This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4117 Views
  • 0 replies
  • 0 Likes

Resolved! Troubleshoot Drop Counters

Hi Community, I got a question:During a project migration, we noticed asymmetric routing and had to disable the protection in Zone Protection profiles.While doing the tasks for aftermath, I wanted to analyze the problem and had a look at the global counters.There are a few drop counters I want to analyze deeper, so:How can I match specific sessi...

Chacko42 by L4 Transporter
  • 3911 Views
  • 2 replies
  • 0 Likes

SSl decryption-Failing android apps

All, I had enabled ssl decryption and no issues with desktops. But, Android phones have issues with apps like youtube,DUO etc but can browse through chrome.I assume this is because of certificate pinning that these apps use. Please correct me if I am wrong and also is there any way to resolve this besides excluding the URL or IPs?

Resolved! Aboute ACE exam and about the trainings!

Guys, I wanna to take an ACE exam and should to attand to the training courses. i've been told to attaend to the firewall configuration essentials Firewall Configuration Essentials 101 PAN-OS v.6.0 RevC training course, but i noticed also the follwoing training course Firewall Configuration Essentials 105 for PAN-OS 6.0 RevB. Does anybody know t...

9.1 testing - a couple things...

I have been playing with new features in 9.1 in the lab and have noticed a couple things that others may want to be aware of: * The Global Protect ACC tab is nice, however it does not include Global Protect client-less activity* With the addition of new GP logging there is now a GP log setting under the device/log settings tab. This allows for s...

hshawn by L4 Transporter
  • 2789 Views
  • 1 replies
  • 0 Likes

Known Issue in 9.0.5

Hi Team,There is a known issue in 9.0.5 and that is "Dataplane crash due to duplicate child SIP sessions."I have seen this below URL for further understanding,https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-release-notes/pan-os-8-1-addressed-issues/pan-os-8-1-12-addressed-issues.html#id5cc167be-a83f-4c3a-b809-6fc60597a6ff For SIP sessions i ...

Dealing with a Google Cloud VPN and setting MTU

We are working with a partner who is using Google Cloud VPN and we are seeing latency issues. They will only reference Google documentation and will not set MTU on their end. On our end we are trying to determine the optimal MTU setting, but it's a bit tricky. It also looks like setting MSS is not really an option for us as it's an interface-onl...

Threat log

Hello Team, In the firewall, it is showing around 4000 threat logs of brute force threat and I am receiving 4000 mail in my mailbox. Is there any way for specific threat I will receive only one email

dmodi by L2 Linker
  • 6420 Views
  • 10 replies
  • 0 Likes

AWS licensing issue

Hi guys, every time i login to the Panorama i get the following message: Warning: This Panorama instance does not have a license key. Click 'OK' below to try retrieving the license from the Palo Alto Networks Update Server.You have 0 days before commits will be disallowed. Please retrieve and install the license key as soon as possible. and afte...

Resolved! SSH connection issue with Panorama

Hi, i have deployed Panorama instance in the AWS and wanted to connect to it via ssh in order to set a password for the admin user,when connecting i used the private key generated by AWS and i was asked for a password which i did not set yet.please note that it was my first attempt to connect to the Panorama instance. Regards,Alex.

Small lab for google drive

From trust to untrust zone ,we have allow the download from google drive but have to block the upload from google drive and also i want to use internet for other web service help me security rule and if there any other url filtering

Resolved! API to trigger MineMeld Miner refresh

Is anyone aware of a way to remotely trigger a Minemeld Miner refresh. Does MineMeld have it's own API? I'm familiar with using PA API and Dynamic Address Groups for instant addititions of IPs. This is for a usecase where EDLs are used and we'd like to trigger MineMeld and then PA refreshes. I can refresh the PA EDL via API; however, I'm not...

PA-User by L1 Bithead
  • 9415 Views
  • 5 replies
  • 0 Likes

[need help]can't see new incoming logs after upgrading M-100 into 8.1.12

Originally my devices are:-one M-100 with 7.1.10-two PA-5020 (HA) with 7.1.10-one PA-3050 with 7.1.9all of three Palo Alto devices were registered to M-100 and forwarding logs were working fine. I start upgrading M-100 first. From 7.1.10 to 8.0.20.-upgrade is fine-three devices are connecting after upgrade-I know old format logs were not seen (a...

emr_1 by L5 Sessionator
  • 7824 Views
  • 2 replies
  • 0 Likes

Policy Optimizer "No App Specified" PDF/CSV Export

Hi,I am using PANOS 9.0.4 and working on legacy rules to AppID rule migration. When using the Policy Optimizer, trying to export the "No App Specified" data, the export is missing the "App Usage Apps Allowed" data, and the "App Usage Apps Seen" data.Anybody experienced this before? Is there a fix, or maybe I am doing something wrong?

PO-Data Export.jpg

Miner to collect Microsoft Public IP space

Hi Luigi, I need to create a miner on MineMeld containing all Microsoft Public IP addresses. Any plans to add a miner for it?The URL source is https://www.microsoft.com/en-us/download/details.aspx?id=53602 The file is in CSV format. I noticed you created something similar for Azure IP addresses, but the file format for Azure is XML, not CSV. ...

Resolved! dropbox - ssl decryption

Hey all,I am using dropbox on my PC and ssl decryption has been enabled on my Palo Alto. I added my PA root cert to my trusted certificates on my computer and am not getting any complains from my browser when surfing to https websites.However, my dropbox application is complaining that it can not make a secure connection to the internet.And yes,...

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks