This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4135 Views
  • 0 replies
  • 0 Likes

Active/Active ECMP

I have two Palo Alto 5250s running in my core network as a core firewall for all campus and datacetner traffic. They are running active/active. I have layer 3 routing south bound to two cat9500s not in VSS. So I am running HSRP on each 9500 alternating vlans to utilize them both. All 4 units are running OSPF to advertise loopbacks and iBGP is us...

Application Filters and dependencies - General Internet Use

Hi I've been following the instructions here: https://live.paloaltonetworks.com/t5/Blogs/What-are-the-recommended-applications-for-internet-access/ba-p/153835, on setting up applications filter for controlling internet access. I've configured the application filter, and applied it to my security policy, but I receive a lot of dependency warnings...

SSL Inbound Inspection

Hi Team Kindly help with below query. We approx host 100 websites of our partners. All websites are on SSL (https). I want to configure SSL Inbound Inspection. As per my understanding, I need to import SSL certificate of 100 websites for SSL inbound inpection. However this is not feasible. Is there any other simple way to implement the same. Reg...

How to upgrade a virtual panorama server from 7.1.16 to 9.x

Hi, I would like to upgrade a virtual panorama server from 7.1.16 to 9.x which has all Firewall logs and ACC reports. I read about log migration and Panorama mode change should also be part of this upgrade. I have never done a similar kind of upgrade and need help. Does anyone have any document or experience like this kind of upgrade?

Resolved! Query on Master key

Hello, We had to factory reset our standalone unit after the master key expired.Is Master key necessary for the PA? Looks like after factory reset there is no master key anymore. Thanks.

Resolved! Template variable setting of None a best practice?

At ignite someone was talking about using template variables and making sure that their values are set to "none" as default as a best practice, and then overriding on the panorama managed firewall (by local - I mean under Panorama/summary/managed devices). 1-If you have a setting of "none" and you place a firewall in that template stack- you ...

Sec101 by L4 Transporter
  • 9353 Views
  • 3 replies
  • 0 Likes

Resolved! unable to download vmware_nsx from support site

Hello, I've been struggling for some time now to upgrade Panorama from version 8.0.14 with NSX plugin (build_in) configured to 8.1.9.I'm getting this error:In version 8.0 you dont have the option to check now to be able to upgrade the VMWare_Nsx plugin.And I've checked on the support website to find the plugin, but I cannot find it in any of the...

VMWare_NSX_Plugin_error.jpg
GNeyrinck by L3 Networker
  • 5242 Views
  • 4 replies
  • 0 Likes

Resolved! External Dynamic List: add manual entries?

I'm using MineMeld to scrape Microsoft's website to grab the list of Office 365 related URLs and IP addresses. We've noticed that this feeds in *.outlook.com, but not outlook.com. This results in the common Office 365 Outlook Web App URL https://outlook.com/owa/<realm>.mail.onmicrosoft.com not matching the External Dynamic List ("EDL") g...

getting frequent wildfire updates

Every 5 mins getting alerts related to Wildfire Previous week, we have alert now and then but not this often (5-10 alerts per week) what can be the cause if sudden spike in updates?? It's a medium level system alert saying "Successfully registerted to public cloud wildfire.palonetworks.com"

syslog reports (web usage)

Hi all, I do daily scripted syslog reports for traffic through the firewall. PA syslog messages are pretty good actually. However, the only messages that have something that resembles URL is the messages of the "THREAT url" pattern. Now, I accasionally need to do a web usage report for some managers on what their employees are doing. For that I ...

au_igs by L1 Bithead
  • 6819 Views
  • 8 replies
  • 0 Likes

Question About Panorama VR || CAN ADD SINGLE ROUTE WITHIN A VIRTUAL ROUTER FROM TEMPLATE IN PANORAMA

Hi Team, Can anyone provide your valuable suggestions, If no any other alternate way please. I'm facing issue with configuration of the devices using panorama. Please find the details of the issue mentioned below. 1) Using panorama access enabled for the IP address X.X.X.X in policies and created route for the same in network tab.2) Th...

connect-server-monitor-failure

Has anyone experienced numerous of these "connect-server-monitor-failure" alerts when using agentless user ID? I have 20+ firewalls using a few specific domain controllers to get user ID info, but these alerts are constantly, 100's an hour. It seems to be related to WMI memory error, but I've already increased the wmi memory, described in this a...

MikeC by L3 Networker
  • 14405 Views
  • 7 replies
  • 0 Likes
  • 24340 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks