General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 192 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 874 Views
  • 0 replies
  • 0 Likes
Palo Alto Networks Approved
Palo Alto Networks Approved
Community Expert Verified
Community Expert Verified

Resolved! Howto delete sub-interace from cli

Hi,

I`m trying to delete a sub-interface from CLI but cant seem to find the correct command, i managed to remove the IP address and tag but not the entire sub-interface.

admin@PA-200# delete network interface ethernet ethernet1/4 layer3 units ethernet1

...

u18830 by Not applicable
  • 19657 Views
  • 16 replies
  • 0 Likes

CPSP Program Member Confirmation

Hello, 

 

I am both domain administrator and super user in paloalto. And, we are partner. I need to get Micro-Credential for Cloud Security Consultant (PMCC). It needs "CPSP Program Member Confirmation". And, I send request and it says, "Activity req

...

JahidAliyev_0-1710419244646.png

Threat Prevention - Qualys PCI

Hi all, I have a bit of a dilema here and hoping somebody may have some ideas....

 

  1. We have threat prevention profiles applied to security policies relating to traffic entering our DMZ from the internet.
  2. We have PCI obligations and use Qualys' PCI scann
...

GMHBA by L1 Bithead
  • 9023 Views
  • 10 replies
  • 0 Likes

Resolved! Expand Log Storage Capacity on the Panorama Virtual Appliance

Hi everyone,

I'm using Panorama 8.0.5 in Legacy mode on ESXi 6.0, I've 2 virtual disks:

      virtual disk 1: 52GB for system

      virtual disk 2: 500GB for logging storage.

Now, I want to expand the size of logging storage up to 2TB. So can I just chan

...

Hongson by L2 Linker
  • 4795 Views
  • 5 replies
  • 0 Likes

Resolved! GP - Connect with SSL Only

I am running panorama 11.1.3 and using prisma access (Mobile_User_Template). I have read that there is a Connect with SSL Only option but I can not find this. I'm looking in Portal->Agent->App.

 

What am I missing?

 

Here is every setting I have past

...

Resolved! Access limited to tenant

Hi,

Is it possible to define user profiles or roles on Cortex XDR so that, for example, on the same tenant:
- when a user/admin with role X logs in, he/she can only see Workstations
- when a user/admin with role Y logs in, he/she can only see Servers.

I

...

S.Vilon by L1 Bithead
  • 1028 Views
  • 2 replies
  • 0 Likes

Traffic log source user different from User-ID log


Hi everyone,


Greetings!

PA-1410
11.0.4-h1

I have a bit odd issue, the traffic log (ip address) is showing a local firewall account as the source user but when checking the user-mapping (show user ip-user-mapping ip) or User-ID log was mapped to an AD-us

...

Assistance with URL Filtering

Having some issues getting URL filtering to work as I would expect.  Have a valid license, created a URL filter profile blocking some categories.  Created and SSL decryption policy as well and applied it to a test users.  Games is one of the categori

...

DJ_1924 by L1 Bithead
  • 591 Views
  • 1 replies
  • 0 Likes

Unable to see IPSEC tunnel IP in trace

Unable to see IPSEC tunnel IP in trace.

 

IPsec tunnels have tunnel interface where the IP is configured. 

 

Peer1  - PA 

Host 1 - behind PA

Peer2 -  Other vendor

Host 2 - behind Peer2

 

Host 2 trace to HOst1 , can see Ipsec tunnel IPs in trace,

when

...

Community Expert Verified
Community Expert Verified

Resolved! PA-460 Upgrading from 10.2.3-h9 to 11.2.0

Hi Guys!

 

I was in my way to upgrade my PA-460 from the version 10.2.3-h9 to 11.2.0, i tried to use the Validate button, to take a look at the upgrade path, but i can't see any result, but i still have my doubts, 

 

I saw that in the Documentation s

...

R.Tudon by L1 Bithead
  • 9567 Views
  • 6 replies
  • 2 Likes

Resolved! Wildfire Analysis Reports - Cannot View from Panorama or NGFW (detailed log view) but available in Wildfire Dashboard wildfire.paloaltonetworks.com

Monitor > Wildfire Submissions - Detailed Log View  

 

 

 

Fetching WildFire server wildfire.paloaltonetworks.com:443 report failed!
Please examine service route, proxy setting, and secure connection client setting.

 

The reporting firewalls are regi

...

NSutfin_1-1722451735476.png
NSutfin by L2 Linker
  • 939 Views
  • 1 replies
  • 0 Likes
  • 24007 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Posts
Top Liked Authors
Labels