General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Demo Lab Environments - No Longer Available

I was going to review some Panorama setting options in the demo environment and the demo environment is no longer available. Did Palo Alto decommission these labs and was there any communication about it? If so, can anyone provide the communication? Here are the labs sites I have tried to reach and they just timeout. https://us1.demo.paloaltonet...

Resolved! Clear SSL Certificate cache

Hi,We have a PA-500 and I can view the SSL certificates with: "debug dataplane show ssl-cert-cn"I was told that this is the list of SSL certificates that are stored in the cache.However I'd like to know how to clear this cacheThanks

List of domains to allow for in-flight WiFi

Hi all, I've been working with a number of customers lately who have been trying to gather a list of in-flight wifi domains that they need to allow as GlobalProtect Enforcer exceptions and I thought I'd share them here. I'd also ask that you please post any additional domains or use-cases that are missing and I'll be sure to update my list. No...

chmotley by L2 Linker
  • 51003 Views
  • 15 replies
  • 7 Likes

Resolved! SIP traffic being dropped in drop.pcap without log on PAN OS ver 10.2.4-h10

Hi Team, I'm getting SIP traffic drops on drop.pacp without any logs on traffic monitor or in the global filter. i have SIP-ALG disabled and i have a policy to allow the expectect communication. My PA-460 is dorping some SIP packets, not all for the same comunicattion, just te request Message packets seems to be droped. Can you help me t...

Evaluation ESXi shutdowned

I testing Evaluation for ESXi PA-VM-ESX-10.2.5.vm_eval.ovaSuccessfuly,installed.But, after PA-VM login: indicated, I cannot login in entering default admin / admin.and,a few minutes later,PaloAlto-VM is shutdowned. Even I tried several times,it occured it everytime.Please help to address this issue.

Static default route setup for DHCP client WAN interface

Hello All I would be much appreciated if you can help with setting up my static default route which I believe is the culprit why I'm not able to route data traffic to internet. eth1/1: WAN interface, the interface is set as L3 untagged, configured DHCP-client for IPv4. ISP assigns a new IP every 10-12 hours and the bridge-mode cable modem...

static route setup.png
routing table and metric.png
Screenshot 2023-08-19 at 23.49.57.png
SNAT rule.png

Limited CLI Rights

Howdy All! We are in need of finding a way to give a help desk individual limited access to the CLI to run a Python script to clear addresses from the DoS Blocked-Table. The 2 commands it is running is the debug dataplane show dos block-table debug dataplane reset dos zone <zone> block-table source <ip address> What I have foun...

double nat

hello, my palo alto pa440 wan is connected to another firewall who is connected to the isp with a public ip natted to my firewall.i have to setup an ipsec tunnel i don't understand if i have to use the public ip or the vlan ip as local peer ip address thanks

Gruppoes by L0 Member
  • 1097 Views
  • 2 replies
  • 0 Likes

Microsoft Directory Services/ms-ds-smbv3 - Virus/Win32.WGeneric.yurld?

We are see numerous alarms from our SIEM from our Palo Alto firewall. Here is a copy of a scrubbed log message below. When asking the user about their activity, they only RDP'ed into various servers from their laptop via the Globalprotect VPN for remote admin work and ran a batch file that re-maps drives. Additionally they noted browsing to \\&l...

rosy876 by L0 Member
  • 687 Views
  • 1 replies
  • 0 Likes

Need assistance with troubleshooting Routing between 2 VR's that are connected via BGP

Hi, We have two VR's setup NSWHealth_VR and HSP_VR and there is BGP connectivity between them. We can see routes are exchanged between them. However, for one particluar route eg: 10.24.x.x/13 on HSP_VR we can see it on the loc-rib but not on the RIB-out. All other routes are working fine. Only this particular subnet is having issue. We have chec...

Unable to Register Devices - Please contact Support

Hi - just bought 3 No. PAN-PA-220 devices. I've tried to create a New User via support.paloaltonetworks.com but just keeps coming back "Error: unable to create user account. Please contact Support." I wish to get these registered. Can anyone help on this please? All the serials have been entered, the Sales order info & all the "*" fields...

JonNewson_0-1585908918962.png
  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels