This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4129 Views
  • 0 replies
  • 0 Likes

Restart is disabled because no ike sa was established

We have IPSEC tunnel to vendor.Tunnel is up Gui shows Phase 1 is red.I can ping the IP on the tunnel on vendor side which is Gateway for Vendor LAN.Unable to ping the LAN IP on vendor side. PA shows traffic is passing but nothing coming back from vendor LAN?

MP18 by Cyber Elite
  • 5780 Views
  • 2 replies
  • 0 Likes

Firewall rules suggestion

Hello I would like to have advices regarding firewall rules. I'm deploying a PA-3220 on my main site (site A). On this main site, I have several zones configured on my PA3220 (user, servers, dmz Intranet,). I have also 5 remote sites. I must create a rule to allow small sites and users & servers zone configured on my main site (site A) to re...

Resolved! PAN Next Generation Firewall 3020 can't Forward Logs Properly to External Syslog Server

Hi, I'm trying to forward all logs from PAN Firewall 3020 to an external Syslog server. I have followed the guide here and have tried to debug the problem by accessing the firewall through CLI but to no avail. However, I think I might have noticed an error from debugging. By running this line of code, I get the following results:debug log-receiv...

Resolved! File Blocking rule logic

The following KB article states that the File Blocking rulebase is not top-down but based on action precedence. The article fails to mention anything on the function of the application column with regard to processing logic:https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClGeCAK If for instance, I have a security rule t...

Resolved! Allow traffic after "decrypt-error"?

Is there any way to allow traffic after "decrypt-error"? I get a lot of decrypt-errors showing up in the logs when SSL decryption is enabled. Most of it is from amazonaws.com (even though I excluded it from decryption). I would rather just allow the traffic to pass, but instead it's getting denied by default, and I can't find any way to allow it...

Maxstr by L3 Networker
  • 23868 Views
  • 2 replies
  • 0 Likes

The command "Show systems statistics session" in a daily report?

I would like the information displayed in the "Show systems statistics session" CLI command to be packaged into a daily report so that I could see the previous day's throughput, packet rate, TCP sessions, etc and displayed in nice line graphs. Is there such a report? Thanks! UpdateI solved this by using the XML API and a Powershell script (belo...

Can rapid fire spam phone calls be blocked by the PA

Can rapid fire spam phone calls be blocked by the PA, they seem to be similar to a dial of service and they are making it possible for us to make outgoing calls or recieve incoming calls by using all our phone sessions? Is there a way to block them using the PA?

jdprovine by L4 Transporter
  • 10788 Views
  • 10 replies
  • 0 Likes

Resolved! Threat log forwarding from unlicensed PA device?

Hi folks,I believe I know the answer, but wanting to make sure I understand. I am configuring log forwarding to a Varonis server for testing. I've been sending the traffic log, but Varonis will only process the Threat log. I've configured the Threat in the Log forwarding profile, Vulnerability profie, etc and assigned it to my security rule,...

pasyslog.jpg
OMatlock by L4 Transporter
  • 4341 Views
  • 3 replies
  • 0 Likes

I have question with SSL decryption.

Hi there.Few days ago, I 'd changed one of my client's F/W .Everything was okay but decryption wasn't working.After few times, I found out what problem was causing that issues.(added decryption profile and changed policies (service: application-default -> any)But I don't know why do I have to add profile and changed service. So Please let me ...

Resolved! Is it possible to disable FQDN refresh?

According to these articles: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClHJCA0https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClKbCAK it is possible to change the timing of how often PA does a refresh for FQDN objects, but is there a way to disable the refresh, either globally or for spec...

  • 24337 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks