This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4433 Views
  • 0 replies
  • 0 Likes

On boarding Large Numbers of Firewalls Using Panorama and Bootstrapping

I am working on a project which will involve deploying a large number of PA220 firewalls to branch offices. This will happen over a period of time with probably around 30-50 branches per phase of work. These branch firewalls will be managed using Panorama. I am looking to streamline the whole deployment process and to this point have completed t...

rmarlow by L1 Bithead
  • 6321 Views
  • 3 replies
  • 0 Likes

Resolved! Trade-in of PaloAlto Policy

My current model of PA will be end-of-support soon.Thus, anyone could guide me what should we do to replace boxes for the supported model ? Anyone know the policy of trade-in old boxes with supported boxes ?Thanks in advance.Vorleak

Vorleak by L0 Member
  • 5151 Views
  • 2 replies
  • 0 Likes

PA-3020 SSL Decryption Query

Hi, I have enabled SSL decryption (forward proxy) on our PA-3020 firewall. The certificate is generated from our CSR and is installed on our PA-3020. I have set up a separate forward trust and forward untrust certificate. The forward trust certificate has been distributed via windows group policy and resides in the 'intermediate' and 'trusted' c...

PA Configuration File Format Conversion

My organization creates PA firewall configurations in "set" format as they are easier to read and peer review. It is very cumbersome to then put this style of configuration into the firewall itself. Is there a program/utility that can convert this to an importable/merge format? I know there are programs that can convert TO “set” format, but hav...

How to get Applications using XML API

I am trying to get a list of applications, or a single application using the XML API. I have tried the following: api/?type=config&action=get&xpath=/config/shared/applicationapi/?type=config&action=get&xpath=/config/shared/application/entry[@name='icmp']api/?type=config&action=get&xpath=/config/predefined/application/entr...

Resolved! Panorama -Commit

I am new to Panorama.Can someone tell me difference between following :Commit -> Pust to DevicesCommit -> Commit and Push.Is panorama pushes whole running config or just change (e.g add object or policy) ?

Resolved! Minemeld install error on Ubuntu 16.04.6 LTS (AMD 64 bit)

Unable to get past step 7 as I am getting the message "Unable to locate package minemeld". I have removed and readded the repo (step 5), and I saw a post about using AMD image instead of i386 image, none of which resolved the issue. Wondering what I am doing wrong, so any assistance is appreciated. Using the following install guide: https://live...

Ubuntu_error.gif

Global Protect 5.0.2 - working deployments/configurations, open issues and everything else

Hi community Today Global Protect Version 5.0.2 was released. The way to this version was a long one. I had 10 open cases with different issues that I reported for Version 5.0.0 and 5.0.1. Most of them are fixed in 5.0.2 so this version - from what I was able to test so far - could be the best for the past years as also issues from earlier versi...

Remo by L7 Applicator
  • 15143 Views
  • 13 replies
  • 0 Likes

Resolved! Minemeld repository - Access denied

Hi,I'm trying to install minemeld on an ubuntu 14.04 server as outlined here:https://live.paloaltonetworks.com/t5/MineMeld-Articles/Manually-install-MineMeld-on-Ubuntu-Server-14-04/ta-p/98454However, the repository seems to be broken. It is returning an Access Denied error instead of packages as expected:http://minemeld-updates.panw.io/ubuntuIs ...

Management CPU high in 8.1.7 (just upgraded), bug?

Hi, We just upgraded from 8.0.11 to 8.1.7. And in this new version 8.1.7 the CPU MGMT is high (90-100%). I attach the top output: what is "pan_task"? its consuming lot of CPU. Any bug related to this in 8.1.7? show system resourcestop - 16:11:02 up 2:06, 2 users, load average: 5.21, 5.52, 5.58Tasks: 161 total, 6 running, 155 sleeping, 0 stopped,...

BigPalo by L4 Transporter
  • 6832 Views
  • 2 replies
  • 0 Likes

How can use loopback for virtual Ip

Hi expert , I would like to know about that if that possible or not about use loopback interface on palo alto such as Virtual IP same like VRRP in a scenario don't to downtime use VIP Thank you

IPSEC VPN tunnel monotor showing down

We have configured Tunnel Monitor for IPSEC VPN to monitor IP Peer side server. My query is I dont see ping packet intiated by tunnel interface towards destination IP on firewall logs. Though in show vpn tunnel-flow id I can see monitor packets sent incrementing does source packet gets encrypted inside tunnel ?

  • 24374 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks