This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4111 Views
  • 0 replies
  • 0 Likes

Resolved! Error polling virus total

I'm running into an issue with the virus total miner. Once the API key is set it continues to throw this error: 2017-09-08T14:24:58 (2986)basepoller._actor_loop INFO: virustotal_notifications-green - command: 1504880698052 poll 2017-09-08T14:24:58 (2986)basepoller._polling_loop INFO: Polling virustotal_notifications-green 2017-09-08T14:24:58 (...

chirss by L3 Networker
  • 7787 Views
  • 6 replies
  • 0 Likes

Newbie: Local (wildcard?) certificate(s)

I'm running a VM-100 with several zones where I have MS AD / WSUS in one, two zones with lots of wireless device management, another zone for vmware management etc. Every day I run into web browsers yelling about unsecure acces to local device management due to lack of trusted certificates. I know I can just continue to create and import local ...

Resolved! Base ID manager is reset

Anyone run into this issue? It raised a "Critical" log but appears to have occurred during a validate. Having issues finding any references on this alert discription. Base ID manager is reset - System Log

ert.png

ADSSP Integration for Cached PW Update

Wondering if anyone has successfully integrated ADSSP Cached Credential Updating with PAN VPN and GlobalProtect client. Have tried to find command line references for the GP client but am coming up blank. ADSSP needs to call the VPN connection during a password reset so that it can update cached credentials for a remote user.

inter-logger-agent message in Panorama

Anyone know what this message refers to, and/or suggest any steps to trouble-shoot? The message is showing up in System log of a backup Panorama M-500 manager. X.X.X.X is the IP assigned to dedicated port on primary Panorama M-500 manager. The interface on the primary is setup for collector group communication. Running PANOS 8.1.3. Failed t...

fl1654 by L3 Networker
  • 3307 Views
  • 2 replies
  • 0 Likes

Resolved! Microsoft Windows Auto Pilot and SSL decryption

Hi Everyone, Seems the Microsoft Windows Auto Pilot does not work when SSL decryption is enabled.I tested see no drops on the global counters and nothing on PA PCaps. When disabled SSL decryption it worked fine. Any ideas? Mike

MP18 by Cyber Elite
  • 6706 Views
  • 4 replies
  • 0 Likes

Resolved! Partial Import of Address-Groups results in "Unexpected Here"

Anyone seen this before? currently testing in Panorama on version 7.1.5 and trying to import Address Groups. Addresses works fine and are present. command being run is:load config partial from test.xml from-xpath shared/address to-xpath /config/shared/address mode merge where test.xml is an untouched export from a PA firewall. Any thought?thanks

Resolved! Query on HA1 link

Hello, We have an Active-Passive setup. The HA1 link in the Active unit shows down (red) if the Link settings are set to auto/auto.If I change the settings to 100mb link, full duplex and link state to up, the port shows up (green).Shouldn't it work in auto/auto settings as well?

Auto.png
Full.png

Authenticating with Captive Portal

I just got off the phone with technical support and the technician said that the only traffic I can authenticate is http/https. Can someone confirm that the use case below is not valid? Here is what I want to do: Use HTTPS to authenticate a user After Authentication, user is allowed access to a server in a manner controlled by a security polic...

joynert by L1 Bithead
  • 9982 Views
  • 12 replies
  • 0 Likes

Exclude account(s) from authentication?

I know there is the allow list, but what about an exclude? We use Captive Portal for BYOD and have thousands of accounts we want to allow, but exclude our double digit generic accounts from being able to log in. What's the best way to achieve this?

QOS bypass traffic

is there any way to get more info about what kinds of traffic are being classified as "bypass" traffic?i have not found anything in cli, traffic logs or acc.

wlloyd by L2 Linker
  • 3101 Views
  • 1 replies
  • 0 Likes

Resolved! User ID mapping when switching between wired and wireless

A lot of my users login into their computers using the wired connection. Then when they are off to meetings, they switch to wireless (without logging out and logging back in). If I turn off client probing, this creates an issue where they switch to wireless, as the ID never seems to map. Is there a way to correct this? FYI....network bridging ...

MikeC by L3 Networker
  • 6806 Views
  • 4 replies
  • 0 Likes

Resolved! FQDN cache limitations

I wanted to reach out tot he community and see how people are handling FQDN cache limit issues. Example: * Internal DNS caches up to 8 IPs for each FQDN* PAN device will cache up to 10 (source: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClHJCA0) If you have a security policy that allows traffic to blah.domain.com a...

hshawn by L4 Transporter
  • 7897 Views
  • 2 replies
  • 1 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks