General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Resolved! Renew SSL Certificate

Hello,

Can someone please provide link/instructions for renewing expiring Panorama SSL certificate with a .pfx certificate?

Also, please provide the instructions for the Palo Alto devices as well if they also require SSL certificates.

Thanks in advan

...

Zone configured in device not listed when tried configure policy via panorama

I configured new zone in a firewall device and commited it to the device, all other zones where created the same manner ( overrides )

But when i try to configure a policy using with associated device group via panorama, the configured zone in doesnt

...

Upgrade PanOS on PA-220-OSS

For an upgrade of our small branch offices we have ordered 11 PA-220's and 11 PA-220 On-Site Spares.

Before we send them around the globe, the planning was to upgrade all the devices to the latest software version (8.0.4).

The PA-220's didn't have any

...

Resolved! HA Pair Dashboard Resource Information Widget Session Count

I have a pair of PA-4020's in HA active/passive. I just did a commit (which went fine, except the synchronization failed and I had to push the config to the passive peer). I then looked at the passive and the information in the Resource Information

...

Ipsec proxy Tunnel issue with multiple tunnels

HI Team,

I have configure Ipsec between PA and Cisco ASA, IPSEC is up but not traffic is passing.

During the troubleshooting I have found for the proxy ID's configure in palo alto for some of the proxy id's only encapulation packet paloalto is sendi

...

Aruba Wireless Authentication User-IP Mapping Question

Hi,

I have an Aruba Instant Cluster with an SSID set up to user a radius server to authenticate users. The cluster controller is configured to send syslog data to a Paloalto User Agent running on a Windows server. I've had this set up for a time but

...

Resolved! custom groups using ldap-filter/query to use with GlobalProtect

Hello.

I'm currently working on a setup involving Global protect for teleworking.

the company has users who are allowed to connect remotely with their id, and users who aren't.

the decision for this is based on a user-attribute: msNPAllowDialin (of

...

System disk space issue on PA 5050

PA 5050s on PAN OS 7.1.7 in HA pair active/passive mode always have high systme disk space issue.

this is output from active one-

========

show system disk-space

Filesystem Size Used Avail Use% Mounted on
/dev/md2 3.8G 3.4G 269M 93% /
/dev/md5 7.6G 2

...

Processes

Good morning!.

I have a question about processes.

Somebody know what is process "fpp_dp"? because I see that this process is consuming too much CPU

What about this process?
fpp_dp1,fpp_dp2, etc...

Regards

Community Expert Verified

Resolved! PA 3020 boot error

when i reboot this PA 3020

i see below on console

Starting pan_hardserver: [ OK ]
Starting pan_lunasa: mv: cannot create regular file `/opt/pancfg/hsm/export/': Is a directory

019-01-18 11:41:10.109 -0800 Error: sysd_construct_sync_importer(sysd_sync.

...

PAN HA Pair Shows Antivirus Mismatch But Are Correct On Device Page

Totally new to PAN...So I upgraded a pair of PA500s in HA to 7.1.17, and since then (I believe) the dashboard on each shows Antivirus Mismatch. When I fly over the "Antivirus Mismatch on either's dashboard, both show the active PAN as having the old

...

PAN-OS Manual Upgrade

Hi All,

I were tried to upgrade the PA-850 from PAN-OS 8.0.7 to PAN-OS 8.1.0. I have uploaded the image but it didn't list the image.

Any input on this ??

Community Expert Verified

Resolved! override traffic packet capture

Hi, all

I have questions about Application Override traffic packet capture.

Q1. when i enable App override, Overridden traffic is offloaded without reaching Dataplane. is it correct?

Q2. Overridden Initial packet such as UDP when session setup is off

...

Recommended PAN OS 8.1.3 or 8.1.4 ??

Hi All,

What will be the recommended PAN OS for Perimeter firewall ?? 8.1.3 or 8.14 .

I got the update from support team as 8.1.3 is not a stable but initially it was suggested by SC.

Thanks in Advance

Panorama/Firewall performance

Historically, for a LONG time, we have created an object for every IP address and every port (for port based rules). Over the years, this has lead to our config being HUGE. Last tech support file from Panorama is 85MB. With thousands and thousands

...

General Topics

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free