General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! My PA-1410 logs for single day, why? how to solve?

Hello Team, My new PA-1410 logging is not more than a single day when checking the traffic logs. Previously I had PA-3220 I could checked months of logs. whats wrong here in the PA-1410 loggin settings? manager@PA-1410-Main(active)> show system logdb-quota Quotas: system: 4.00%, 0.726 GB Expiration-period: 0...

Inbound TLS/SMTP inspection (to FortiMail)

Hi,I'm wondering if anyone happens to be doing successful inbound inspection of SMTP/TLS to a FortiMail appliance? Or any other mail server for that matter. I've run in to a brick wall when it comes to renegotiation. The Palo is serving the correct certificate and a manual connections using openssl (openssl s_client -debug -connect mx1.XXXXX.co...

Screenshot 2021-02-04 at 14.43.04.png
pkaren by L1 Bithead
  • 4186 Views
  • 2 replies
  • 0 Likes

I’m facing an issue with L3 int which is configured on Palo Alto firewall

Hi Team, I’m encountering an issue with Poly devices on VLAN 20, which is routed through the firewall with its L3 interface configured. The devices successfully pair at first time with Teams but after a reboot they fail to maintain pairing afterward, despite having a rule that allows all traffic from the VLAN 20 . Interestingly, when these de...

upgrading PAN-OS

Hi I want to upgrade the 8.1.x to the latest version , after two upgrade stay on 8.1.24. I tried to move to 9.0.X but failed. Could you please let me know how I can upgrade to 9.x? (As information that I have find need the Preferred release It means 8.1.25, but I cann't find it) Thanks

Resolved! Are there signature release for following vulnerabilities?

Hi,I'm Tomoyuki Nakamura. Are there any plans to release signature for the vulnerabilities below?.These were not listed in THREAT VAULT or Security Advisory. CVE-2024-11639CVE-2024-11772CVE-2024-11773CVE-2024-37377CVE-2024-9844CVE-2024-37401CVE-2024-11633CVE-2024-11634CVE-2024-47578CVE-2024-47590CVE-2024-54198CVE-2024-47586CVE-2024-54197 B...

Resolved! using Subinterfaces in different Vsys inder same phy interfa

Hello Team, We are implementing a physical interface under vsys Data-center , with subinterface (Eth1/200 --> Data-center) and other subinterface (Eth1/300--DeptA) is assigned to other vsys called DeptA. knowing that the physical interface is without zone . How does the communication will be authorized in the security policies and with the ...

Support wait times and SLAs

I am in the call queue since 3 hours. Called in yesterday and left a call back number, but never received a call back. Does anybody have a similar experience lately?

uvolk707 by L1 Bithead
  • 1921 Views
  • 4 replies
  • 0 Likes

Resolved! Pipe a command and using match regular expressions

Dear experts!I'm trying to compile a match which matches the following regexp: (debug|monitor).(global|level|pcap|detail\.enable) but it seems like it does not support capturing groups. I've searched for a manual for the match command but struck out. The end game here is to use it to filter show system state to capture lines containing:debug.gl...

epacke by L0 Member
  • 16891 Views
  • 4 replies
  • 0 Likes

Equipment: PA1410 (PAN-OS 11.1.4-h1) Threat Logs is not monitored every time

Equipment: PA1410 (PAN-OS 11.1.4-h1)Issue: Some threat logs are not seen in output.Details:・The vulnerability protection alert test was performed 4 times on PA1410 with reference to the following page.https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClpPCAS-1st time (2024/12/14 15:29:58): A threat log was seen as output ...

Resolved! PA-440: Bottom Face Screw Mounting Footprint

I am looking to add the PA-440 to the Elevator Model I am working on, but because of limited real-estate, we do not have room for standard 1U server rack, and have to create a custom enclosure to house the firewall. I am looking to mount the PA-440 to the enlcosure, but cannot determine what is the bottom facer screw mounting footprint as seen...

Resolved! Importing list of Blocked IP's and URL's into EDL

Hi, I want to be able to quickly blacklist a bunch of URL's and IP's from internal uers going out to the internet. What is the best way to achieve this? Would I just place them all in a file text file, and just import them to a custom External Dynamic List? Thanks for the help in advanced.

Resolved! Panorama Disk

We have Panorama VM with 1tb data disk. I am not able to add 2tb disk. Gives me an error due to this 1tb disks. What can i do?

chens by L3 Networker
  • 1907 Views
  • 3 replies
  • 0 Likes

Resolved! OSPF route suppression

Hello, I have a question about suppressing OSPF routes. We have a PA-3410 with software version 11.1.4-h7 and we have configured OSPF neighbourship with the Huawei switches. All OK, in OSPF we advertise static and connected routes, but we want to suppress the announcement of WAN networks with public IP. I found this topic https://knowledgebase.p...

snmpd.log error Solarwinds monitoring PA1410

I am investigating an issue with Solarwinds monitoring a PA1410 , in the snmpd.log i see the following : 2024-07-18 09:39:45.403 +0100 Error: pan_snmputil_sysd_fetch_modified_obj(pan_snmputils.c:1528): Unable to fetch sw.cmd.*.dp*.counter={'interface':'ethernet1/16'}: NO_MATCHES2024-07-18 09:39:45.403 +0100 Error: pan_interfacedata_build_sys...

Ridwaan by L1 Bithead
  • 1278 Views
  • 1 replies
  • 0 Likes
  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels