This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4244 Views
  • 0 replies
  • 0 Likes

Resolved! Putting a PA-4060 back into service

I recently aquired a PA-4060 from a recycling center. It appears to be fully functional without issue. It's currently on PAN-OS 4.1.12. How can I go about updating this device? I'd like to try and use it in my homelab for learning about Palo Alto products.

Resolved! External Email Server Filtering

We have a ListServ server which needs to accept email from a user hosted in Office 365. I would like to limit the security rule allowing the inbound traffic to only accept SMTP connections from the O365 mail servers. I know the list of those servers can be dynamic, so I was wondering if this is even possible, or if there is a more effective me...

PALO ALTO PAN OS 8.0

Hello Team,I am a SOC ANALYST , I wanted to know all the "Event name" that i can see on my SIEM. so i can make sure that i am seeing all the events. Please help. I want to make sure if any "Event Name" is missing.Currently I am seeing these "Event Names"Traffic CloseURL FilteringSession DeniedReceived conflicting ARP on interface indicating dupl...

Resolved! custom url filter action continue and ssl decryption

i have configured few custom url and action is set to continue.for some https websites i get response page and when i click on continue it works fine. for some https websites chrome shows error connection reset.PCaps on PA does not show any drops.traffic logs show session end reason threat and CLI shows discard. below is custom url where action ...

MP18 by Cyber Elite
  • 7263 Views
  • 8 replies
  • 0 Likes

ISP failover with Path Monitoring help? Incomplete Aged-out traffic issue. PA 3020

I am using a PA 3020. We have an ISP1 which is our main corp internet. We have an ISP2 which is also our active Guest network. I'm trying to configure ISP1 virtual router with Path Monitoring so that if fails pinging a group of IP's it fails over to ISP2 virtual router. Well I have configured Path Monitoring and can trigger it accordingly b...

Resolved! Command line

I have come accross and article that show some of the CLI commands for palo alto but there aren't that many listed. When I call into support they are able to come up with som many more anyone know where I can get a larger listing?

infotech by L4 Transporter
  • 8773 Views
  • 6 replies
  • 0 Likes

Resolved! Tunnel monitoring using internal src to external dst?

Is it possible to monitor VPN tunnels using an internal source IP on my tunnel interface and the external IP of the other system? I won't always have control/access to the other side of the tunnel, I may only know the local subnet(s) and the external IP.

mike406 by L2 Linker
  • 5063 Views
  • 6 replies
  • 0 Likes

IPsec tunnel Failover between Two PA

I've two Palo Alto firewalls, PA-500 and PA-820.My PA-500 is having 2 ISPs, so I've configured Tunnel monitoring as Failover on it. I think I've configured everything at right place on PA-500 which have 2 ISPs.I'm not sure with the configuration at other end at PA-820 as my destination subnet is same, how should I configure same destination to g...

Pune_IT by L0 Member
  • 4934 Views
  • 6 replies
  • 0 Likes

dp-monitor.log entry meanings?

We are running 8.1.4 on a pair of 820's, and having been having some issues with certain traffic. After some help and digging, we are seeing random hits an (entry below) for the Max % utilization for 100% in one part of the file, but NOT on show running resource monitor OR SNMP. The Avg hovers around 4-20%. When I watch the GUI, or Pan(w)achrome...

Sec101 by L4 Transporter
  • 6344 Views
  • 3 replies
  • 0 Likes

Google Snake game

We have students in our academy playing the Google snake game, obviously this is really a classroom mamangement issue.But we do have students in isolation and when Cover teachers that are unfamiliar with our monitoring software.Is there a way we can block this game on Internet Explorer and Chrome ?

Resolved! IKE1 tunnel up without interesting traffic

i have configured the ike1 tunnel with ASA.Right now there is no interesting traffic passing. i initiated the traffic via cli to test the tunnel i see on gui under status - tunnel info and ike info both are green also i see tunnel interface is green need to know how long phase 1 and 2 and tunnel interface will remain up without interesting tra...

MP18 by Cyber Elite
  • 5393 Views
  • 3 replies
  • 0 Likes

Resolved! PAN-OS 9.0?

Is there a list of features somewhere that PAN-OS 9.0 is supposed to support?Rumor is that 9 will support true HA in Azure with session persistance, but cant find anytihng on it, and curious how that will function with Azures lack of L2 support.

Muldov by L1 Bithead
  • 3499 Views
  • 3 replies
  • 0 Likes

Resolved! Which IP address should I use for IPSec tunnel monitoring

Hello, I made an IPSec Tunnel with Fortinet device, and it has some issue. So I want to set tunnel monitoring for the tunnel, but I'm confused about the destination IP. I set my tunnel interface ip(192.168.88.1/24), but at fortigate, it's not set. I got one IP addr of remote end(I guess it's loopback of forti device) Can I use that IP as destina...

yhlee1 by L2 Linker
  • 4962 Views
  • 2 replies
  • 0 Likes
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks