This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4118 Views
  • 0 replies
  • 0 Likes

Resolved! Management Interface Settings - Can't Change?

Got a weird one here, I'm using templates from Panorama but I have one firewall, in an HA pair, that has Telnet enabled on the Administrative Management Services section and it should be set to OFF per my template. The interface is showing "Template Values Overridden" and when I go into the configuration and try to re-sync the template (hence d...

R.Nill by L1 Bithead
  • 2608 Views
  • 4 replies
  • 0 Likes

VM series log not detected in Azure Sentinel

Here’s the problem statement: 1] If Syslog UDP 514 is configured in PAN FW on-prem and vm-series, There were missing logs in AZ Sentinel, Incomplete logs is experienced and there were packets fragmentation.2] MS Sentinel support recommended to changed syslog transport UDP to TCP 514.3] If Syslog TCP 514 is configured in PAN FW, On-prem able to s...

Resolved! Log Container Page Only - impact?

Hello, Has anyone experienced a negative impact from having the "Log Container Page Only" feature checked/turned on? I ask because of the warning, "If you enable the Log container page only option, there may not always be a correlated URL log entry for threats detected by antivirus or vulnerability protection." Do you have examples of instan...

Google URLs not-resolved

I know this has happened a few times over the last year but is anyone currently experiencing issues with various google urls getting flagged as not-resolved again? The ones that seem to be popping up the most for use are various drive.google.com, docs.google.com and googleapis.com. Cli shows base-db as not resolved and cloud db shows correct. ...

Claw4609_0-1704737501769.png
Claw4609 by L5 Sessionator
  • 2828 Views
  • 4 replies
  • 0 Likes

Resolved! Error The number of PBF return addresses cannot exceed 8 paloalto

HI team We are migrating a FW Paloalto model 3250 to a model 1420 but I find a limitation, in the previous model I had 16 PBF but now it only allows me 13. Do you know if it is a limitation of the model? 2024-12-10 17:45:19.569 +0100 Error: pan_pbf_policy_from_obj(pan_config_parser.c:18674): The number of PBF return addresses cannot exceed ...

Alpalo by L4 Transporter
  • 1667 Views
  • 1 replies
  • 1 Likes

cannot commit as one service keeps shutting down

first here is the specs: Firewall : Pa1410 version : 11.2.4-h1 here is all the details of the issue : 1- device > syslog -> syslog profile -> custom log format -> and changed the default format of GlobalProtect to location=$location, portal=$portal, actionflags=$actionflags, attempted_gateways=$attempted_gateways, auth_method=...

Blocking unknown devices that are not within the domain

Hello everyone, I am a Palo Alto PA-450 user. In our organization, we removed around 20 computers from the domain due to their outdated versions. However, these computers continue to log in using the credentials of the last user who logged in while they were still in the domain. This is not a major issue for us. The problem is that these compute...

Resolved! Panorama software download issues

Having two issues while attempting to upgrade Panorama from 10.1.13 to 11.1.5; 1) On the primary Panorama VM, try to preload all the versions for each step of the upgrade like we do on a firewall. The new version, say 10.2.0 seems to download properly. But when we try to download 11.0 it vanishes. 11.0 vanishes when we go back and try to downloa...

Jim007 by L1 Bithead
  • 3923 Views
  • 2 replies
  • 0 Likes

Sync firewalls with Panoram

if I configured the firewall interfaces locally first, then imported the firewall into panorama, the firewall interfaces would display in the Panoram with a little icon.How about the interfaces I configured after the firewall is imported into Panoram, those interfaces are supposed to display in Panoram by default?if not, any way I can import th...

gongya by L3 Networker
  • 892 Views
  • 1 replies
  • 0 Likes

Can not block x-vpn on port 80

Please can we have some assistance with blocking x-vpn. We currently have Decryption enabled DNS proxy enabled The threats are set to reset/drop/block in screenshots Despite all of this, the HTTP-2 connection method in x-vpn successfully establishes a connection by obfuscating as random allowed sites such as www.office.com [office.com], www...

Salathiwe by L3 Networker
  • 1210 Views
  • 1 replies
  • 0 Likes

User-ID Connection Security Won't Work

UserID Agent version 9.0.5-8Firewall 9.0.8Windows Server 2016 UserID Agent Servers x2 I've tried following this guide and numerous others (https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClGFCA0) Keep getting 'Failed to validate client certificate, thread : 1 , 5-10054!' as shown at the very bottom of the aforementioned...

Prisma Cloud Certification

Is there anything available to get free discount vouchers or any link to register to get updates on upcoming offers on certification of Prisma cloud (for partners and customers).

How to find active high bandwidth user

If a Palo Alto firewall is experiencing high throughput, what's the best way to find the source user/IP while the high throughput is occurring?We have all of our security policies set to log on session end, so that traffic log wouldn't help since the session would still be open.The Session Browser kind of helps, but the inability to filter for t...

jambulo by L4 Transporter
  • 10900 Views
  • 4 replies
  • 0 Likes
  • 24335 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks