just send user name without domain and since i have

...

mhmameen by L1 Bithead
  • 1412 Views
  • 2 replies
  • 1 Likes

Resolved! Using the REST API to create a bunch of Address Objects

I have to create a large number Address Objects and would like to use teh REST API to do so.  I've seen a number of examples at adding various things, but I'm running into an issue with these specific shared objects.  The all live in a device group c

...

DaveFitz by L0 Member
  • 1917 Views
  • 1 replies
  • 0 Likes

TUNNEL STATUS RED AWS PAN TO ONPREM PAN

Hi Guys,

 

Need your help, as I cannot figured out what's wrong with my configuration. Both side of my Phase 1 are working fine but when it comes to Phase 2 connection is not complete. Any idea how to fix this issue?

 

Here is my AWS PAN configurati

...

MCipriano_0-1714708155306.png
MCipriano_1-1714708264907.png
MCipriano_2-1714708425551.png

Resolved! What does the configd process do for PAN-OS?

I'm documenting new services in PAN-OS present in 10.x. What does the configd process do? It appears to bind to udp/28879 (if only accessible "internally"). I do not see this service described in the Commonly Used Processes/Daemons url found here: 

h

...

jasonroy by L2 Linker
  • 2457 Views
  • 3 replies
  • 1 Likes

Cyserver stopped by ntdll.

Hi team, 

 

Recently, We discovered endpoints that got disconnected from the console and there is no clue on trapsd why it happened because the agent didn't record logs since its last_seenn on the console, for example; the agent has a last_seen on 1

...

MarcoMJ by L1 Bithead
  • 1059 Views
  • 1 replies
  • 1 Likes

Email laerts for just zone protection alerts

Hello all,

 

I have applied a zone protection profile to the outside zone on my firewall. I am wondering how I can configure the firewall to receive email notifications just for alerts for this zone protection profile. Like every time an IP address i

...

Resolved! GlobalProtect and other VPNs

Good afternoon friends  

I have some doubts regarding the application of GlobalProtect VPN, which is mandatory in my work.

I have a few questions and would love to hear the community's answers regarding the below.

I'm in Ireland and I would like to

...

  • 23670 Posts
  • 108 Subscriptions
Top Liked Authors
Labels