General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 276 Views
  • 0 replies
  • 1 Likes

Resolved! Getting this from Vendor device eventid eq ike-recv-p1-delete

After Phase 1 success as Responder in PA  I am getting   below event id 

 

( description contains 'IKE protocol notification message received: INITIAL-CONTACT (24578).' )

 

and ( eventid eq ipsec-key-expire )

 

eventid eq ike-recv-p1-delete

description cont

...

MP18 by Cyber Elite
  • 8862 Views
  • 7 replies
  • 0 Likes

Resolved! show vpn ike-sa gateway Corp

when i run above command it says

 

Show IKEv1 IKE SA: Total 6 gateways found. 1 ike sa found.

 

Show IKEv1 phase2 SA: Total 6 gateways found. 65 ike sa found.

 

What does above number tell us ?

MP18 by Cyber Elite
  • 3405 Views
  • 4 replies
  • 0 Likes

Resolved! Every few mins in system logs eventid eq ike-nego-p2-succ

 

We have IPSEC tunnel to vendor every few mins in system logs i see

 

eventid eq ike-nego-p2-succ

 

and ( description contains 'IKE phase-2 negotiation is succeeded as initiator, quick mode. Established SA: 193.x.x.x.[500]-174.112.x.x[500] message id:0x8

...

MP18 by Cyber Elite
  • 4422 Views
  • 9 replies
  • 0 Likes

Resolved! Tunnel went down while PA was responder

Seems PA was responder and tunnel went down today at 9.29.22  MST

below are logs

 

 

We were responder so we should know the reason for tunnel going down

 

72%2019-05-10 09:28:16.772 -0600 [PNTF]: { 14: }: notification message 36136:R-U-THERE, doi=1 proto_

...

MP18 by Cyber Elite
  • 5325 Views
  • 7 replies
  • 0 Likes

Resolved! Content / Database Versions Do Not Match

Every week I recieve these emails while the PAN firewalls do their weekly updates, is there a way to not recieve these e-mails, the time stamps are exactly the same from each device, as they are upgrading at the exact same time. Is there a setting in

...

Resolved! How to...(VPN globalprotect)

Hello guys,

 

I'm trying to do something and i'm not really sure if it's possible. Let's get into...

 

I have an url that is for example: "www.myweb.com". Our partner is hosting that web and with his firewall is just allowing us the access through our IP

...

IPsec VPN with AH generates core files

Hi team, 

 

I have two VM-50 v9.01, one in SiteA and another in SiteB. I set up an IPsec tunnel between them with: IKE-v1 : phase1 (aggressive mode)  and phase2 (quick mode) with ESP.  it works fine and I'am able to ping from a vlan in SiteA to another

...

Resolved! cfg export + master key hash

Dear Community,

 

I have found this side note in an article regarding the master key on the firewall.

 

"Without the Master Key, when a configuration is exported from a firewall, the password is hashed and can be copied."

 

Basically its the exact answer o

...

Rboehme by L2 Linker
  • 3242 Views
  • 1 replies
  • 0 Likes

Unable to access the GUI of WF 500

Hi Team

 

In WF 500, we are unable to access via GUI but we have access via CLI (Putty).

 

WF 500 os version is 8.0.6. Please refer the attached error snapshot. 

 

Kindly help us to resolve the issue.

 

Thanks & Regards
Mohammed Ashik

PAN Wildifre 1 GUI Error.jpg

Resolved! Intel MDS Attack

Can anyone help to provide more information if below CVE are impacted in Palo Alto product line?

Intel Microarchitectural Data Sampling Vulnerabilities (Fallout, RIDL, Zombieload) (CVE-2018-12126 , CVE-2018-12127, CVE-2018-12130, CVE-2019-11091)

  • 23639 Posts
  • 107 Subscriptions
Top Liked Authors
Labels