This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4454 Views
  • 0 replies
  • 0 Likes

Resolved! Importing list of Blocked IP's and URL's into EDL

Hi, I want to be able to quickly blacklist a bunch of URL's and IP's from internal uers going out to the internet. What is the best way to achieve this? Would I just place them all in a file text file, and just import them to a custom External Dynamic List? Thanks for the help in advanced.

Resolved! Panorama Disk

We have Panorama VM with 1tb data disk. I am not able to add 2tb disk. Gives me an error due to this 1tb disks. What can i do?

chens by L3 Networker
  • 1880 Views
  • 3 replies
  • 0 Likes

Resolved! OSPF route suppression

Hello, I have a question about suppressing OSPF routes. We have a PA-3410 with software version 11.1.4-h7 and we have configured OSPF neighbourship with the Huawei switches. All OK, in OSPF we advertise static and connected routes, but we want to suppress the announcement of WAN networks with public IP. I found this topic https://knowledgebase.p...

snmpd.log error Solarwinds monitoring PA1410

I am investigating an issue with Solarwinds monitoring a PA1410 , in the snmpd.log i see the following : 2024-07-18 09:39:45.403 +0100 Error: pan_snmputil_sysd_fetch_modified_obj(pan_snmputils.c:1528): Unable to fetch sw.cmd.*.dp*.counter={'interface':'ethernet1/16'}: NO_MATCHES2024-07-18 09:39:45.403 +0100 Error: pan_interfacedata_build_sys...

Ridwaan by L1 Bithead
  • 1258 Views
  • 1 replies
  • 0 Likes

Resolved! Importing root certificate in Panorama 10.2.15 not working/ EDL hosting service.

Hi, I have a strange issue i am trying to import the globalsign root certificate into panorama device template. I am following this article (also doubt the global sign is needed because when i browse manualy to the EDL the url is singed by Google) Configure the Firewall to Access an External Dynamic List from the EDL Hosting Service (paloaltonet...

zGomez by L3 Networker
  • 9203 Views
  • 6 replies
  • 1 Likes

Converting SonicWALL DNAT configuration to Palo Alto DNAT Configuration

Hi to all the expert, I am new to Palo Alto firewall. I need a guidance from the expert to guide how to converting SonicWALL DNAT rule to the Palo Alto DNAT rule. SonicWALL DNAT Config: Original Source: Any Translated Source: Original Original Destination: x8:V292-IP (10.204.44.33/27) Translate Destination: Original Original Server: Ping Tran...

GWong4 by L2 Linker
  • 942 Views
  • 1 replies
  • 0 Likes

Long commit times when changing DNS settings

On an HA pair of PA-460, the commit time is usually around 60 seconds, when changing the DNS settings to something that is not reachable, the commit time changes to 10 minutes+. I've tried replacing the primary but the issue is the same. When I looked at the device server logs there was a continual message with the number incrementing: debug: ...

s0lselcia by L4 Transporter
  • 1786 Views
  • 3 replies
  • 0 Likes

Unable to discovered ICMP and SNMP from solarwinds. Discovered in Solarwinds as ICMP Only.

dc1-fld-sdw-1adc1-fld-sdw-1bUnable to discovered ICMP and SNMP from solarwinds.Discovered in Solarwinds as ICMP Only.we have checked there is no firewall block and verifed SNMP2 configurationsits looks good but unable to discover ICMP and SNMPSerial Number 026601-000614-9922 Product ION 9200 OS Release CGX 6.1.9

Is there a way to test remote host ports from the palo alto firewall?

Hello Palo Alto Team, I new to Palo Alto and loving it but I am looking for PAN-OS cli commands similar to telnet, nc (netcat) or curl etc.. I have seen there is an option to do ssh source port (the scp command also supports this), can this replace the telnet source port? From what I tested I think that the SSH without specifying the source is...

Palo HA with LACP to Cisco Stack Switch

Hello Everyone, Im trying to find a Palo KB that talks about recommended/best practise when setting up Palo HA with LACP to a stack switch (e.g. Cisco stack). Can anyone guide me on this ? For some background, we are weighing the Pros and Cons for:- option 1) to create one single lacp (eg 4 interface member) on the stack switch, but 2 i...

adm2tech by L1 Bithead
  • 11760 Views
  • 7 replies
  • 0 Likes

Scheduled Log Export Failure

I have Scheduled Log Export but it's failing. The system log reads "Failed exporting traffic log via ftp (last-calendar-day)".If I run the export command via CLI, it runs successfully.>ftp export log traffic start-time equal 2012/11/28@00:00:00 end-time equal 2012/11/28@23:59:59 to anonymous@hostnameAny ideas on why the Scheduled Log Export ...

MLaden by Not applicable
  • 6181 Views
  • 3 replies
  • 0 Likes

Log exporting is failing. :(

Have export of traffic /threat/url etc set up on log exportAll setup to use SCP.Target linux server is setup correctly.Test SCP server connection works correctly (see attach word doc)Job fails with an error in system log :Failed exporting data log via ssh (last-calendar-day) to 192.168.252.61. Permission denied, please try again..' )Also tested ...

Rboehme by L2 Linker
  • 6997 Views
  • 4 replies
  • 0 Likes
  • 24376 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks