General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Global Protect 5.0.2 - working deployments/configurations, open issues and everything else

Hi community Today Global Protect Version 5.0.2 was released. The way to this version was a long one. I had 10 open cases with different issues that I reported for Version 5.0.0 and 5.0.1. Most of them are fixed in 5.0.2 so this version - from what I was able to test so far - could be the best for the past years as also issues from earlier versi...

Remo by L7 Applicator
  • 15296 Views
  • 13 replies
  • 0 Likes

Resolved! Minemeld repository - Access denied

Hi,I'm trying to install minemeld on an ubuntu 14.04 server as outlined here:https://live.paloaltonetworks.com/t5/MineMeld-Articles/Manually-install-MineMeld-on-Ubuntu-Server-14-04/ta-p/98454However, the repository seems to be broken. It is returning an Access Denied error instead of packages as expected:http://minemeld-updates.panw.io/ubuntuIs ...

Management CPU high in 8.1.7 (just upgraded), bug?

Hi, We just upgraded from 8.0.11 to 8.1.7. And in this new version 8.1.7 the CPU MGMT is high (90-100%). I attach the top output: what is "pan_task"? its consuming lot of CPU. Any bug related to this in 8.1.7? show system resourcestop - 16:11:02 up 2:06, 2 users, load average: 5.21, 5.52, 5.58Tasks: 161 total, 6 running, 155 sleeping, 0 stopped,...

BigPalo by L4 Transporter
  • 6857 Views
  • 2 replies
  • 0 Likes

How can use loopback for virtual Ip

Hi expert , I would like to know about that if that possible or not about use loopback interface on palo alto such as Virtual IP same like VRRP in a scenario don't to downtime use VIP Thank you

IPSEC VPN tunnel monotor showing down

We have configured Tunnel Monitor for IPSEC VPN to monitor IP Peer side server. My query is I dont see ping packet intiated by tunnel interface towards destination IP on firewall logs. Though in show vpn tunnel-flow id I can see monitor packets sent incrementing does source packet gets encrypted inside tunnel ?

Panorama NAT Translation

I have two datacenters in a region to where multiple offices backhaul to the primary datacenter or may fail over to the secondary datacenter. Both firewall pairs are managed by Panorama. Each datacenter has its on unique external IP range. We break out these offices on their own exit IP due to local language differences. My question is can I mak...

Resolved! Prototype from custom extension not showing in GUI

Hello, First: nice work! Nice tool 🙂 I've created my own extension for a new miner (to mine Bluecoat Local Database with a specific format) I've followed the youtubeminer tutorial and achieved to: - package my extension (wheel) - install it on minemeld manually (I cannot do it through git) But my custom prototype does not show in the We...

ARMEL_D by L0 Member
  • 4199 Views
  • 1 replies
  • 0 Likes

Palo Alto VM firewall registration

Dear All,I am a beginner to this platform and I successfully dowmnload a copy of PAN-VM-7.0.1.ova from the internet to start hands-on practice. I am trying to register the VM firewall to the Palo alto support website for more features and trial licences, unfortunately, for 10 days I am facing a nightmare reason why I decided to seek for help f...

2019-08-07.png
2019-08-08.png
bngala5 by L0 Member
  • 3109 Views
  • 1 replies
  • 0 Likes

User ID firewall having an empty status column for the server monitoring

Hello, We are using PAN-OS 8.0.6-h3. Our User ID firewall is showing an empty status column for the server monitoring. > show user group list Server error : op command for client useridd timed out as client is not available ^^This was encountered while adding an AD group in the Group Mapping -> Group Include List > less mp-log useridd.l...

ServerMonitoring.jpg

HA on aggregated interface

We don't have a qsfp module yet for our core switchse yet, so i am trying to use regular 10G interfaces in aggregate ethernet type HA.But neither Panorama nor the firewall iself seems to give the option for aggreagate interface in the dropdown of HA2 settings. If i set the interface indvidually to HA, I can see that option in both places. show ...

raji_toor by L4 Transporter
  • 10857 Views
  • 6 replies
  • 0 Likes

Resolved! How to ignore BFD traffic passing thru on virtual wire?

I have a virtual wire configuration, on an active-passive firewall cluster, where I am running a routing protocol through the virtual wire, with BFD (Bi-Directional Forwarding detection) attached to that routing protocol. In the virtual wire mode, the firewall is NOT participating with the routing protocol, and also, the firewall does not partic...

How to utilize VM-Information source

All, I'm attempting to alleviate some of the day-to-day operations that we do, and found that VM-information sources might be useful. I've got a test environment that can talk to a test vCenter and pull the attirbutes, but I'm not able to get the tags back from the server. Are tags a readable parameter for the Palo to use to build dynamic addres...

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels