This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4114 Views
  • 0 replies
  • 0 Likes

Global Protect HIP check issues

Have had an open case with support since August 2019 with HIP checks setup for Global Protect. There are options to allow HIP checks for a large number of different AV vendors and their products. The issue we have come across is that we have defined specific AV vendors that can be used and all others are denied. The vendors we have allowed we...

mattwech by L0 Member
  • 4059 Views
  • 2 replies
  • 0 Likes

VPN between Palo Alto and Check Point firewall

Hello,I am trying to establish a successful VPN connection between my Palo Alto firewall and a Check Point firewall. The VPN tunnel on the Palo Alto side shows all green for phase 1 and 2, however on the Check Point side I keep getting a failure per the log "IKE failure no response from peer".In the "Monitor" > "System" log of the Palo Alto t...

HA clarification with a single ISP

Hi Gang, Excuse me for my ignorance. We had firewalls Palo literally thrown at us, and instantaneously put into production (not great!). I have a pair of Palo's in HA Active/Passive with preemptive enabled on active/primary. These are in turn, patched to an INET switch (internet handed off via a single ethernet patch cable to this switch). We ...

Bootstrap debugs / logs

Hi, I was wondering when I went through the bootstrap documentation, it mentions that it should display logs of the bootstrap even if successful but in either case, nothing appears on the console, not even a single word about bootstrap... where should this be displayed or how can i check these logs?

CLIq by L3 Networker
  • 6427 Views
  • 5 replies
  • 0 Likes

*Urgent* Global Protect Crypto

I have one more query, If I change week encryption to strong encryption in tunnel traffics like Global Protect, IP sec tunnels, will it get affect the clients ??Of course We have to check the peer side before we change the encryption methods & algorithms for IPsec tunnel but what about global protect ??If we change the GlobalProtect IPSec Cr...

IPSec tunnels - Active/Passive OR Active/Active

Hello Folks,I'm planning on getting two new Palo Alto firewalls for setting up IPSec tunnels. I think the first tunnel will be a primary tunnel and the second tunnel will be back up. I'm tempted to set up my new firewalls as active/passive HA, to make life easy. But to be sure, please could someone suggest what are the advantages of using active...

Jedi_D by L2 Linker
  • 9833 Views
  • 3 replies
  • 0 Likes

Blacklisting Workstations?

Sorry if this is a dumb question, I'm still a bit new to PA. I've recently had a case where a few workstations cannot access anything beyond the local network. A trace shows that they can reach their default GW, but not the next hop, which is the PA. As a workaround, I found that changing their IP address resolved the issue. I then found that if...

Luke_R by L2 Linker
  • 4060 Views
  • 4 replies
  • 0 Likes

ntlm exited 4 times must be manually recovered

In our system log of the PAN5250 with PAN OS 8.0.15 i see the following critical message : ntlm exited 4 times must be manually recovered. Does anyone has the same issue or knows how to handle this. I can't find how to manually recover this and where this is coming from. Thx for the help in advance 🙂GreetzManu

ManuDC by L0 Member
  • 5125 Views
  • 1 replies
  • 1 Likes

TLS syslog to a cloud based SIEM

Running software version 8.1.10 on this PA firewall.I have the TLS syslog server profile setup in Configuration type logs and that works (getting config logs).Then I setup this log forwarder profile that has both TLS syslog and UDP syslog server profiles.When using adding logging for each line of policy to log on session close with the aforemen...

ryupapa by L1 Bithead
  • 3714 Views
  • 3 replies
  • 0 Likes

Resolved! Antivirus Profile and Default Actions

I've been looking at our PA, and I've found that it's detecting viruses being delivered in SMTP traffic. The PA is alerting, but taking no further action. Looking at this guide here, I understand that Palo Alto have this set based on the best recommendation at the time.https://docs.paloaltonetworks.com/pan-os/7-1/pan-os-admin/policy/best-practic...

Luke_R by L2 Linker
  • 3359 Views
  • 2 replies
  • 0 Likes

Question regarding Customer Advisory "Content Delivery Network Infrastructure Update"

There is a new Customer Advisory "Content Delivery Network Infrastructure Update".https://live.paloaltonetworks.com/t5/Customer-Advisories/Content-Delivery-Network-Infrastructure-update/ta-p/307121 We use AppID "paloalto-updates" to allow download of updates. Does this need to be adapted? The firewall devices are configured to use update server ...

Anon1 by L4 Transporter
  • 5182 Views
  • 4 replies
  • 0 Likes

GP: "Matching Client Config Not Found" when trying to connect

Heya Gurus!I'm running into an issue that I can't seem to figure out. I helped a client migrate a firewall over from Checkpoint to PAN. A few false starts and we got it going. Now we are working through the 'b' list of items that needed to be figured out and tested.We have the GP portal/gateway configured for LDAP/AD authentication, and the a...

Resolved! Cannot apply advanced filters for O365 API feeds

I'm trying to filter out unneeded/unnecessary indicators from our O365 feed, but no matter where I apply the filters I am still receiving all of the indicators. For example, I would like to filter on only indicators available over Express Route, and in the JSON you can see that 'expressRoute' is an available field with a boolean value of eithe...

benime by L1 Bithead
  • 13502 Views
  • 6 replies
  • 0 Likes
  • 24333 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks