This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4229 Views
  • 0 replies
  • 0 Likes

Seeking Guidance on What Content Should Be Included In a Panorama Maintenance Guide

Tasked with creating a "Panorama Maintenance Guide," but finding little detail regarding what should be included. I have search for something similar from Panorama, but I have been unable to locate anything.There are a few functions I want to include, but I do no have those technical details for performing the task. Details to include if possibl...

TLHaga by L0 Member
  • 2784 Views
  • 2 replies
  • 0 Likes

Resolved! Checking for CloudWatch

Hi all, Relatively new with Prisma and playing with the RQL. Would anyone be able to tell me if there's a query i can run that tells me if cloudwatch is enabled within an AWS environment? Report wise, I tried running something against CIS compliance and it's really just telling me that cloud trail is not integrated with cloud watch which doesn't...

Resolved! HIP logs review

Hi, Need your insight !!We have few VPN portals to meet HIP checks ( laptop - Domain and anti virus ) I could see the HIP logs in the HIP Match ( that means host passed the HIP match ?)Or those logs that shows HIP match passed or failed ? Any keyword or check mark to verify host cleared the HIP matches ? ThanksKM

GlobalProtect reports Machine Certificate (null) but it isn't...

Hey all,Recently upgraded to PAN-OS v9.0.3 and GlobalProtect is no longer working for some. Error messages in the system logs are showing GlobalProtect portal client configuration failed... Machine Certificate CN: (null) for those that fail but also Machine Certificate CN: (just a blank here) for those that are successful. This is intermitten...

cafowler by L2 Linker
  • 6413 Views
  • 1 replies
  • 0 Likes

Resolved! Panorama Error

Getting below error in Panoram's system logs : Panorama has lost connection to its peer, no log will be forwarded Though from Panorama all devices looks connected .Verifed the device status from panorma. Anyone facing similar issue ?

deepak12 by L3 Networker
  • 10939 Views
  • 4 replies
  • 0 Likes

TCP issues when moving an application through a Palo Alto FW

Hi, Following scenario: we have a 2-level Firewall Filtering / Security Setup active in our infrastructure, with a Cisco ASA currently acting as the Internet Firewall (updated to the latest Cisco ASA OS version) and an internal Firewall (Checkpoint appliance, also updated to GAIA OS R80.20). Among others (like Web Servers, DNS, Email, and so on)...

NAT PPTP VPN

Hello, im trying to set up a NAT rule for a PPTP VPN tunnel.I have set it up like this:Source: untrustDest. zone: untrustSource address: AnyDest. address: lets say 20.20.20.20/32Service: anySource Translation: NoneDest-Translation:20.20.20.20/32 Security RuleZone:untrustSource address: Geo Location:NO,EUDestionation:20.20.20.20/32Application: PP...

holten by L1 Bithead
  • 4002 Views
  • 1 replies
  • 0 Likes

TLS 1.3 support

Hi everybody,any news regarding change of decryption from passive to proxy mode to support TLS 1.3 decryption?Thank you,Jan

Palo Alto lab devices

Hi guys,I was assigned to work on a project with involves working with Palo Alto appliances a lot. I have never touched such a firewall before, so I am planning to get two (or more) devices for my home lab and experimental use. Do you think the PA-2050 model would be suitable to get me started and possibly help me get certified? Thanks a lot.Reg...

Problems with panorama and paloalto ACC No data display

Hello good afternoon I have a problem with my panorama and a Palo Alto HA, in the panorama the complete traffic is not visualized and in the ACC no data display. Already apply these commands > request log-fwd-ctrl device <serial number> action stop> request log-fwd-ctrl device <serial number> action start But the same thing is ...

Question about Global protect Pre-Logon Issue

Hi, I configured GP pre-logon method, But it’s only working in administrator mode even though the user is part of administrator group, it’ not working for normal users. I followed below KB article,https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClEYCA0 In global protect client installed laptops, we are able to connect g...

GlobalProtect.jpeg

On boarding Large Numbers of Firewalls Using Panorama and Bootstrapping

I am working on a project which will involve deploying a large number of PA220 firewalls to branch offices. This will happen over a period of time with probably around 30-50 branches per phase of work. These branch firewalls will be managed using Panorama. I am looking to streamline the whole deployment process and to this point have completed t...

rmarlow by L1 Bithead
  • 6246 Views
  • 3 replies
  • 0 Likes

Resolved! Trade-in of PaloAlto Policy

My current model of PA will be end-of-support soon.Thus, anyone could guide me what should we do to replace boxes for the supported model ? Anyone know the policy of trade-in old boxes with supported boxes ?Thanks in advance.Vorleak

Vorleak by L0 Member
  • 5112 Views
  • 2 replies
  • 0 Likes

PA-3020 SSL Decryption Query

Hi, I have enabled SSL decryption (forward proxy) on our PA-3020 firewall. The certificate is generated from our CSR and is installed on our PA-3020. I have set up a separate forward trust and forward untrust certificate. The forward trust certificate has been distributed via windows group policy and resides in the 'intermediate' and 'trusted' c...

PA Configuration File Format Conversion

My organization creates PA firewall configurations in "set" format as they are easier to read and peer review. It is very cumbersome to then put this style of configuration into the firewall itself. Is there a program/utility that can convert this to an importable/merge format? I know there are programs that can convert TO “set” format, but hav...

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks