This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Update to Notifications in Support Portal (CSP)

Attention Customers with Support Portal accounts: The Customer Support Portal's notification system has been updated to provide additional functionality and ease-of-use in responding to certain notification types. The updates to CSP notifications include the following: A much easier to read list of notifications with a more visible area The...

Resolved! GUI only works with Incognito

Hello -We replaced our palo last night and now the GUI will only open in Incognito mode in Chrome. I tried clearing the cache. That didn't help.

Shawverr by L3 Networker
  • 7500 Views
  • 6 replies
  • 0 Likes

High management cpu usage on PA-820 with PAN-OS 9.0.4

Hello everybody, I know it is a faq already asked on the community forums, but in this case it is especially related to this particular configuration: PAN-OS 9.0.4 on a PA-820. Starting from the day I installed 9.0.4 on this machine, I see the management cpu always at 100%; the top 5 processes with higher cpu usage are the httpd and four pan_t...

grenzi by L3 Networker
  • 11280 Views
  • 3 replies
  • 1 Likes

Access to Panorama after upgrade to 8.1

HelloAfter upgrade Panorama to 8.1.11 I can't connect to GUI via proxy server (proxy server just substitute own certificate) I can reach login page but after putting credentials to Panorama I see blank page.Before upgrade access was ok.Direct access to Panorama GUI is working fine.Any idea ? Thank you

polak71 by L1 Bithead
  • 2246 Views
  • 1 replies
  • 0 Likes

Resolved! Global Protect User Groups

I want to user map configuration to AD user group for Global Protect clientless VPN. This works quite will if authentication is LDAP.Have you any idea how can I get it to work with Radius authentication? Presuming that the user has the same name as the LDAP user, would they be matched to the relevant AD group?

BatD by L4 Transporter
  • 3625 Views
  • 3 replies
  • 0 Likes

Difference between making a report with "Run Now" and making it with the "Scheduled" option.

Hello, I have created a custom report with the following settings in Panorama: set shared reports "Threat Summary-Diario" type panorama-thsum sortby countset shared reports "Threat Summary-Diario" type panorama-thsum group-by srclocset shared reports "Threat Summary-Diario" type panorama-thsum aggregate-by [ category-of-threatid threatid subtype...

bprietoc by L1 Bithead
  • 4338 Views
  • 3 replies
  • 0 Likes

Resolved! scp export log traffic to a server not using port 22

Hello, I'm trying to send an export of traffic log to a server that use port 40111 instead port 22.I'm using this command in Panorama: scp export log traffic to pppp@1.1.1.1:40111 But receive a timeout indicating that host 1.1.1.1 hasn't available port 22.In GUI you can configure the destination port when use SCP, why not in CLI? Thanks in advance.

bprietoc by L1 Bithead
  • 4277 Views
  • 2 replies
  • 0 Likes

Resolved! Rule usage report in PanOS 8?

Is it possible to create (scheduled) rule usage reports in PanOS 8, ideally from Panorama on a per device group basis? I see the rule usage data present, seems silly there wouldn't be a capability to query against it.Rules (not) used withing last X days?

BoDollis by L1 Bithead
  • 4952 Views
  • 3 replies
  • 0 Likes

Debugging packet flow.

Hi there, We have just moved from a Juniper SSG-550 with around 700 policies to a PaloAlto 3050. Naturally this has thrown up a few issues! Can anyone explain how to do the equivalent of a Juniper “debug flow basic” on the PaloAlto? On the Juniper, this would all you to follow the journey of a packet from ingress to egress, through the ent...

Blocking vs. logging throughput

If I have a security policy applied to all my zones which includes profiles for everything (AV, spyware, vulnerability protection, etc.) but the actions are all just logging or alerting and not blocking, would that affect my throughput? I was wondering if I could run all of these services and still get the box's max throughput if I'm not blocki...

Threat / AV signatures after OS EOL.

Will AV / Threat Signatures still up date on 8.0 after EOL? I only found out it was going EOL when I logged into another of our clusters with 8.1 which told me on the MOTD.. The MOTD on the 8.0 has no such message. I have had look through the "Palo Alto Networks Content Update" emails and can't find any warning. Even on the 8.0.20 release ther...

Resolved! Replacing a Palo

Hello -We had one of our Palos die on us, we have the replacement and I have read this document: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClHFCA0 But, I'm hoping someone on here can give me some real world experience tips and tricks or got-ya's. Basically we have a pair Palo1 and Palo2. Palo1 is the one that die...

Shawverr by L3 Networker
  • 4287 Views
  • 2 replies
  • 0 Likes

Resolved! PA-500 VPN with Amazon VPC

Hello,have someone a howto about connecting a PA-500 with the Amazon VPC Service?It would be nice to take a look on it best regardsDietmar Otto

PA session end reason is decrypt error -

In PA i saw this behavior for session end reason is decrypt error and traffic is working fine.I check with users where session end reason is decrypt error they told me they have no issues.we have ssl decryption enabled and PA is running 8.1.9IS this by design or normal behavior?

MP18 by Cyber Elite
  • 20125 Views
  • 2 replies
  • 0 Likes
  • 24379 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks