This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Content translations are temporarily unavailable due to site maintenance. We apologize for any inconvenience.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 489 Views
  • 0 replies
  • 2 Likes

Resolved! LSVPN Loopback

Hi Folks,

 

I'm currently trying to setup LSVPN between our various sites (with the help of the PaloAlto guide and YouTube video!) but was wondering if we could use a Loopback interface instead of a physical Layer 3 Interface? We currently use this wit

...

Damiel by L0 Member
  • 3114 Views
  • 2 replies
  • 0 Likes

Resolved! service versus using an application for Rule match

 

Need to know if we use application instead of service in security policy 

 

When we use service then that will enable the firewall to take immediate action with the first observed packet based on port number.

 

When  we  use "application" in Rule that w

...

MP18 by Cyber Elite
  • 3642 Views
  • 5 replies
  • 0 Likes

Hardware upgrade process?

Greetings all,

 

My organization is looking to upgrade from an Active/Active 5060 deployment to an Active/Standby 5200 series deployment.  I have Expedition installed although I'm not perficient at it yet (side note: If anyone knows of and can pass alo

...

jsalmans by L4 Transporter
  • 2742 Views
  • 3 replies
  • 0 Likes

PA3220 HA Trigger Condition

I have a pair of PA3220 firewalls in my environment. I configured Active/Passive for High Availability and I configured Link Monitoring condition to trigger the failover. However I'm still not clearly understand the behavior of PA HA. 

 

I configured a

...

HA.png
Putmano by L0 Member
  • 2243 Views
  • 3 replies
  • 0 Likes

LAB PA-200 fails 7.0.1 upgrade

I have a Lab PA-200 that I have been upgrading to the latest version of PAN OS for testing.

I have been uploading the OS file and upgrading for a while.

The 7.0 file worked fine. After the alert about 7.0. I attempted to upgrade to 7.0.1.

No joy. In Fir

...

markwoll by L1 Bithead
  • 10907 Views
  • 21 replies
  • 0 Likes

Password Spraying Protection

Hi!

In my company we are using GlobalProtect VPN's as a medium to access the network.

 

Right now we have a blocking procedure by which if a user fails 5 times the password while trying to login, his account gets blocked for 15 minutes.

We are using this

...

arnauec by L1 Bithead
  • 5472 Views
  • 5 replies
  • 0 Likes

MineMeld on CentOS 7.5 (HOSTED on AWS)

Hi to everyone.

 

I'm new here and I have a issue as follow:

 

Installed MineMeld on centos 7 in my lab environment and everything goes smoothy.

 

Now I'm trying to deploy on AWS server with same OS but I got the erro executing ansible-playbook.

 

TASK [mine

...

Fumaca14 by L0 Member
  • 1855 Views
  • 1 replies
  • 1 Likes

Resolved! SSL decryption and load on Management plane

Need to confirm if we enable ssl decryption will that put load on MP?

 

https://www.reddit.com/r/paloaltonetworks/comments/8s9gay/ssl_decryption_causing_high_management_plane_cpu/

 

 

MP18 by Cyber Elite
  • 3935 Views
  • 3 replies
  • 0 Likes

Upgrade to OS 8.1.3

I am currently on OS 7.1.19 and am planning my upgrade path to the best version of 8 sometime soon. In order to upgrade do I have to install the base 8 version or just download it? 

jdprovine by L4 Transporter
  • 7026 Views
  • 30 replies
  • 0 Likes

Never ending globalprotect VPN drops

Supporting VPN for people is a challenge no matter what VPN you are using but people never consider the reliabilty of their own ISP provider as part of that issue. So what is the best way to rule out the users ISP as the problem and not the globalpro

...

jdprovine by L4 Transporter
  • 9126 Views
  • 26 replies
  • 0 Likes

DNS Signature Lists

Does anyone know any free External Dynamic Lists for DNS signatures to use in conjunction with the Palo DNS Signatures? We would like some extra protection for our anti-spyware protection.

Monitor of IPSec tunnel

What is the best way to monitor an IPSec tunnel on the PA, I don't see anything in the traffic logs at all just the systeme logs

jdprovine by L4 Transporter
  • 2632 Views
  • 7 replies
  • 0 Likes

Resolved! Decoder function

 

Need to confirm in PA  decoder does content id app id and antivirus detection.?

 

Also once session is offloaded then function of decoder is finished?

MP18 by Cyber Elite
  • 2670 Views
  • 2 replies
  • 0 Likes
  • 23714 Posts
  • 110 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks