This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4122 Views
  • 0 replies
  • 0 Likes

Connections Per Second Per host?

Has anyone found a way to see a hosts generated connections per second? In other words we want to hone in on a specific host and see the CPS being generated in either a live or post event. All I have found so far is global cps (show session info) Thank you

Cisco ACI plug-in Synchronize Error

We have completed the installation and integration of the Cisco ACI plug-in to our panorama environment. We have found that on 2 of the 3 APIC clusters we are tied into for 3 different fabrics we get the following error on synchronization.'State of ACI fabric is currently changing, unable to retrieve tags. Will try again next iteration." My only...

aci.jpg

snmpd crashing even after manual restart

Hi there, We have 2 PA-3020 in our environment working as active/passive.Recently after upgrading to PanOS9.04, both boxes are presenting issues with the snmp daemon. At first the problem was easily fixed with manual restart of process, and than became a weekly problem, but now the process last a few seconds before crashing. [Last logs before sn...

UNIRIO by L1 Bithead
  • 9771 Views
  • 3 replies
  • 0 Likes

Global Protect Doesn't connect to Portal. It connects to my WIFI instead

I have installed GlobalProtect,Version 5.0.3-29. All my colleagues are able to connect. Here are the steps:1. Install Cert in CertStore.2. Download GlobalProtect agent for 64 bit.3. Now when trying to connect to Portal. It doesn't throw any error but connects directly to my wifi. It displays "Not Connected. You are connected to ''Wifi Name ". Ha...

intermittent dataplane CPU spike

@BPry I am seeing the dataplane cpu spike to over 90% for about 5 minutes and then drop to normal. It comes intermittently with not regularity to when it occurs. I have been doing the show running resource-monitor, show system statistics, and showing the 20 top applications and I can not find it. Any suggestions would be helpful

jdprovine by L4 Transporter
  • 5542 Views
  • 3 replies
  • 0 Likes

Zero Day vulnerability in Google Chrome (CVE-2019-13720, CVE-2019-13721 )

Hi Team, Anyone know which Content Update (released or upcoming) might contain a mitigation for CVE-2019-13720, CVE-2019-13721 Refer the below link for Vulnerability details:https://www.cisecurity.org/advisory/multiple-vulnerabilities-in-google-chrome-could-allow-for-arbitrary-code-execution_2019-118/ Best Regards,Sahul Hameed

SahulH by L3 Networker
  • 9257 Views
  • 8 replies
  • 0 Likes

Resolved! Global Protect Feature - Enter client's notes per connection

Hello,We have Global Protect VPN profile that provide access to our environments and I need to let the clients to justify every connection to the VPN.I'd like to know if it is a way to open a text box for every VPN connection to let the client enter his notes and see the connections notes in the PA monitoring section. Appreciate your help... Th...

Content and Antivirus updates failing

Anybody else encountering this issue in the last days?Content and antivirus updates are failing with "Failed to download due to generic communication error. Please try again later."The internet access itself is OK. The issue seems to be on the Palo Alto Networks side.

Anon1 by L4 Transporter
  • 8736 Views
  • 6 replies
  • 0 Likes

Resolved! HA between two different Palo Alto Networks devices

Hello,Can I set up a HA between PA-500 and PA-220?I searched a response to my question in the PA documentations but I found that it is required to have two same model of Palo Alto Networks:https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClrsCACCan you please confirm this answer to my question ?Thank you in advance.Best ...

ra7oub4 by L2 Linker
  • 3782 Views
  • 1 replies
  • 0 Likes

Traffic Shaping requirement

Our customer wants to shape the traffic to 40 mbps user. I can see they have a QOS rule for all Traffic, class 4 is in use, does it mean the current shaping is 400 mbps? Is it per client or overall? How do we achieve customer request (traffic shaping per user)?

Class.png

Resolved! Having trouble passing traffic from one VPN through to another

Hi all, Here's what I'm trying to do - I have a PA firewall with two VPNs - let's call them A and B. I'm trying to work out how to get traffic from site A to route through to site B, but it's eluding me - the site B tunnel doesn't come up. I have tunnel.198 to Site A with a route passing 192.168.24.0/21 traffic to that tunnel, and tunnel.300 wit...

CoreHR by L1 Bithead
  • 3264 Views
  • 2 replies
  • 0 Likes

Globalprotect Block sessions if the certificate was not issued to the authenticating device

Hello,My organization is testing out GlobalProtect for Linux and we've quickly realized that the certificates we deploy through SCEP (MS NDES, Certmonger) can be utilized on other systems than whom they were intended for. This opens up for users with root access (dev's) to set up a non company owned/managed devices with GlobalProtect and this pr...

Tony-Le by L0 Member
  • 5561 Views
  • 2 replies
  • 0 Likes

Multiple URL Global Protect Multiple FQDN

We would like to use multiple URL's to access our Palo with Multiple LDAP authentication. portal.company1.com LDAP1 portal.company2.comLDAP2 portal.company3.comLDAP3 We could also do like C1.company.comLDAP1C2company.comLDAP2C3company.comLDAP3 Can anybody guide me to a solution so far support has not been super helpfull. Another is portal.comp...

  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks