General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Question to wildfire renewal

Hey guys,

we need to renewal our licenses and I'm thinking if I should renew the wildfire subscription.

The problem is that we are not allowed to upload data to the public cloud (because of data privacy reasons)

So we actually don't really use wildfire

...

MPI-AE by L4 Transporter
  • 1447 Views
  • 1 replies
  • 0 Likes

Model PA-5060

Hi All, 

 

I have deleted the mp-logs by mistake, is there way to retrieve the logs?

If please kindly provide your suggestions will help us greatly.

 

I run the below command

 

delete debug-log mp-log file *

 

 

 

 

Resolved! GUI shows interface CLI shows Int not found

Web gui shows interface eth1/23

 

But cli

 

show interface ethernet1/23

Server error : Interface 'ethernet1/23' not found

 

show system state | match capa
cfg.general.is-admin-login-saml-capable: False
peer.cfg.general.is-admin-login-saml-capable: False
sys.s1

...

MP18 by Cyber Elite
  • 3556 Views
  • 4 replies
  • 0 Likes

Resolved! QoS statistics pop-up no longer shows a graph

Anyone come across a situation where the QoS Statistics pop-up dialog no longer shows a graph of traffic?

 

With PanOS 6.x, this dialog worked great.  With 7.1.x on the PA3020 it worked great.  But With PanOS 7.1.21 on PA500 and PA200, I just get an em

...

fjwcash by L4 Transporter
  • 2389 Views
  • 3 replies
  • 0 Likes

Evnet IDs descriptions

I am looking for a KB article or document which explains event IDs related to System logs. For e.g.  Logs> System > type (general)- event ID (system-start). 

 

How many type of event IDs are in PAN firewalls system logs & their descriptions ?

Schedule Restart of Firewall

Is there any web/gui interface option to schedule a reboot/restart of a PA 3000 series firewall running 8.1.5?  Any command line level option?  We'd like to restart the firewalls middle of the night without IT being awake to do so.

 

Mike

mlarish by L1 Bithead
  • 10121 Views
  • 3 replies
  • 1 Likes

sync panorama config to FW

Hello

 

I have 2 FWs(HA pair) managed by panorama and I 

I followed below instruction and applied on 1 of them(the primary one) now cannot see any configs from panorama on the device.

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g00

...

qd_056 by L2 Linker
  • 3076 Views
  • 1 replies
  • 0 Likes

SSL Decryption

Hi guys,

Nowadays I am playing with a PA-VM (no license) and decryption policy. Basically there are many articles and that explain how Decryption policy works and how to set it up. I have checked and double checked my setting and I cannot make faceboo

...

PaloForum-Decryption.JPG
PaloForum-Security.JPG

Resolved! User Credential Detection- False positive

What method is everyone using to handle false positives for credential phishing? Does everyone just create a custom URL category and drop in the sites where users use corporate email as their user ID? 

Windows 10 Release Cycle and Global Protect Client

Hi All,

 

I'm currently working in an environment which is trying to keep up with the latest Windows 10 release cycles with their Windows as a Service model which brings out releases every 6 months.  We have found that with our AV products, our vendor 

...

NQ1234 by L0 Member
  • 4902 Views
  • 3 replies
  • 0 Likes

Firewall migration, testing rules

Is there a way to test the rules on a new Palo alto vs the existing firewall it will be replacing without affecting traffic? Something like TAP mode but that can block traffic like an in production firewall?

gonzox98 by L0 Member
  • 2048 Views
  • 2 replies
  • 0 Likes

VPN site-2-site configuration and OSPF

Hello forum members,

 

I have been testing the VPN site-2-site configurations on my Palo Alto VM lab, prior to deploying on our production environment. I have successfully set up a VPN connection where both firewalls use static routing. Trouble I'm hav

...

topology.PNG
interfaces.PNG
tunnel.PNG
VR.PNG
rchung54 by L2 Linker
  • 6513 Views
  • 10 replies
  • 0 Likes

Resolved! ping from vr

All, is there an easy way to designate a vr as aq source when pinging ? Like ping host a.b.c.d virtual-router myvr ?

So far I only found a way to specify a source interface but the I need first look up a source interface in the specific VR. Any easier

...

lafrank by L0 Member
  • 6769 Views
  • 5 replies
  • 0 Likes

A few questions

I am planning to install another vsys in the 7080 firewall 

 

my queries 

 

how many max vsys can be created for the 7080 firewall 

How may Site2Site tunnels it supports for each Vsys

How many RAVPNs it supports for each Vsys

How many connections it can han

...

HemanthV by L2 Linker
  • 1893 Views
  • 1 replies
  • 0 Likes
  • 24034 Posts
  • 102 Subscriptions
Top Liked Authors
Labels