This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4437 Views
  • 0 replies
  • 0 Likes

Traffic dropped due to old discarded session

We have traffic rule to allow the traffic but seems traffic is dropped by the PA when i did pcap.then from cli i did show session all filter source there i see old session from april in discarded state.i ran the command few times and this session was always there we try many times the traffic never worked. after clearing the old session id tra...

MP18 by Cyber Elite
  • 3165 Views
  • 2 replies
  • 0 Likes

Panorama pulling in vmware objects

I'm just wondering if there is a way for panorama to talk to vmware to pull in the virtual systems and tags for quicker deployments much like it can do with AWS. I have been looking around but I haven't seen anything specific and help would be great.

murphyj by L2 Linker
  • 2696 Views
  • 1 replies
  • 0 Likes

deny telnet command but permit JDBC protocol

We have an internal discussion about whether it is possible to block the 3 way hanshake TCP but allow the JDBC application protocol.In other words we would like to block the test of the port with the command "telent address port" but we would like that the connections via JDBC continue to work.is it possible to do this theoretically? Is it possi...

cata86 by L0 Member
  • 5009 Views
  • 2 replies
  • 0 Likes

SSL Certificates from enterprise CA

I will admit, certificates are one of my bigest hates.. I just can't get on with them Firstly we have a microsoft EnterPrise CA. Which I am not overly familiar with anyway ( But I have managed to get the web interface workig on it...) Idealy what I would love is top be able to generate certificates on the firewall that are trusted by all clients...

RMA'd Panorama m-100, how to migrate?

We had to RMA our m-100 Panorama and now I want to replace the failing one with the new one but for the life of me can't seem to figure out the steps to do that. The link from this page: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClNMCA0 is broken and support has been less than helpful. Has anyone done this before...

drewdown by L4 Transporter
  • 4260 Views
  • 2 replies
  • 0 Likes

Refresh EDL from webserver

Hello community, We are using EDL for manually blacklist and whitelist some domains. We configured all our firewalls to refresh the EDLs every 5 minutes, but EDLs don't refresh until a couple hours. The solution that we found is use the "import now" button, doing that the EDLs refreshes. Is there any log we can search to see why the EDLs doesn't...

Resolved! Any way to export pan_packet_diag.log?

Hi, When generating a flow basic log - is there any way to export just the pan_packet_diag.log using scp? According to https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClpFCAS the file wiil be included when exporting a TSF, but it would be useful to be able to export the single file...

Resolved! Using regex in defining a group address object

I'm defining a new group address object which should include addresses of several different tags (e.g. "Tag_1", "Tag_2", etc.).When trying to define the match field I cannot find a way to actually do that. I'm not sure it's even supported. Whatever pattern I use, no address object is assigned to the group.I've tried patterns in the following sty...

Resolved! Commit process

From Panorama during commit process , just typing "commit" and press enter will do commit to all device group/template ?

deepak12 by L3 Networker
  • 4673 Views
  • 2 replies
  • 0 Likes

Palo Alto Vulnerability Points (Urgent Action Required)

Hi Team, Can anyone provide your valuable suggestion here please.Below are the VAPT points shared by customer and solution provided : PA Vulnerability points (For reference please find attached pdf) :1) ssl/tls protocol initialization vector implementation information disclosure vulnerability (BEAST) - SSL/tls profile needs to be configure for f...

Resolved! How to Block browser extensions

Hello, Does anybody know if it is possible to block specific browser extensions from being downloaded?I would like to block the searchencrypt browser extension. Thanks

Any way to get this scenario configured?

I have GP Gateway license on my PA-5020 firewalls. I would like to allow 200 corporate owned samsung phones to access the VPN and block all other mobile phones. what are all the options I have to selectively allow them other than having a certificate authentication(because I have external clients connecting to same portal/gateway on laptops)? th...

  • 24374 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks