This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 382 Views
  • 0 replies
  • 0 Likes

Resolved! PA HA failover and IPSEC connection shows inactive

 

Yesterday during PAN OS upgrade when Passive PA became active I saw that our IPSEC connections stopped working.

 

CLI shows status as inactive

I did clear vpn command

test phase 1 and phase 2 still samething.

 

Only way to make this work was via restartin

...

MP18 by Cyber Elite
  • 11923 Views
  • 6 replies
  • 0 Likes

Mitigating CVE-2019-0624

HI @reaper , @gwesson 

 

I'm seeing the subjected CVE is missing in palo alto vulnerability profile.

 

How can I mitigate this vulnerability. 

 

https://nvd.nist.gov/vuln/detail/CVE-2019-0624


Regards

Venky

Dynamic update release date

Hi Community,

 

Hope somebody can address my below query.

I am able to see the Release date of App&threat version 8146-5421 as 2019-04-25 UTC in both threat vault and support portal( is it actually UTC time??, i am seeing 1-day gap here !),

But my firewa

...

release date in firewall.PNG
Threatvault.PNG

Resolved! Can you add a custom report to the PDF Summary PA-850?

I've been trying to figure out if you can add custom reports to the PDF summary report or how I can group a list of reports into one PDF report. My CIO likes the summary report but would like it to be monthly or quarterly and I'm trying to figure out

...

Resolved! managment port importance?

this is my first time deploying palo alto , is it important to have the managment port connected? does it play important role in the device function or is it just solely for managment?

like can i manage the device from the inside interface only?

chuckles by L2 Linker
  • 3099 Views
  • 4 replies
  • 0 Likes

Resolved! Passive PA and IPSEC Connections

We have PA in active passive mode,

 

We have ipsec connections going to end devices.

When i check the passive PA GUI  I see 

 

All Phase 1 connections as red

All Phase 2 connections as green

 

IS this normal behaviour?

MP18 by Cyber Elite
  • 3039 Views
  • 3 replies
  • 0 Likes

Resolved! allowing and denying ip address traffic on VWIRE?

i have a core switch and a router which connects to other router to reach the internet , i was wondering if i put the palo alto as a VWIRE between the core switch and the router would i be able to control which ip addresses can go to the internet and

...

chuckles by L2 Linker
  • 2421 Views
  • 1 replies
  • 0 Likes

Disk usage for / exceeds limit, 95 percent in use.

I know there have been several messages about this issue, but so far, the only solution Palo Alto has given, is to update to a new version. We have followed PA suggestions and months after the update, the issue starts again and their solution will be

...

Queries on IKE and GP Gateway

Hello,

 

We are planning to use Faster Link (400MB) as our primary link in our org.

Once we get this link running, we can get it setup with GlobalProtect and start setting up the remote sites to connect to that link as a secondary tunnel until we are re

...

Can a PA firewall replace a Squid/DansGuardian setup?

Currently, in our schools, we use Squid+DansGuardian for basic web content filtering (URLs, phrases, domains, client users, and client IPs).  We use Squid for handling the HTTP requests, not for any local disk/mem caching.

 

It appears that most of thi

...

fjwcash by L4 Transporter
  • 3955 Views
  • 2 replies
  • 0 Likes

Resolved! Clear Alarm LED?

Hey all, I have a PA-220 that has the Alarm LED lit.  The cause was that someone tried to insert a power supply from a PA-200 into the PA-220.  Thinking that what happened is that a brief short was created which triggered the alarm.  All other LEDs a

...

cafowler by L2 Linker
  • 11686 Views
  • 4 replies
  • 0 Likes

Virtual router to virtual router communication

 Hi, 

 

We have a setup in which a switch is used for interconnecting several virtual systems to a perimeter router. The switch is going end of life and needs to be replaced. Is it possible to replace this switch with a "Virtual router" in Palo Alto?

Be

...

Inter vr-routing.jpg
MGRashmi by L2 Linker
  • 8103 Views
  • 3 replies
  • 0 Likes
  • 23837 Posts
  • 112 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks