General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 327 Views
  • 0 replies
  • 0 Likes

Auto update of trusted root CA

Hello,

 

Our PANs are not updating the list of trusted root CA certificates which is causing issues with services such as Microsoft Skype for Business and other applications as we have SSL decryption enabled. Using PAN-OS 8.0.7

For example, Microsoft us

...

Farzana by L4 Transporter
  • 6058 Views
  • 2 replies
  • 1 Likes

Analysis ransomware

Hi,

 

One of our servers have been infected by any kind of ransomware. We can see several files encripted. So we are seeing any evidence about the infection in the PA. The only trace that we saw in PA is that the infected server sends many dns sessions

...

AV.JPG
BigPalo by L4 Transporter
  • 4677 Views
  • 4 replies
  • 0 Likes

Resolved! MS Updates blocked

It appears as though all of the sudden ms-upate traffic is being picked up as either session-end reason threat or n/a and updates are failing on my MS servers. Regardless of the server they all seem to be hitting the unidentified default rule at the

...

Site to Site VPN cannot use any private network range

Hello,
I have to set up a Site-to-Site VPN so our users can access some resources on a clients network. As we had here a lab firewall, another Palo Alto, I set up a test between our production and lab. This worked and I was able to connect. For the ac

...

cheez by L1 Bithead
  • 11237 Views
  • 9 replies
  • 0 Likes

Resolved! Standard License Expired

My Standard License on PA says it expired, however the description on it is same as the last box which says License am I missing something ?

 

License

PALicence.jpeg

Paloalto PA-820 automatic restart

Dear All

 

 I have a problem, why suddenly our paloalto PA-820 automatic reboot?

 

 

This is informations :

Software Version8.1.2

 

Paloalto suddenly restart own self.

Logging :

1. flow_mgmt: Exited 4 times, must be manually recovered.
2. tasks: Exited 1 times,

...

Resolved! Query on HA failover

Currently our secondary unit is running as Primary.

We have upgraded our Secondary (originally Primary) FW and now would like to do the failover so that it becomes Primary.

If the failover doesn't work as expected what should be done straightaway to av

...

Resolved! show session all - command question

Is there any option for the 'show session all' command to act like log tail / stay active?  ie - it would be good / useful with troubleshooting to see new sessions that match the filter, to be appended to the existing output, rather than re-running t

...

Panorama Serial

Hi

 

I have deployed PA-VM-ESX-8.1.2.ova

 

I have powered on the vm and opened the gui.  I want to input the serial number that I have been given.

 

- Select PanoramaSetupManagement and edit the General Settings

- Enter the Serial Number and click OK

- Selec

...

billhogg by L0 Member
  • 2980 Views
  • 2 replies
  • 0 Likes

Does 2 spaces cause issue with group mapping

A securit policy is not getting used because ad group i entered is not matching the policy. On checking the cli i cannot list users in the ad group and get invalid syntax error.

 

show user group name cn=r-emp-it imp adm,ou=role restricted,ou=groups,ou

...

raji_toor by L4 Transporter
  • 4473 Views
  • 4 replies
  • 0 Likes
  • 23824 Posts
  • 112 Subscriptions
Top Liked Authors
Labels